CVE-2002-0493 — HIGH severity vulnerability (Apache Tomcat may be started without proper security setting)
Apache Tomcat may be started without proper security settings if errors are encountered while reading the web.xml file, which could allow attackers to bypass intended restrictions.
| CVE ID | CVE-2002-0493 |
|---|---|
| Severity | HIGH |
| CVSS score | 7.5 |
| CVSS vector | AV:N/AC:L/Au:N/C:P/I:P/A:P |
| CWE | CWE-254 |
| Status | Modified |
| Published | 2002-08-12 |
| Last modified | 2026-04-16 |
| Description | Apache Tomcat may be started without proper security settings if errors are encountered while reading the web.xml file, which could allow attackers to bypass intended restrictions. |
| Source | NIST National Vulnerability Database |
🔍 Search all vulnerabilities →
$999/mo
Try CVECheck →