📦 Tomee

by Apache

🔍 What is Tomee?

Description coming soon...

🛡️ Security Overview

Click on a severity to filter vulnerabilities

⚠️ Known Vulnerabilities

CVE-2020-13931

CRITICAL CVSS 9.8 Dec 18, 2020

This vulnerability in Apache TomEE exposes an unauthenticated JMX port (TCP 1099) when using a misconfigured embedded ActiveMQ broker. Attackers can remotely execute arbitrary code, manipulate server ...

CVE-2021-30468

HIGH CVSS 7.5 Jun 16, 2021

A denial-of-service vulnerability in Apache CXF's JsonMapObjectReaderWriter allows attackers to send specially crafted JSON payloads to web services, causing infinite loops that consume 100% CPU on af...