Apache Tomcat: 5.5.36 → 9.0.118
Apache · upgrade impact · Official site ↗
Fixed by upgrading to 9.0.118 iVulnerabilities that affect 5.5.36 but no longer affect 9.0.118 — the security gain from this upgrade, by exploited status then exploitation probability.
Exploited first, then by exploitation probability (EPSS).
CVE-2025-24813 CRITICAL ● exploited EPSS 94% ✓ cleared in 9.0.118 CVE-2016-8735 CRITICAL ● exploited EPSS 94% ✓ cleared in 9.0.118 CVE-2014-0075 MEDIUM EPSS 47% ✓ cleared in 9.0.118 CVE-2014-0099 MEDIUM EPSS 38% ✓ cleared in 9.0.118 CVE-2013-4322 MEDIUM EPSS 36% ✓ cleared in 9.0.118 CVE-2013-4286 MEDIUM EPSS 28% ✓ cleared in 9.0.118 CVE-2013-4444 MEDIUM EPSS 9% ✓ cleared in 9.0.118 CVE-2014-0096 MEDIUM EPSS 6% ✓ cleared in 9.0.118 CVE-2014-0119 MEDIUM EPSS 5% ✓ cleared in 9.0.118 CVE-2013-2185 HIGH EPSS 5% ✓ cleared in 9.0.118 CVE-2013-4590 MEDIUM EPSS 1% ✓ cleared in 9.0.118 CVE-2020-8022 HIGH EPSS 0% ✓ cleared in 9.0.118 CVE-2026-41284 HIGH EPSS 0% ✓ cleared in 9.0.118