GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
Filter advisories
GitHub reviewed advisories
Unreviewed advisories
1 advisory
Apache Tomcat - WebSocket authentication header exposure
High
CVE-2026-42498
was published
for
org.apache.tomcat.embed:tomcat-embed-core
(Maven)
ProTip!
Advisories are also available from the
GraphQL API