Apache Tomcat April Vulnerabilities Security Update Advisory
Security Advisory

Apache Tomcat April Vulnerabilities Security Update Advisory

Overview. A security update has been released to address multiple security vulnerabilities in Apache Tomcat. affected versions are Tomcat 9.0.0.M1-9.0.116, 10.0.0-M1-10.1.53, 11.0.0-M1-11.0.20. recommended patch versions include 9.0.117, 9.0.116, 11.0.21, 11.0.20, 10.1.54, and 10.1.53. Summary of vulnerabilities. CVE-2026-24880 is an HTTP request smuggling vulnerability that can affect request isolation and proxy

  • Apr 09 2026