CVE-2002-0493

Apache Tomcat < 3.3.2 - Security Restriction Bypass via web.xml Parsing Error

Title source: llm
STIX 2.1

Description

Apache Tomcat may be started without proper security settings if errors are encountered while reading the web.xml file, which could allow attackers to bypass intended restrictions.

Scores

EPSS 0.0380
EPSS Percentile 88.8%

Details

CWE
CWE-254
Status published
Products (2)
apache/tomcat < 3.3.2
org.apache.tomcat/tomcat 0 - 4.0b7Maven
Published Aug 12, 2002
Tracked Since Feb 18, 2026