CVE Catalog

CVE-2026-55955

MediumCVSS 6.5
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.26%

17th percentile — higher than 17% of all known CVEs

Summary

A vulnerability in Apache Tomcat allows a replay attack against the EncryptionInterceptor in the cluster component. The flaw is due to improper authentication, enabling an attacker to reuse intercepted data.

Risk Assessment

An attacker can perform a replay attack, potentially leading to unauthorized data access or integrity compromise in cluster communication. This may result in sensitive information leakage or application disruption.

Recommendation

Immediately upgrade Apache Tomcat to version 11.0.23, 10.1.56, or 9.0.119, depending on the used release line. The update fixes the vulnerability by improving the authentication mechanism.

Original NVD description (English source)

Improper Authentication vulnerability in Apache Tomcat allowed a replay attack against the EncryptionInterceptor in the cluster component. This issue affects Apache Tomcat: from 11.0.0-M1 through 11.0.22, from 10.1.0-M1 through 10.1.55, from 9.0.13 through 9.0.18, from 8.5.38 through 8.5.100, from 7.0.100 through 7.0.109. Users are recommended to upgrade to version 11.0.23, 10.1.56, 9.0.119, which fixes the issue.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS