Root has patched CVE-2026-43514 in the io.root.org.apache.tomcat.embed:tomcat-embed-core package for Root:Maven. Multiple fixed versions available.
{ "distro_version": "", "severity": "LOW", "distro": "maven", "source": "Root" }
true
"11.0.20"
[ "11.0.20-root.io.13", "11.0.20-root.io.14" ]
2.0
"root.io.14"
"https://api.root.io/external/osv/ROOT-APP-MAVEN-CVE-2026-43514.json"
"11.0.20-aikido.14"
[ "11.0.20-aikido.13", "11.0.20-aikido.14" ]
""