QwikSec

Security Database

CVE

CWE

Training

CVE-2024-21733

Published: Jan 19, 2024

Modified: Nov 3, 2025

PUBLISHED

Description

Generation of Error Message Containing Sensitive Information vulnerability in Apache Tomcat.This issue affects Apache Tomcat: from 8.5.7 through 8.5.63, from 9.0.0-M11 through 9.0.43. Other, EOL versions may also be affected. Users are recommended to upgrade to version 8.5.64 onwards or 9.0.44 onwards, which contain a fix for the issue.

Vendor	Product	Versions
Apache Software Foundation	Apache Tomcat	affected `8.5.7 - <= 8.5.63` affected `9.0.0-M11 - <= 9.0.43` unknown `10.0.0-M1 - <= 10.0.27`

Weaknesses (CWE)

References

https://lists.apache.org/thread/h9bjqdd0odj6lhs2o96qgowcc6hb0cfz

vendor-advisory

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.