Apache Tomcat: 10.0.27 → 10.1.55
Apache · upgrade impact · Official site ↗
Fixed by upgrading to 10.1.55 iVulnerabilities that affect 10.0.27 but no longer affect 10.1.55 — the security gain from this upgrade, by exploited status then exploitation probability.
Exploited first, then by exploitation probability (EPSS).
CVE-2026-29146 HIGH EPSS 13% ✓ cleared in 10.1.55 CVE-2025-48989 HIGH EPSS 3% ✓ cleared in 10.1.55 CVE-2026-41293 CRITICAL EPSS 0% ✓ cleared in 10.1.55 CVE-2026-41284 HIGH EPSS 0% ✓ cleared in 10.1.55 CVE-2025-55668 MEDIUM EPSS 0% ✓ cleared in 10.1.55