Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:maven/org.apache.tomcat/tomcat@5.5.35

Type maven

Namespace org.apache.tomcat

Name tomcat

Version 5.5.35

Qualifiers

Subpath

Is_vulnerable true

Next_non_vulnerable_version 9.0.117

Latest_non_vulnerable_version 11.0.21

Affected_by_vulnerabilities

url VCID-n76n-ywja-rbhh

vulnerability_id VCID-n76n-ywja-rbhh

summary Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2012-5885, CVE-2012-5886, CVE-2012-5887. Reason: This candidate is a duplicate of CVE-2012-5885, CVE-2012-5886, and CVE-2012-5887. Notes: All CVE users should reference one or more of CVE-2012-5885, CVE-2012-5886, and CVE-2012-5887 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage.

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-3439.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-3439.json

reference_url	https://github.com/apache/tomcat55/commit/83adfde198d8f9305edbd240e0081a2bb7902cfd
reference_id
reference_type
scores
url	https://github.com/apache/tomcat55/commit/83adfde198d8f9305edbd240e0081a2bb7902cfd

reference_url	https://github.com/apache/tomcat70/commit/74a0585c82d981e80c82cd88d1cbcdb80082b77b
reference_id
reference_type
scores
url	https://github.com/apache/tomcat70/commit/74a0585c82d981e80c82cd88d1cbcdb80082b77b

reference_url	https://svn.apache.org/viewvc?view=rev&rev=1377807
reference_id
reference_type
scores
url	https://svn.apache.org/viewvc?view=rev&rev=1377807

reference_url	https://svn.apache.org/viewvc?view=rev&rev=1380829
reference_id
reference_type
scores
url	https://svn.apache.org/viewvc?view=rev&rev=1380829

reference_url	https://svn.apache.org/viewvc?view=rev&rev=1392248
reference_id
reference_type
scores
url	https://svn.apache.org/viewvc?view=rev&rev=1392248

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1275985
reference_id	1275985
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1275985

reference_url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3439

reference_id

CVE-2012-3439

reference_type

scores

value	Moderate
scoring_system	apache_tomcat
scoring_elements

url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3439

reference_url	https://nvd.nist.gov/vuln/detail/CVE-2012-3439
reference_id	CVE-2012-3439
reference_type
scores
url	https://nvd.nist.gov/vuln/detail/CVE-2012-3439

fixed_packages

url	pkg:maven/org.apache.tomcat/tomcat@5.5.36
purl	pkg:maven/org.apache.tomcat/tomcat@5.5.36
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@5.5.36

url pkg:maven/org.apache.tomcat/tomcat@6.0.36

purl pkg:maven/org.apache.tomcat/tomcat@6.0.36

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-p4dn-y54m-8fd1

vulnerability	VCID-ryha-ndms-afbn

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@6.0.36

url	pkg:maven/org.apache.tomcat/tomcat@7.0.30
purl	pkg:maven/org.apache.tomcat/tomcat@7.0.30
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@7.0.30

aliases CVE-2012-3439

risk_score 3.1

exploitability 0.5

weighted_severity 6.2

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-n76n-ywja-rbhh

Fixing_vulnerabilities

Risk_score 3.1

Resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@5.5.35

Package Instance