Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:maven/org.apache.tomcat/tomcat@6.0.41
Typemaven
Namespaceorg.apache.tomcat
Nametomcat
Version6.0.41
Qualifiers
Subpath
Is_vulnerabletrue
Next_non_vulnerable_version9.0.117
Latest_non_vulnerable_version11.0.21
Affected_by_vulnerabilities
0
url VCID-a1by-zvtm-akdc
vulnerability_id VCID-a1by-zvtm-akdc
summary java/org/apache/coyote/http11/filters/ChunkedInputFilter.java in Apache Tomcat 6.x before 6.0.42, 7.x before 7.0.55, and 8.x before 8.0.9 does not properly handle attempts to continue reading data after an error has occurred, which allows remote attackers to conduct HTTP request smuggling attacks or cause a denial of service (resource consumption) by streaming data with malformed chunked transfer coding.
references
0
reference_url http://advisories.mageia.org/MGASA-2015-0081.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://advisories.mageia.org/MGASA-2015-0081.html
1
reference_url http://archives.neohapsis.com/archives/bugtraq/2015-02/0067.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://archives.neohapsis.com/archives/bugtraq/2015-02/0067.html
2
reference_url http://lists.fedoraproject.org/pipermail/package-announce/2015-February/150282.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://lists.fedoraproject.org/pipermail/package-announce/2015-February/150282.html
3
reference_url http://marc.info/?l=bugtraq&m=143393515412274&w=2
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://marc.info/?l=bugtraq&m=143393515412274&w=2
4
reference_url http://marc.info/?l=bugtraq&m=143403519711434&w=2
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://marc.info/?l=bugtraq&m=143403519711434&w=2
5
reference_url http://rhn.redhat.com/errata/RHSA-2015-0675.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://rhn.redhat.com/errata/RHSA-2015-0675.html
6
reference_url http://rhn.redhat.com/errata/RHSA-2015-0720.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://rhn.redhat.com/errata/RHSA-2015-0720.html
7
reference_url http://rhn.redhat.com/errata/RHSA-2015-0765.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://rhn.redhat.com/errata/RHSA-2015-0765.html
8
reference_url http://rhn.redhat.com/errata/RHSA-2015-0983.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://rhn.redhat.com/errata/RHSA-2015-0983.html
9
reference_url http://rhn.redhat.com/errata/RHSA-2015-0991.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://rhn.redhat.com/errata/RHSA-2015-0991.html
10
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-0227.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-0227.json
11
reference_url https://api.first.org/data/v1/epss?cve=CVE-2014-0227
reference_id
reference_type
scores
0
value 0.78235
scoring_system epss
scoring_elements 0.99013
published_at 2026-04-02T12:55:00Z
1
value 0.78235
scoring_system epss
scoring_elements 0.99012
published_at 2026-04-01T12:55:00Z
2
value 0.78235
scoring_system epss
scoring_elements 0.9902
published_at 2026-04-08T12:55:00Z
3
value 0.78235
scoring_system epss
scoring_elements 0.99027
published_at 2026-04-24T12:55:00Z
4
value 0.78235
scoring_system epss
scoring_elements 0.99025
published_at 2026-04-21T12:55:00Z
5
value 0.78235
scoring_system epss
scoring_elements 0.99024
published_at 2026-04-18T12:55:00Z
6
value 0.78235
scoring_system epss
scoring_elements 0.99023
published_at 2026-04-13T12:55:00Z
7
value 0.78235
scoring_system epss
scoring_elements 0.99022
published_at 2026-04-12T12:55:00Z
8
value 0.78235
scoring_system epss
scoring_elements 0.99021
published_at 2026-04-11T12:55:00Z
9
value 0.78235
scoring_system epss
scoring_elements 0.99019
published_at 2026-04-09T12:55:00Z
10
value 0.78235
scoring_system epss
scoring_elements 0.99018
published_at 2026-04-07T12:55:00Z
11
value 0.78235
scoring_system epss
scoring_elements 0.99016
published_at 2026-04-04T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2014-0227
12
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1109196
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://bugzilla.redhat.com/show_bug.cgi?id=1109196
13
reference_url https://github.com/apache/tomcat
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/apache/tomcat
14
reference_url https://github.com/apache/tomcat70/commit/6b23790bf7dc4233affaacec57e06cff6b6c6fd3
reference_id
reference_type
scores
url https://github.com/apache/tomcat70/commit/6b23790bf7dc4233affaacec57e06cff6b6c6fd3
15
reference_url https://github.com/apache/tomcat/commit/593a2447e6ebe465585cfa07e93b5635dffa1c70
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/apache/tomcat/commit/593a2447e6ebe465585cfa07e93b5635dffa1c70
16
reference_url https://lists.apache.org/thread.html/37220405a377c0182d2afdbc36461c4783b2930fbeae3a17f1333113@%3Cdev.tomcat.apache.org%3E
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://lists.apache.org/thread.html/37220405a377c0182d2afdbc36461c4783b2930fbeae3a17f1333113@%3Cdev.tomcat.apache.org%3E
17
reference_url https://lists.apache.org/thread.html/39ae1f0bd5867c15755a6f959b271ade1aea04ccdc3b2e639dcd903b@%3Cdev.tomcat.apache.org%3E
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://lists.apache.org/thread.html/39ae1f0bd5867c15755a6f959b271ade1aea04ccdc3b2e639dcd903b@%3Cdev.tomcat.apache.org%3E
18
reference_url https://lists.apache.org/thread.html/b84ad1258a89de5c9c853c7f2d3ad77e5b8b2930be9e132d5cef6b95@%3Cdev.tomcat.apache.org%3E
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://lists.apache.org/thread.html/b84ad1258a89de5c9c853c7f2d3ad77e5b8b2930be9e132d5cef6b95@%3Cdev.tomcat.apache.org%3E
19
reference_url https://lists.apache.org/thread.html/b8a1bf18155b552dcf9a928ba808cbadad84c236d85eab3033662cfb@%3Cdev.tomcat.apache.org%3E
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://lists.apache.org/thread.html/b8a1bf18155b552dcf9a928ba808cbadad84c236d85eab3033662cfb@%3Cdev.tomcat.apache.org%3E
20
reference_url https://lists.apache.org/thread.html/r03c597a64de790ba42c167efacfa23300c3d6c9fe589ab87fe02859c@%3Cdev.tomcat.apache.org%3E
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://lists.apache.org/thread.html/r03c597a64de790ba42c167efacfa23300c3d6c9fe589ab87fe02859c@%3Cdev.tomcat.apache.org%3E
21
reference_url https://lists.apache.org/thread.html/r587e50b86c1a96ee301f751d50294072d142fd6dc08a8987ae9f3a9b@%3Cdev.tomcat.apache.org%3E
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://lists.apache.org/thread.html/r587e50b86c1a96ee301f751d50294072d142fd6dc08a8987ae9f3a9b@%3Cdev.tomcat.apache.org%3E
22
reference_url https://lists.apache.org/thread.html/r9136ff5b13e4f1941360b5a309efee2c114a14855578c3a2cbe5d19c@%3Cdev.tomcat.apache.org%3E
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://lists.apache.org/thread.html/r9136ff5b13e4f1941360b5a309efee2c114a14855578c3a2cbe5d19c@%3Cdev.tomcat.apache.org%3E
23
reference_url https://source.jboss.org/changelog/JBossWeb?cs=2455
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://source.jboss.org/changelog/JBossWeb?cs=2455
24
reference_url https://svn.apache.org/viewvc?view=rev&rev=1600984
reference_id
reference_type
scores
url https://svn.apache.org/viewvc?view=rev&rev=1600984
25
reference_url https://svn.apache.org/viewvc?view=rev&rev=1601329
reference_id
reference_type
scores
url https://svn.apache.org/viewvc?view=rev&rev=1601329
26
reference_url https://svn.apache.org/viewvc?view=rev&rev=1601330
reference_id
reference_type
scores
url https://svn.apache.org/viewvc?view=rev&rev=1601330
27
reference_url https://svn.apache.org/viewvc?view=rev&rev=1601332
reference_id
reference_type
scores
url https://svn.apache.org/viewvc?view=rev&rev=1601332
28
reference_url https://svn.apache.org/viewvc?view=rev&rev=1601333
reference_id
reference_type
scores
url https://svn.apache.org/viewvc?view=rev&rev=1601333
29
reference_url https://svn.apache.org/viewvc?view=rev&rev=1603628
reference_id
reference_type
scores
url https://svn.apache.org/viewvc?view=rev&rev=1603628
30
reference_url http://svn.apache.org/viewvc?view=revision&revision=1600984
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://svn.apache.org/viewvc?view=revision&revision=1600984
31
reference_url http://tomcat.apache.org/security-6.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://tomcat.apache.org/security-6.html
32
reference_url http://tomcat.apache.org/security-7.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://tomcat.apache.org/security-7.html
33
reference_url http://tomcat.apache.org/security-8.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://tomcat.apache.org/security-8.html
34
reference_url http://www.debian.org/security/2016/dsa-3447
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://www.debian.org/security/2016/dsa-3447
35
reference_url http://www.debian.org/security/2016/dsa-3530
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://www.debian.org/security/2016/dsa-3530
36
reference_url http://www.oracle.com/technetwork/security-advisory/cpuoct2016-2881722.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://www.oracle.com/technetwork/security-advisory/cpuoct2016-2881722.html
37
reference_url http://www.oracle.com/technetwork/topics/security/bulletinapr2015-2511959.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://www.oracle.com/technetwork/topics/security/bulletinapr2015-2511959.html
38
reference_url http://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.html
39
reference_url http://www.ubuntu.com/usn/USN-2654-1
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://www.ubuntu.com/usn/USN-2654-1
40
reference_url http://www.ubuntu.com/usn/USN-2655-1
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://www.ubuntu.com/usn/USN-2655-1
41
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0227
reference_id CVE-2014-0227
reference_type
scores
0
value Important
scoring_system apache_tomcat
scoring_elements
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0227
42
reference_url https://nvd.nist.gov/vuln/detail/CVE-2014-0227
reference_id CVE-2014-0227
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2014-0227
43
reference_url https://github.com/advisories/GHSA-42j3-498q-m6vp
reference_id GHSA-42j3-498q-m6vp
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-42j3-498q-m6vp
44
reference_url https://access.redhat.com/errata/RHSA-2014:1019
reference_id RHSA-2014:1019
reference_type
scores
url https://access.redhat.com/errata/RHSA-2014:1019
45
reference_url https://access.redhat.com/errata/RHSA-2014:1020
reference_id RHSA-2014:1020
reference_type
scores
url https://access.redhat.com/errata/RHSA-2014:1020
46
reference_url https://access.redhat.com/errata/RHSA-2014:1021
reference_id RHSA-2014:1021
reference_type
scores
url https://access.redhat.com/errata/RHSA-2014:1021
47
reference_url https://access.redhat.com/errata/RHSA-2014:1086
reference_id RHSA-2014:1086
reference_type
scores
url https://access.redhat.com/errata/RHSA-2014:1086
48
reference_url https://access.redhat.com/errata/RHSA-2014:1087
reference_id RHSA-2014:1087
reference_type
scores
url https://access.redhat.com/errata/RHSA-2014:1087
49
reference_url https://access.redhat.com/errata/RHSA-2014:1088
reference_id RHSA-2014:1088
reference_type
scores
url https://access.redhat.com/errata/RHSA-2014:1088
50
reference_url https://access.redhat.com/errata/RHSA-2014:1904
reference_id RHSA-2014:1904
reference_type
scores
url https://access.redhat.com/errata/RHSA-2014:1904
51
reference_url https://access.redhat.com/errata/RHSA-2015:0091
reference_id RHSA-2015:0091
reference_type
scores
url https://access.redhat.com/errata/RHSA-2015:0091
52
reference_url https://access.redhat.com/errata/RHSA-2015:0234
reference_id RHSA-2015:0234
reference_type
scores
url https://access.redhat.com/errata/RHSA-2015:0234
53
reference_url https://access.redhat.com/errata/RHSA-2015:0235
reference_id RHSA-2015:0235
reference_type
scores
url https://access.redhat.com/errata/RHSA-2015:0235
54
reference_url https://access.redhat.com/errata/RHSA-2015:0675
reference_id RHSA-2015:0675
reference_type
scores
url https://access.redhat.com/errata/RHSA-2015:0675
55
reference_url https://access.redhat.com/errata/RHSA-2015:0720
reference_id RHSA-2015:0720
reference_type
scores
url https://access.redhat.com/errata/RHSA-2015:0720
56
reference_url https://access.redhat.com/errata/RHSA-2015:0765
reference_id RHSA-2015:0765
reference_type
scores
url https://access.redhat.com/errata/RHSA-2015:0765
57
reference_url https://access.redhat.com/errata/RHSA-2015:0983
reference_id RHSA-2015:0983
reference_type
scores
url https://access.redhat.com/errata/RHSA-2015:0983
58
reference_url https://access.redhat.com/errata/RHSA-2015:0991
reference_id RHSA-2015:0991
reference_type
scores
url https://access.redhat.com/errata/RHSA-2015:0991
59
reference_url https://access.redhat.com/errata/RHSA-2015:1009
reference_id RHSA-2015:1009
reference_type
scores
url https://access.redhat.com/errata/RHSA-2015:1009
60
reference_url https://usn.ubuntu.com/2654-1/
reference_id USN-2654-1
reference_type
scores
url https://usn.ubuntu.com/2654-1/
61
reference_url https://usn.ubuntu.com/2655-1/
reference_id USN-2655-1
reference_type
scores
url https://usn.ubuntu.com/2655-1/
fixed_packages
0
url pkg:maven/org.apache.tomcat/tomcat@6.0.42
purl pkg:maven/org.apache.tomcat/tomcat@6.0.42
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@6.0.42
1
url pkg:maven/org.apache.tomcat/tomcat@6.0.43
purl pkg:maven/org.apache.tomcat/tomcat@6.0.43
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4mkw-7haq-pkgn
1
vulnerability VCID-7cpu-h5fr-8ffd
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@6.0.43
2
url pkg:maven/org.apache.tomcat/tomcat@7.0.55
purl pkg:maven/org.apache.tomcat/tomcat@7.0.55
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-18q4-zark-s7a7
1
vulnerability VCID-2sbh-sy57-3uez
2
vulnerability VCID-3n4t-bvb1-5qer
3
vulnerability VCID-3r3s-q21j-c3au
4
vulnerability VCID-4aaa-errb-2qdw
5
vulnerability VCID-7cpu-h5fr-8ffd
6
vulnerability VCID-95d1-arxd-hkd1
7
vulnerability VCID-9exq-fhv6-bbea
8
vulnerability VCID-a8gk-n8bq-87cp
9
vulnerability VCID-aeeu-fpay-wufz
10
vulnerability VCID-arkn-bca7-hqam
11
vulnerability VCID-dzpn-w4b3-vbcm
12
vulnerability VCID-e7kd-kk57-mkd6
13
vulnerability VCID-eb37-mkxf-7fgw
14
vulnerability VCID-enaj-f97c-jbh7
15
vulnerability VCID-f77q-v5xp-e7dy
16
vulnerability VCID-fyfz-6tr5-2fc7
17
vulnerability VCID-g7bk-891a-uufy
18
vulnerability VCID-hmbm-5ysw-77bu
19
vulnerability VCID-kagr-74d9-kyhx
20
vulnerability VCID-kwab-3s4q-eka4
21
vulnerability VCID-kyb8-rvyw-s7b1
22
vulnerability VCID-m1zd-uytj-3bej
23
vulnerability VCID-m2zn-ja8d-7kg8
24
vulnerability VCID-n3zn-tuck-gkfe
25
vulnerability VCID-ruuh-g3fa-m7d8
26
vulnerability VCID-tfrs-d458-tfaq
27
vulnerability VCID-vhjj-dnft-kkf4
28
vulnerability VCID-xf8r-kqxb-7qdy
29
vulnerability VCID-yfx4-4gsc-2kgh
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@7.0.55
3
url pkg:maven/org.apache.tomcat/tomcat@8.0.9
purl pkg:maven/org.apache.tomcat/tomcat@8.0.9
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-18q4-zark-s7a7
1
vulnerability VCID-1k8f-vsg1-k3d6
2
vulnerability VCID-2sbh-sy57-3uez
3
vulnerability VCID-3n4t-bvb1-5qer
4
vulnerability VCID-3r3s-q21j-c3au
5
vulnerability VCID-7cpu-h5fr-8ffd
6
vulnerability VCID-95d1-arxd-hkd1
7
vulnerability VCID-9exq-fhv6-bbea
8
vulnerability VCID-aeeu-fpay-wufz
9
vulnerability VCID-e7kd-kk57-mkd6
10
vulnerability VCID-enaj-f97c-jbh7
11
vulnerability VCID-fyfz-6tr5-2fc7
12
vulnerability VCID-g7bk-891a-uufy
13
vulnerability VCID-hmbm-5ysw-77bu
14
vulnerability VCID-kagr-74d9-kyhx
15
vulnerability VCID-kyb8-rvyw-s7b1
16
vulnerability VCID-m1zd-uytj-3bej
17
vulnerability VCID-m2zn-ja8d-7kg8
18
vulnerability VCID-n3zn-tuck-gkfe
19
vulnerability VCID-tfrs-d458-tfaq
20
vulnerability VCID-vhjj-dnft-kkf4
21
vulnerability VCID-xf8r-kqxb-7qdy
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@8.0.9
aliases CVE-2014-0227, GHSA-42j3-498q-m6vp
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-a1by-zvtm-akdc
Fixing_vulnerabilities
Risk_score4.0
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@6.0.41