Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:apache/tomcat@6.0.15
Typeapache
Namespace
Nametomcat
Version6.0.15
Qualifiers
Subpath
Is_vulnerabletrue
Next_non_vulnerable_version6.0.24
Latest_non_vulnerable_version11.0.21
Affected_by_vulnerabilities
0
url VCID-7pd9-1r19-73fe
vulnerability_id VCID-7pd9-1r19-73fe
summary Apache Tomcat 5.5.11 through 5.5.25 and 6.0.0 through 6.0.15, when the native APR connector is used, does not properly handle an empty request to the SSL port, which allows remote attackers to trigger handling of "a duplicate copy of one of the recent requests," as demonstrated by using netcat to send the empty request.
references
0
reference_url http://lists.apple.com/archives/security-announce/2008/Oct/msg00001.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://lists.apple.com/archives/security-announce/2008/Oct/msg00001.html
1
reference_url http://lists.opensuse.org/opensuse-security-announce/2009-02/msg00002.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://lists.opensuse.org/opensuse-security-announce/2009-02/msg00002.html
2
reference_url http://marc.info/?l=bugtraq&m=139344343412337&w=2
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://marc.info/?l=bugtraq&m=139344343412337&w=2
3
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-6286.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-6286.json
4
reference_url https://api.first.org/data/v1/epss?cve=CVE-2007-6286
reference_id
reference_type
scores
0
value 0.09459
scoring_system epss
scoring_elements 0.92822
published_at 2026-04-16T12:55:00Z
1
value 0.09459
scoring_system epss
scoring_elements 0.92811
published_at 2026-04-13T12:55:00Z
2
value 0.09459
scoring_system epss
scoring_elements 0.92812
published_at 2026-04-11T12:55:00Z
3
value 0.09459
scoring_system epss
scoring_elements 0.92807
published_at 2026-04-09T12:55:00Z
4
value 0.09459
scoring_system epss
scoring_elements 0.92803
published_at 2026-04-08T12:55:00Z
5
value 0.09459
scoring_system epss
scoring_elements 0.92794
published_at 2026-04-07T12:55:00Z
6
value 0.09459
scoring_system epss
scoring_elements 0.92796
published_at 2026-04-04T12:55:00Z
7
value 0.09459
scoring_system epss
scoring_elements 0.92785
published_at 2026-04-01T12:55:00Z
8
value 0.09459
scoring_system epss
scoring_elements 0.92791
published_at 2026-04-02T12:55:00Z
9
value 0.09459
scoring_system epss
scoring_elements 0.92827
published_at 2026-04-21T12:55:00Z
10
value 0.09459
scoring_system epss
scoring_elements 0.92823
published_at 2026-04-18T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2007-6286
5
reference_url https://lists.apache.org/thread.html/06cfb634bc7bf37af7d8f760f118018746ad8efbd519c4b789ac9c2e@%3Cdev.tomcat.apache.org%3E
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://lists.apache.org/thread.html/06cfb634bc7bf37af7d8f760f118018746ad8efbd519c4b789ac9c2e@%3Cdev.tomcat.apache.org%3E
6
reference_url https://lists.apache.org/thread.html/8dcaf7c3894d66cb717646ea1504ea6e300021c85bb4e677dc16b1aa@%3Cdev.tomcat.apache.org%3E
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://lists.apache.org/thread.html/8dcaf7c3894d66cb717646ea1504ea6e300021c85bb4e677dc16b1aa@%3Cdev.tomcat.apache.org%3E
7
reference_url https://lists.apache.org/thread.html/r584a714f141eff7b1c358d4679288177bd4ca4558e9999d15867d4b5@%3Cdev.tomcat.apache.org%3E
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://lists.apache.org/thread.html/r584a714f141eff7b1c358d4679288177bd4ca4558e9999d15867d4b5@%3Cdev.tomcat.apache.org%3E
8
reference_url http://support.apple.com/kb/HT3216
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://support.apple.com/kb/HT3216
9
reference_url https://www.redhat.com/archives/fedora-package-announce/2008-February/msg00315.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://www.redhat.com/archives/fedora-package-announce/2008-February/msg00315.html
10
reference_url https://www.redhat.com/archives/fedora-package-announce/2008-February/msg00460.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://www.redhat.com/archives/fedora-package-announce/2008-February/msg00460.html
11
reference_url http://tomcat.apache.org/security-5.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://tomcat.apache.org/security-5.html
12
reference_url http://tomcat.apache.org/security-6.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://tomcat.apache.org/security-6.html
13
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=432332
reference_id 432332
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=432332
14
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-6286
reference_id CVE-2007-6286
reference_type
scores
0
value Important
scoring_system apache_tomcat
scoring_elements
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-6286
15
reference_url https://nvd.nist.gov/vuln/detail/CVE-2007-6286
reference_id CVE-2007-6286
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2007-6286
16
reference_url https://github.com/advisories/GHSA-qrj4-rmqg-4hcp
reference_id GHSA-qrj4-rmqg-4hcp
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-qrj4-rmqg-4hcp
17
reference_url https://security.gentoo.org/glsa/200804-10
reference_id GLSA-200804-10
reference_type
scores
url https://security.gentoo.org/glsa/200804-10
fixed_packages
0
url pkg:apache/tomcat@6.0.16
purl pkg:apache/tomcat@6.0.16
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-a9cu-fxqw-xkdg
1
vulnerability VCID-acmu-9eqb-fya5
2
vulnerability VCID-egup-27ub-6uaf
3
vulnerability VCID-hves-r5bg-yfes
resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@6.0.16
aliases CVE-2007-6286, GHSA-qrj4-rmqg-4hcp
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-7pd9-1r19-73fe
1
url VCID-hhkg-mfp5-2kax
vulnerability_id VCID-hhkg-mfp5-2kax
summary The default catalina.policy in the JULI logging component in Apache Tomcat 5.5.9 through 5.5.25 and 6.0.0 through 6.0.15 does not restrict certain permissions for web applications, which allows attackers to modify logging configuration options and overwrite arbitrary files, as demonstrated by changing the (1) level, (2) directory, and (3) prefix attributes in the org.apache.juli.FileHandler handler.
references
0
reference_url http://lists.apple.com/archives/security-announce/2008/Oct/msg00001.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://lists.apple.com/archives/security-announce/2008/Oct/msg00001.html
1
reference_url http://lists.opensuse.org/opensuse-security-announce/2009-02/msg00002.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://lists.opensuse.org/opensuse-security-announce/2009-02/msg00002.html
2
reference_url http://marc.info/?l=bugtraq&m=139344343412337&w=2
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://marc.info/?l=bugtraq&m=139344343412337&w=2
3
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-5342.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-5342.json
4
reference_url https://api.first.org/data/v1/epss?cve=CVE-2007-5342
reference_id
reference_type
scores
0
value 0.18121
scoring_system epss
scoring_elements 0.95189
published_at 2026-04-16T12:55:00Z
1
value 0.18121
scoring_system epss
scoring_elements 0.95181
published_at 2026-04-13T12:55:00Z
2
value 0.18121
scoring_system epss
scoring_elements 0.95178
published_at 2026-04-12T12:55:00Z
3
value 0.18121
scoring_system epss
scoring_elements 0.95172
published_at 2026-04-09T12:55:00Z
4
value 0.18121
scoring_system epss
scoring_elements 0.95168
published_at 2026-04-08T12:55:00Z
5
value 0.18121
scoring_system epss
scoring_elements 0.95161
published_at 2026-04-07T12:55:00Z
6
value 0.18121
scoring_system epss
scoring_elements 0.95158
published_at 2026-04-04T12:55:00Z
7
value 0.18121
scoring_system epss
scoring_elements 0.95145
published_at 2026-04-01T12:55:00Z
8
value 0.18121
scoring_system epss
scoring_elements 0.95156
published_at 2026-04-02T12:55:00Z
9
value 0.18121
scoring_system epss
scoring_elements 0.95194
published_at 2026-04-21T12:55:00Z
10
value 0.18121
scoring_system epss
scoring_elements 0.95193
published_at 2026-04-18T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2007-5342
5
reference_url http://security.gentoo.org/glsa/glsa-200804-10.xml
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://security.gentoo.org/glsa/glsa-200804-10.xml
6
reference_url http://securityreason.com/securityalert/3485
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://securityreason.com/securityalert/3485
7
reference_url https://exchange.xforce.ibmcloud.com/vulnerabilities/39201
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://exchange.xforce.ibmcloud.com/vulnerabilities/39201
8
reference_url https://github.com/apache/tomcat/tree/main/java/org/apache/juli
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/apache/tomcat/tree/main/java/org/apache/juli
9
reference_url https://lists.apache.org/thread.html/06cfb634bc7bf37af7d8f760f118018746ad8efbd519c4b789ac9c2e@%3Cdev.tomcat.apache.org%3E
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://lists.apache.org/thread.html/06cfb634bc7bf37af7d8f760f118018746ad8efbd519c4b789ac9c2e@%3Cdev.tomcat.apache.org%3E
10
reference_url https://lists.apache.org/thread.html/06cfb634bc7bf37af7d8f760f118018746ad8efbd519c4b789ac9c2e%40%3Cdev.tomcat.apache.org%3E
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://lists.apache.org/thread.html/06cfb634bc7bf37af7d8f760f118018746ad8efbd519c4b789ac9c2e%40%3Cdev.tomcat.apache.org%3E
11
reference_url https://lists.apache.org/thread.html/8dcaf7c3894d66cb717646ea1504ea6e300021c85bb4e677dc16b1aa@%3Cdev.tomcat.apache.org%3E
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://lists.apache.org/thread.html/8dcaf7c3894d66cb717646ea1504ea6e300021c85bb4e677dc16b1aa@%3Cdev.tomcat.apache.org%3E
12
reference_url https://lists.apache.org/thread.html/8dcaf7c3894d66cb717646ea1504ea6e300021c85bb4e677dc16b1aa%40%3Cdev.tomcat.apache.org%3E
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://lists.apache.org/thread.html/8dcaf7c3894d66cb717646ea1504ea6e300021c85bb4e677dc16b1aa%40%3Cdev.tomcat.apache.org%3E
13
reference_url https://lists.apache.org/thread.html/r3aacc40356defc3f248aa504b1e48e819dd0471a0a83349080c6bcbf@%3Cdev.tomcat.apache.org%3E
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://lists.apache.org/thread.html/r3aacc40356defc3f248aa504b1e48e819dd0471a0a83349080c6bcbf@%3Cdev.tomcat.apache.org%3E
14
reference_url https://lists.apache.org/thread.html/r3aacc40356defc3f248aa504b1e48e819dd0471a0a83349080c6bcbf%40%3Cdev.tomcat.apache.org%3E
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://lists.apache.org/thread.html/r3aacc40356defc3f248aa504b1e48e819dd0471a0a83349080c6bcbf%40%3Cdev.tomcat.apache.org%3E
15
reference_url https://lists.apache.org/thread.html/r584a714f141eff7b1c358d4679288177bd4ca4558e9999d15867d4b5@%3Cdev.tomcat.apache.org%3E
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://lists.apache.org/thread.html/r584a714f141eff7b1c358d4679288177bd4ca4558e9999d15867d4b5@%3Cdev.tomcat.apache.org%3E
16
reference_url https://lists.apache.org/thread.html/r584a714f141eff7b1c358d4679288177bd4ca4558e9999d15867d4b5%40%3Cdev.tomcat.apache.org%3E
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://lists.apache.org/thread.html/r584a714f141eff7b1c358d4679288177bd4ca4558e9999d15867d4b5%40%3Cdev.tomcat.apache.org%3E
17
reference_url https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10417
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10417
18
reference_url http://support.apple.com/kb/HT3216
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://support.apple.com/kb/HT3216
19
reference_url http://support.avaya.com/elmodocs2/security/ASA-2008-401.htm
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://support.avaya.com/elmodocs2/security/ASA-2008-401.htm
20
reference_url http://svn.apache.org/viewvc?view=rev&revision=606594
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://svn.apache.org/viewvc?view=rev&revision=606594
21
reference_url https://www.redhat.com/archives/fedora-package-announce/2008-February/msg00315.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://www.redhat.com/archives/fedora-package-announce/2008-February/msg00315.html
22
reference_url https://www.redhat.com/archives/fedora-package-announce/2008-February/msg00460.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://www.redhat.com/archives/fedora-package-announce/2008-February/msg00460.html
23
reference_url http://tomcat.apache.org/security-5.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://tomcat.apache.org/security-5.html
24
reference_url http://tomcat.apache.org/security-6.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://tomcat.apache.org/security-6.html
25
reference_url http://www.debian.org/security/2008/dsa-1447
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://www.debian.org/security/2008/dsa-1447
26
reference_url http://www.mandriva.com/security/advisories?name=MDVSA-2008:188
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://www.mandriva.com/security/advisories?name=MDVSA-2008:188
27
reference_url http://www.redhat.com/support/errata/RHSA-2008-0042.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://www.redhat.com/support/errata/RHSA-2008-0042.html
28
reference_url http://www.redhat.com/support/errata/RHSA-2008-0195.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://www.redhat.com/support/errata/RHSA-2008-0195.html
29
reference_url http://www.redhat.com/support/errata/RHSA-2008-0831.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://www.redhat.com/support/errata/RHSA-2008-0831.html
30
reference_url http://www.redhat.com/support/errata/RHSA-2008-0832.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://www.redhat.com/support/errata/RHSA-2008-0832.html
31
reference_url http://www.redhat.com/support/errata/RHSA-2008-0833.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://www.redhat.com/support/errata/RHSA-2008-0833.html
32
reference_url http://www.redhat.com/support/errata/RHSA-2008-0834.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://www.redhat.com/support/errata/RHSA-2008-0834.html
33
reference_url http://www.redhat.com/support/errata/RHSA-2008-0862.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://www.redhat.com/support/errata/RHSA-2008-0862.html
34
reference_url http://www.securityfocus.com/archive/1/485481/100/0/threaded
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://www.securityfocus.com/archive/1/485481/100/0/threaded
35
reference_url http://www.securityfocus.com/archive/1/507985/100/0/threaded
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://www.securityfocus.com/archive/1/507985/100/0/threaded
36
reference_url http://www.securityfocus.com/bid/27006
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://www.securityfocus.com/bid/27006
37
reference_url http://www.securityfocus.com/bid/31681
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://www.securityfocus.com/bid/31681
38
reference_url http://www.vmware.com/security/advisories/VMSA-2008-0010.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://www.vmware.com/security/advisories/VMSA-2008-0010.html
39
reference_url http://www.vmware.com/security/advisories/VMSA-2009-0016.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://www.vmware.com/security/advisories/VMSA-2009-0016.html
40
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=427216
reference_id 427216
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=427216
41
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5342
reference_id CVE-2007-5342
reference_type
scores
0
value Low
scoring_system apache_tomcat
scoring_elements
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5342
42
reference_url https://nvd.nist.gov/vuln/detail/CVE-2007-5342
reference_id CVE-2007-5342
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2007-5342
43
reference_url https://github.com/advisories/GHSA-w65j-cmqc-37p2
reference_id GHSA-w65j-cmqc-37p2
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-w65j-cmqc-37p2
44
reference_url https://security.gentoo.org/glsa/200804-10
reference_id GLSA-200804-10
reference_type
scores
url https://security.gentoo.org/glsa/200804-10
45
reference_url https://access.redhat.com/errata/RHSA-2008:0042
reference_id RHSA-2008:0042
reference_type
scores
url https://access.redhat.com/errata/RHSA-2008:0042
46
reference_url https://access.redhat.com/errata/RHSA-2008:0195
reference_id RHSA-2008:0195
reference_type
scores
url https://access.redhat.com/errata/RHSA-2008:0195
47
reference_url https://access.redhat.com/errata/RHSA-2008:0831
reference_id RHSA-2008:0831
reference_type
scores
url https://access.redhat.com/errata/RHSA-2008:0831
48
reference_url https://access.redhat.com/errata/RHSA-2008:0832
reference_id RHSA-2008:0832
reference_type
scores
url https://access.redhat.com/errata/RHSA-2008:0832
49
reference_url https://access.redhat.com/errata/RHSA-2008:0833
reference_id RHSA-2008:0833
reference_type
scores
url https://access.redhat.com/errata/RHSA-2008:0833
50
reference_url https://access.redhat.com/errata/RHSA-2008:0834
reference_id RHSA-2008:0834
reference_type
scores
url https://access.redhat.com/errata/RHSA-2008:0834
fixed_packages
0
url pkg:apache/tomcat@6.0.16
purl pkg:apache/tomcat@6.0.16
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-a9cu-fxqw-xkdg
1
vulnerability VCID-acmu-9eqb-fya5
2
vulnerability VCID-egup-27ub-6uaf
3
vulnerability VCID-hves-r5bg-yfes
resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@6.0.16
aliases CVE-2007-5342, GHSA-w65j-cmqc-37p2
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-hhkg-mfp5-2kax
2
url VCID-t9y6-suc2-2kcg
vulnerability_id VCID-t9y6-suc2-2kcg
summary Apache Tomcat 6.0.0 through 6.0.15 processes parameters in the context of the wrong request when an exception occurs during parameter processing, which might allow remote attackers to obtain sensitive information, as demonstrated by disconnecting during this processing in order to trigger the exception.
references
0
reference_url http://lists.apple.com/archives/security-announce/2008/Oct/msg00001.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://lists.apple.com/archives/security-announce/2008/Oct/msg00001.html
1
reference_url http://lists.opensuse.org/opensuse-security-announce/2009-02/msg00002.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://lists.opensuse.org/opensuse-security-announce/2009-02/msg00002.html
2
reference_url http://marc.info/?l=bugtraq&m=139344343412337&w=2
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://marc.info/?l=bugtraq&m=139344343412337&w=2
3
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-0002.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-0002.json
4
reference_url https://api.first.org/data/v1/epss?cve=CVE-2008-0002
reference_id
reference_type
scores
0
value 0.04097
scoring_system epss
scoring_elements 0.88592
published_at 2026-04-13T12:55:00Z
1
value 0.04097
scoring_system epss
scoring_elements 0.886
published_at 2026-04-21T12:55:00Z
2
value 0.04097
scoring_system epss
scoring_elements 0.88588
published_at 2026-04-09T12:55:00Z
3
value 0.04097
scoring_system epss
scoring_elements 0.88583
published_at 2026-04-08T12:55:00Z
4
value 0.04097
scoring_system epss
scoring_elements 0.88565
published_at 2026-04-07T12:55:00Z
5
value 0.04097
scoring_system epss
scoring_elements 0.88562
published_at 2026-04-04T12:55:00Z
6
value 0.04097
scoring_system epss
scoring_elements 0.88536
published_at 2026-04-01T12:55:00Z
7
value 0.04097
scoring_system epss
scoring_elements 0.88544
published_at 2026-04-02T12:55:00Z
8
value 0.04097
scoring_system epss
scoring_elements 0.88602
published_at 2026-04-18T12:55:00Z
9
value 0.04097
scoring_system epss
scoring_elements 0.88606
published_at 2026-04-16T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2008-0002
5
reference_url http://security.gentoo.org/glsa/glsa-200804-10.xml
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://security.gentoo.org/glsa/glsa-200804-10.xml
6
reference_url https://github.com/apache/tomcat
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/apache/tomcat
7
reference_url http://support.apple.com/kb/HT3216
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://support.apple.com/kb/HT3216
8
reference_url https://web.archive.org/web/20080214133036/http://secunia.com/advisories/28915
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://web.archive.org/web/20080214133036/http://secunia.com/advisories/28915
9
reference_url https://web.archive.org/web/20080715062302/http://secunia.com/advisories/29711
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://web.archive.org/web/20080715062302/http://secunia.com/advisories/29711
10
reference_url https://web.archive.org/web/20080724052339/http://secunia.com/advisories/28834
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://web.archive.org/web/20080724052339/http://secunia.com/advisories/28834
11
reference_url https://web.archive.org/web/20081012021650/http://www.securityfocus.com/bid/27703
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://web.archive.org/web/20081012021650/http://www.securityfocus.com/bid/27703
12
reference_url https://web.archive.org/web/20081013050642/http://secunia.com/advisories/32222
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://web.archive.org/web/20081013050642/http://secunia.com/advisories/32222
13
reference_url https://web.archive.org/web/20081120062646/http://securityreason.com/securityalert/3638
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://web.archive.org/web/20081120062646/http://securityreason.com/securityalert/3638
14
reference_url https://web.archive.org/web/20081121133027/http://www.securityfocus.com/archive/1/487812/100/0/threaded
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://web.archive.org/web/20081121133027/http://www.securityfocus.com/archive/1/487812/100/0/threaded
15
reference_url https://web.archive.org/web/20091125140215/http://secunia.com/advisories/37460
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://web.archive.org/web/20091125140215/http://secunia.com/advisories/37460
16
reference_url https://web.archive.org/web/20120825080137/http://www.securityfocus.com/bid/31681
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://web.archive.org/web/20120825080137/http://www.securityfocus.com/bid/31681
17
reference_url https://web.archive.org/web/20140723000733/http://secunia.com/advisories/57126
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://web.archive.org/web/20140723000733/http://secunia.com/advisories/57126
18
reference_url https://web.archive.org/web/20150621204350/http://www.securityfocus.com/archive/1/507985/100/0/threaded
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://web.archive.org/web/20150621204350/http://www.securityfocus.com/archive/1/507985/100/0/threaded
19
reference_url https://www.redhat.com/archives/fedora-package-announce/2008-February/msg00315.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://www.redhat.com/archives/fedora-package-announce/2008-February/msg00315.html
20
reference_url https://www.redhat.com/archives/fedora-package-announce/2008-February/msg00460.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://www.redhat.com/archives/fedora-package-announce/2008-February/msg00460.html
21
reference_url http://tomcat.apache.org/security-6.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://tomcat.apache.org/security-6.html
22
reference_url http://www.vmware.com/security/advisories/VMSA-2009-0016.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://www.vmware.com/security/advisories/VMSA-2009-0016.html
23
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=432327
reference_id 432327
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=432327
24
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-0002
reference_id CVE-2008-0002
reference_type
scores
0
value Important
scoring_system apache_tomcat
scoring_elements
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-0002
25
reference_url https://nvd.nist.gov/vuln/detail/CVE-2008-0002
reference_id CVE-2008-0002
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2008-0002
26
reference_url https://github.com/advisories/GHSA-5x5f-9r6q-q7mh
reference_id GHSA-5x5f-9r6q-q7mh
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-5x5f-9r6q-q7mh
27
reference_url https://security.gentoo.org/glsa/200804-10
reference_id GLSA-200804-10
reference_type
scores
url https://security.gentoo.org/glsa/200804-10
28
reference_url https://access.redhat.com/errata/RHSA-2008:0151
reference_id RHSA-2008:0151
reference_type
scores
url https://access.redhat.com/errata/RHSA-2008:0151
29
reference_url https://access.redhat.com/errata/RHSA-2008:0158
reference_id RHSA-2008:0158
reference_type
scores
url https://access.redhat.com/errata/RHSA-2008:0158
30
reference_url https://access.redhat.com/errata/RHSA-2008:0213
reference_id RHSA-2008:0213
reference_type
scores
url https://access.redhat.com/errata/RHSA-2008:0213
fixed_packages
0
url pkg:apache/tomcat@6.0.16
purl pkg:apache/tomcat@6.0.16
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-a9cu-fxqw-xkdg
1
vulnerability VCID-acmu-9eqb-fya5
2
vulnerability VCID-egup-27ub-6uaf
3
vulnerability VCID-hves-r5bg-yfes
resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@6.0.16
aliases CVE-2008-0002, GHSA-5x5f-9r6q-q7mh
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-t9y6-suc2-2kcg
Fixing_vulnerabilities
Risk_score4.0
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:apache/tomcat@6.0.15