Package Instance

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

reference_url

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://access.redhat.com/errata/RHSA-2008:0648

reference_url

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://access.redhat.com/errata/RHSA-2008:0648

reference_url

https://access.redhat.com/errata/RHSA-2008:0862

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://access.redhat.com/errata/RHSA-2008:0862

reference_url

https://access.redhat.com/errata/RHSA-2008:0864

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://access.redhat.com/errata/RHSA-2008:0864

reference_url

https://access.redhat.com/errata/RHSA-2008:0877

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://access.redhat.com/errata/RHSA-2008:0877

reference_url

https://access.redhat.com/errata/RHSA-2008:1007

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://access.redhat.com/errata/RHSA-2008:1007

reference_url

https://access.redhat.com/errata/RHSA-2010:0602

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://access.redhat.com/errata/RHSA-2010:0602

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-1232.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-1232.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2008-1232

reference_id

reference_type

scores

value	0.38145
scoring_system	epss
scoring_elements	0.97229
published_at	2026-04-16T12:55:00Z

value	0.38145
scoring_system	epss
scoring_elements	0.97232
published_at	2026-04-18T12:55:00Z

value	0.38145
scoring_system	epss
scoring_elements	0.9722
published_at	2026-04-11T12:55:00Z

value	0.38145
scoring_system	epss
scoring_elements	0.97234
published_at	2026-04-21T12:55:00Z

value	0.38145
scoring_system	epss
scoring_elements	0.97216
published_at	2026-04-09T12:55:00Z

value	0.38145
scoring_system	epss
scoring_elements	0.97215
published_at	2026-04-08T12:55:00Z

value	0.38145
scoring_system	epss
scoring_elements	0.97205
published_at	2026-04-07T12:55:00Z

value	0.38145
scoring_system	epss
scoring_elements	0.97204
published_at	2026-04-04T12:55:00Z

value	0.38145
scoring_system	epss
scoring_elements	0.97198
published_at	2026-04-02T12:55:00Z

value	0.38145
scoring_system	epss
scoring_elements	0.97192
published_at	2026-04-01T12:55:00Z

value	0.38145
scoring_system	epss
scoring_elements	0.97221
published_at	2026-04-13T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2008-1232

reference_url

https://bugzilla.redhat.com/show_bug.cgi?id=457597

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://bugzilla.redhat.com/show_bug.cgi?id=457597

reference_url

http://secunia.com/advisories/31379

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://secunia.com/advisories/31379

reference_url

http://secunia.com/advisories/31381

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://secunia.com/advisories/31381

reference_url

http://secunia.com/advisories/31639

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://secunia.com/advisories/31639

reference_url

http://secunia.com/advisories/31865

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://secunia.com/advisories/31865

reference_url

http://secunia.com/advisories/31891

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://secunia.com/advisories/31891

reference_url

http://secunia.com/advisories/31982

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://secunia.com/advisories/31982

reference_url

http://secunia.com/advisories/32120

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://secunia.com/advisories/32120

reference_url

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://secunia.com/advisories/32266

reference_url

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://secunia.com/advisories/32266

reference_url

http://secunia.com/advisories/33797

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://secunia.com/advisories/33797

reference_url

http://secunia.com/advisories/33999

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://secunia.com/advisories/33999

reference_url

http://secunia.com/advisories/34013

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://secunia.com/advisories/34013

reference_url

http://secunia.com/advisories/35474

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://secunia.com/advisories/35474

reference_url

http://secunia.com/advisories/36108

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://secunia.com/advisories/36108

reference_url

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

reference_url

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://securityreason.com/securityalert/4098

reference_url

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://securityreason.com/securityalert/4098

reference_url

https://exchange.xforce.ibmcloud.com/vulnerabilities/44155

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://exchange.xforce.ibmcloud.com/vulnerabilities/44155

reference_url

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/06cfb634bc7bf37af7d8f760f118018746ad8efbd519c4b789ac9c2e@%3Cdev.tomcat.apache.org%3E

reference_url

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/06cfb634bc7bf37af7d8f760f118018746ad8efbd519c4b789ac9c2e@%3Cdev.tomcat.apache.org%3E

reference_url

https://lists.apache.org/thread.html/06cfb634bc7bf37af7d8f760f118018746ad8efbd519c4b789ac9c2e%40%3Cdev.tomcat.apache.org%3E

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/06cfb634bc7bf37af7d8f760f118018746ad8efbd519c4b789ac9c2e%40%3Cdev.tomcat.apache.org%3E

reference_url

https://lists.apache.org/thread.html/29dc6c2b625789e70a9c4756b5a327e6547273ff8bde7e0327af48c5@%3Cdev.tomcat.apache.org%3E

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/29dc6c2b625789e70a9c4756b5a327e6547273ff8bde7e0327af48c5@%3Cdev.tomcat.apache.org%3E

reference_url

https://lists.apache.org/thread.html/29dc6c2b625789e70a9c4756b5a327e6547273ff8bde7e0327af48c5%40%3Cdev.tomcat.apache.org%3E

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/29dc6c2b625789e70a9c4756b5a327e6547273ff8bde7e0327af48c5%40%3Cdev.tomcat.apache.org%3E

reference_url

https://lists.apache.org/thread.html/8dcaf7c3894d66cb717646ea1504ea6e300021c85bb4e677dc16b1aa@%3Cdev.tomcat.apache.org%3E

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/8dcaf7c3894d66cb717646ea1504ea6e300021c85bb4e677dc16b1aa@%3Cdev.tomcat.apache.org%3E

reference_url

https://lists.apache.org/thread.html/8dcaf7c3894d66cb717646ea1504ea6e300021c85bb4e677dc16b1aa%40%3Cdev.tomcat.apache.org%3E

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/8dcaf7c3894d66cb717646ea1504ea6e300021c85bb4e677dc16b1aa%40%3Cdev.tomcat.apache.org%3E

reference_url

https://lists.apache.org/thread.html/c62b0e3a7bf23342352a5810c640a94b6db69957c5c19db507004d74@%3Cdev.tomcat.apache.org%3E

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/c62b0e3a7bf23342352a5810c640a94b6db69957c5c19db507004d74@%3Cdev.tomcat.apache.org%3E

reference_url

https://lists.apache.org/thread.html/c62b0e3a7bf23342352a5810c640a94b6db69957c5c19db507004d74%40%3Cdev.tomcat.apache.org%3E

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/c62b0e3a7bf23342352a5810c640a94b6db69957c5c19db507004d74%40%3Cdev.tomcat.apache.org%3E

reference_url

https://lists.apache.org/thread.html/r3aacc40356defc3f248aa504b1e48e819dd0471a0a83349080c6bcbf@%3Cdev.tomcat.apache.org%3E

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/r3aacc40356defc3f248aa504b1e48e819dd0471a0a83349080c6bcbf@%3Cdev.tomcat.apache.org%3E

reference_url

https://lists.apache.org/thread.html/r3aacc40356defc3f248aa504b1e48e819dd0471a0a83349080c6bcbf%40%3Cdev.tomcat.apache.org%3E

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/r3aacc40356defc3f248aa504b1e48e819dd0471a0a83349080c6bcbf%40%3Cdev.tomcat.apache.org%3E

reference_url

https://lists.apache.org/thread.html/r584a714f141eff7b1c358d4679288177bd4ca4558e9999d15867d4b5@%3Cdev.tomcat.apache.org%3E

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/r584a714f141eff7b1c358d4679288177bd4ca4558e9999d15867d4b5@%3Cdev.tomcat.apache.org%3E

reference_url

https://lists.apache.org/thread.html/r584a714f141eff7b1c358d4679288177bd4ca4558e9999d15867d4b5%40%3Cdev.tomcat.apache.org%3E

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/r584a714f141eff7b1c358d4679288177bd4ca4558e9999d15867d4b5%40%3Cdev.tomcat.apache.org%3E

reference_url

https://lists.apache.org/thread.html/rb71997f506c6cc8b530dd845c084995a9878098846c7b4eacfae8db3@%3Cdev.tomcat.apache.org%3E

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/rb71997f506c6cc8b530dd845c084995a9878098846c7b4eacfae8db3@%3Cdev.tomcat.apache.org%3E

reference_url

https://lists.apache.org/thread.html/rb71997f506c6cc8b530dd845c084995a9878098846c7b4eacfae8db3%40%3Cdev.tomcat.apache.org%3E

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/rb71997f506c6cc8b530dd845c084995a9878098846c7b4eacfae8db3%40%3Cdev.tomcat.apache.org%3E

reference_url

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11181

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11181

reference_url

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5985

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5985

reference_url

https://support.ca.com/irj/portal/anonymous/phpsupcontent?contentID=209500

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://support.ca.com/irj/portal/anonymous/phpsupcontent?contentID=209500

reference_url

https://support.ca.com/irj/portal/anonymous/phpsupcontent?contentID=214095

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://support.ca.com/irj/portal/anonymous/phpsupcontent?contentID=214095

reference_url	https://svn.apache.org/viewvc?view=rev&rev=673834
reference_id
reference_type
scores
url	https://svn.apache.org/viewvc?view=rev&rev=673834

reference_url	https://svn.apache.org/viewvc?view=rev&rev=680947
reference_id
reference_type
scores
url	https://svn.apache.org/viewvc?view=rev&rev=680947

reference_url

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://support.avaya.com/elmodocs2/security/ASA-2008-401.htm

reference_url

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://support.avaya.com/elmodocs2/security/ASA-2008-401.htm

reference_url

https://www.redhat.com/archives/fedora-package-announce/2008-September/msg00712.html

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://www.redhat.com/archives/fedora-package-announce/2008-September/msg00712.html

reference_url

https://www.redhat.com/archives/fedora-package-announce/2008-September/msg00859.html

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://www.redhat.com/archives/fedora-package-announce/2008-September/msg00859.html

reference_url

https://www.redhat.com/archives/fedora-package-announce/2008-September/msg00889.html

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://www.redhat.com/archives/fedora-package-announce/2008-September/msg00889.html

reference_url

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

reference_url

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

reference_url

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://www.mandriva.com/security/advisories?name=MDVSA-2008:188

reference_url

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://www.mandriva.com/security/advisories?name=MDVSA-2008:188

reference_url

http://www.redhat.com/support/errata/RHSA-2008-0648.html

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://www.redhat.com/support/errata/RHSA-2008-0648.html

reference_url

http://www.redhat.com/support/errata/RHSA-2008-0862.html

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://www.redhat.com/support/errata/RHSA-2008-0862.html

reference_url

http://www.redhat.com/support/errata/RHSA-2008-0864.html

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://www.redhat.com/support/errata/RHSA-2008-0864.html

reference_url

http://www.securityfocus.com/archive/1/495021/100/0/threaded

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://www.securityfocus.com/archive/1/495021/100/0/threaded

reference_url

http://www.securityfocus.com/archive/1/504351/100/0/threaded

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://www.securityfocus.com/archive/1/504351/100/0/threaded

reference_url

http://www.securityfocus.com/archive/1/505556/100/0/threaded

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://www.securityfocus.com/archive/1/505556/100/0/threaded

reference_url

http://www.securityfocus.com/archive/1/507985/100/0/threaded

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://www.securityfocus.com/archive/1/507985/100/0/threaded

reference_url

http://www.securityfocus.com/bid/30496

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://www.securityfocus.com/bid/30496

reference_url

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://www.securitytracker.com/id?1020622

reference_url

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://www.securitytracker.com/id?1020622

reference_url

http://www.vmware.com/security/advisories/VMSA-2009-0002.html

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://www.vmware.com/security/advisories/VMSA-2009-0002.html

reference_url

http://www.vmware.com/security/advisories/VMSA-2009-0016.html

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://www.vmware.com/security/advisories/VMSA-2009-0016.html

reference_url

http://www.vupen.com/english/advisories/2008/2305

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://www.vupen.com/english/advisories/2008/2305

reference_url

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://www.vupen.com/english/advisories/2008/2823

reference_url

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://www.vupen.com/english/advisories/2008/2823

reference_url

http://www.vupen.com/english/advisories/2009/0320

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://www.vupen.com/english/advisories/2009/0320

reference_url

http://www.vupen.com/english/advisories/2009/0503

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://www.vupen.com/english/advisories/2009/0503

reference_url

http://www.vupen.com/english/advisories/2009/1609

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://www.vupen.com/english/advisories/2009/1609

reference_url

http://www.vupen.com/english/advisories/2009/2194

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://www.vupen.com/english/advisories/2009/2194

reference_url

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://access.redhat.com/security/cve/CVE-2008-1232

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat::::::::
reference_id	cpe:2.3:a:apache:tomcat::::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat::::::::

reference_url

reference_id

CVE-2008-1232

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://access.redhat.com/security/cve/CVE-2008-1232

reference_url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1232

reference_id

CVE-2008-1232

reference_type

scores

value	Low
scoring_system	apache_tomcat
scoring_elements

url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1232

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2008-1232

reference_id

CVE-2008-1232

reference_type

scores

value	4.3
scoring_system	cvssv2
scoring_elements	AV:N/AC:M/Au:N/C:N/I:P/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2008-1232

reference_url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/remote/32138.txt
reference_id	CVE-2008-1232;OSVDB-47462
reference_type	exploit
scores
url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/remote/32138.txt

reference_url	https://www.securityfocus.com/bid/30496/info
reference_id	CVE-2008-1232;OSVDB-47462
reference_type	exploit
scores
url	https://www.securityfocus.com/bid/30496/info

reference_url

https://github.com/advisories/GHSA-q74x-qqhr-f8rx

reference_id

GHSA-q74x-qqhr-f8rx

reference_type

scores

value	MODERATE
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-q74x-qqhr-f8rx

fixed_packages

url pkg:apache/tomcat@4.1.39

purl pkg:apache/tomcat@4.1.39

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4rcx-xfn5-7kdb

vulnerability	VCID-bung-pa58-ayfv

vulnerability	VCID-dcrp-rae1-zfcm

vulnerability	VCID-mnf8-t3ew-4fgb

vulnerability	VCID-r84b-7ay9-ekcm

resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@4.1.39

url pkg:apache/tomcat@5.5.27

purl pkg:apache/tomcat@5.5.27

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4rcx-xfn5-7kdb

vulnerability	VCID-bung-pa58-ayfv

vulnerability	VCID-dcrp-rae1-zfcm

vulnerability	VCID-mnf8-t3ew-4fgb

vulnerability	VCID-r84b-7ay9-ekcm

resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@5.5.27

url pkg:apache/tomcat@6.0.18

purl pkg:apache/tomcat@6.0.18

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4rcx-xfn5-7kdb

vulnerability	VCID-bung-pa58-ayfv

vulnerability	VCID-dcrp-rae1-zfcm

vulnerability	VCID-mnf8-t3ew-4fgb

vulnerability	VCID-r84b-7ay9-ekcm

resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@6.0.18

aliases CVE-2008-1232, GHSA-q74x-qqhr-f8rx

risk_score 10.0

exploitability 2.0

weighted_severity 6.2

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-a9cu-fxqw-xkdg

url VCID-acmu-9eqb-fya5

vulnerability_id VCID-acmu-9eqb-fya5

summary Apache Tomcat 4.1.0 through 4.1.37, 5.5.0 through 5.5.26, and 6.0.0 through 6.0.16, when a RequestDispatcher is used, performs path normalization before removing the query string from the URI, which allows remote attackers to conduct directory traversal attacks and read arbitrary files via a .. (dot dot) in a request parameter.

references

reference_url

http://lists.apple.com/archives/security-announce/2008/Oct/msg00001.html

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://lists.apple.com/archives/security-announce/2008/Oct/msg00001.html

reference_url

http://lists.opensuse.org/opensuse-security-announce/2008-09/msg00004.html

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://lists.opensuse.org/opensuse-security-announce/2008-09/msg00004.html

reference_url

http://lists.opensuse.org/opensuse-security-announce/2009-02/msg00002.html

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://lists.opensuse.org/opensuse-security-announce/2009-02/msg00002.html

reference_url

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

reference_url

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://api.first.org/data/v1/epss?cve=CVE-2008-2370

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-2370.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-2370.json

reference_url

reference_id

reference_type

scores

value	0.89223
scoring_system	epss
scoring_elements	0.99538
published_at	2026-04-13T12:55:00Z

value	0.89223
scoring_system	epss
scoring_elements	0.99535
published_at	2026-04-07T12:55:00Z

value	0.89223
scoring_system	epss
scoring_elements	0.99536
published_at	2026-04-11T12:55:00Z

value	0.89223
scoring_system	epss
scoring_elements	0.99537
published_at	2026-04-12T12:55:00Z

value	0.89223
scoring_system	epss
scoring_elements	0.99532
published_at	2026-04-02T12:55:00Z

value	0.89223
scoring_system	epss
scoring_elements	0.99533
published_at	2026-04-04T12:55:00Z

value	0.89223
scoring_system	epss
scoring_elements	0.9954
published_at	2026-04-16T12:55:00Z

value	0.89223
scoring_system	epss
scoring_elements	0.99541
published_at	2026-04-21T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2008-2370

reference_url	http://secunia.com/advisories/31379
reference_id
reference_type
scores
url	http://secunia.com/advisories/31379

reference_url	http://secunia.com/advisories/31381
reference_id
reference_type
scores
url	http://secunia.com/advisories/31381

reference_url	http://secunia.com/advisories/31639
reference_id
reference_type
scores
url	http://secunia.com/advisories/31639

reference_url	http://secunia.com/advisories/31865
reference_id
reference_type
scores
url	http://secunia.com/advisories/31865

reference_url	http://secunia.com/advisories/31891
reference_id
reference_type
scores
url	http://secunia.com/advisories/31891

reference_url	http://secunia.com/advisories/31982
reference_id
reference_type
scores
url	http://secunia.com/advisories/31982

reference_url	http://secunia.com/advisories/32120
reference_id
reference_type
scores
url	http://secunia.com/advisories/32120

reference_url	http://secunia.com/advisories/32222
reference_id
reference_type
scores
url	http://secunia.com/advisories/32222

reference_url	http://secunia.com/advisories/32266
reference_id
reference_type
scores
url	http://secunia.com/advisories/32266

reference_url	http://secunia.com/advisories/33797
reference_id
reference_type
scores
url	http://secunia.com/advisories/33797

reference_url	http://secunia.com/advisories/33999
reference_id
reference_type
scores
url	http://secunia.com/advisories/33999

reference_url	http://secunia.com/advisories/34013
reference_id
reference_type
scores
url	http://secunia.com/advisories/34013

reference_url	http://secunia.com/advisories/35393
reference_id
reference_type
scores
url	http://secunia.com/advisories/35393

reference_url	http://secunia.com/advisories/36249
reference_id
reference_type
scores
url	http://secunia.com/advisories/36249

reference_url	http://secunia.com/advisories/37460
reference_id
reference_type
scores
url	http://secunia.com/advisories/37460

reference_url	http://secunia.com/advisories/57126
reference_id
reference_type
scores
url	http://secunia.com/advisories/57126

reference_url	http://securityreason.com/securityalert/4099
reference_id
reference_type
scores
url	http://securityreason.com/securityalert/4099

reference_url

https://exchange.xforce.ibmcloud.com/vulnerabilities/44156

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://exchange.xforce.ibmcloud.com/vulnerabilities/44156

reference_url

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/06cfb634bc7bf37af7d8f760f118018746ad8efbd519c4b789ac9c2e@%3Cdev.tomcat.apache.org%3E

reference_url

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/06cfb634bc7bf37af7d8f760f118018746ad8efbd519c4b789ac9c2e@%3Cdev.tomcat.apache.org%3E

reference_url

https://lists.apache.org/thread.html/06cfb634bc7bf37af7d8f760f118018746ad8efbd519c4b789ac9c2e%40%3Cdev.tomcat.apache.org%3E

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/06cfb634bc7bf37af7d8f760f118018746ad8efbd519c4b789ac9c2e%40%3Cdev.tomcat.apache.org%3E

reference_url

https://lists.apache.org/thread.html/29dc6c2b625789e70a9c4756b5a327e6547273ff8bde7e0327af48c5@%3Cdev.tomcat.apache.org%3E

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/29dc6c2b625789e70a9c4756b5a327e6547273ff8bde7e0327af48c5@%3Cdev.tomcat.apache.org%3E

reference_url

https://lists.apache.org/thread.html/29dc6c2b625789e70a9c4756b5a327e6547273ff8bde7e0327af48c5%40%3Cdev.tomcat.apache.org%3E

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/29dc6c2b625789e70a9c4756b5a327e6547273ff8bde7e0327af48c5%40%3Cdev.tomcat.apache.org%3E

reference_url

https://lists.apache.org/thread.html/8dcaf7c3894d66cb717646ea1504ea6e300021c85bb4e677dc16b1aa@%3Cdev.tomcat.apache.org%3E

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/8dcaf7c3894d66cb717646ea1504ea6e300021c85bb4e677dc16b1aa@%3Cdev.tomcat.apache.org%3E

reference_url

https://lists.apache.org/thread.html/8dcaf7c3894d66cb717646ea1504ea6e300021c85bb4e677dc16b1aa%40%3Cdev.tomcat.apache.org%3E

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/8dcaf7c3894d66cb717646ea1504ea6e300021c85bb4e677dc16b1aa%40%3Cdev.tomcat.apache.org%3E

reference_url

https://lists.apache.org/thread.html/c62b0e3a7bf23342352a5810c640a94b6db69957c5c19db507004d74@%3Cdev.tomcat.apache.org%3E

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/c62b0e3a7bf23342352a5810c640a94b6db69957c5c19db507004d74@%3Cdev.tomcat.apache.org%3E

reference_url

https://lists.apache.org/thread.html/c62b0e3a7bf23342352a5810c640a94b6db69957c5c19db507004d74%40%3Cdev.tomcat.apache.org%3E

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/c62b0e3a7bf23342352a5810c640a94b6db69957c5c19db507004d74%40%3Cdev.tomcat.apache.org%3E

reference_url

https://lists.apache.org/thread.html/r3aacc40356defc3f248aa504b1e48e819dd0471a0a83349080c6bcbf@%3Cdev.tomcat.apache.org%3E

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/r3aacc40356defc3f248aa504b1e48e819dd0471a0a83349080c6bcbf@%3Cdev.tomcat.apache.org%3E

reference_url

https://lists.apache.org/thread.html/r3aacc40356defc3f248aa504b1e48e819dd0471a0a83349080c6bcbf%40%3Cdev.tomcat.apache.org%3E

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/r3aacc40356defc3f248aa504b1e48e819dd0471a0a83349080c6bcbf%40%3Cdev.tomcat.apache.org%3E

reference_url

https://lists.apache.org/thread.html/r584a714f141eff7b1c358d4679288177bd4ca4558e9999d15867d4b5@%3Cdev.tomcat.apache.org%3E

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/r584a714f141eff7b1c358d4679288177bd4ca4558e9999d15867d4b5@%3Cdev.tomcat.apache.org%3E

reference_url

https://lists.apache.org/thread.html/r584a714f141eff7b1c358d4679288177bd4ca4558e9999d15867d4b5%40%3Cdev.tomcat.apache.org%3E

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/r584a714f141eff7b1c358d4679288177bd4ca4558e9999d15867d4b5%40%3Cdev.tomcat.apache.org%3E

reference_url

https://lists.apache.org/thread.html/rb71997f506c6cc8b530dd845c084995a9878098846c7b4eacfae8db3@%3Cdev.tomcat.apache.org%3E

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/rb71997f506c6cc8b530dd845c084995a9878098846c7b4eacfae8db3@%3Cdev.tomcat.apache.org%3E

reference_url

https://lists.apache.org/thread.html/rb71997f506c6cc8b530dd845c084995a9878098846c7b4eacfae8db3%40%3Cdev.tomcat.apache.org%3E

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/rb71997f506c6cc8b530dd845c084995a9878098846c7b4eacfae8db3%40%3Cdev.tomcat.apache.org%3E

reference_url

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10577

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10577

reference_url

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5876

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5876

reference_url	https://svn.apache.org/viewvc?view=rev&rev=673839
reference_id
reference_type
scores
url	https://svn.apache.org/viewvc?view=rev&rev=673839

reference_url	https://svn.apache.org/viewvc?view=rev&rev=680949
reference_id
reference_type
scores
url	https://svn.apache.org/viewvc?view=rev&rev=680949

reference_url	https://svn.apache.org/viewvc?view=rev&rev=680950
reference_id
reference_type
scores
url	https://svn.apache.org/viewvc?view=rev&rev=680950

reference_url

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://support.avaya.com/elmodocs2/security/ASA-2008-401.htm

reference_url

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://support.avaya.com/elmodocs2/security/ASA-2008-401.htm

reference_url

https://web.archive.org/web/20080827150120/http://securityreason.com/securityalert/4099

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://web.archive.org/web/20080827150120/http://securityreason.com/securityalert/4099

reference_url

https://web.archive.org/web/20090201124618/http://secunia.com/advisories/31381

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://web.archive.org/web/20090201124618/http://secunia.com/advisories/31381

reference_url

https://web.archive.org/web/20090201124623/http://secunia.com/advisories/31639

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://web.archive.org/web/20090201124623/http://secunia.com/advisories/31639

reference_url

https://web.archive.org/web/20090201124633/http://secunia.com/advisories/31891

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://web.archive.org/web/20090201124633/http://secunia.com/advisories/31891

reference_url

https://web.archive.org/web/20090201124638/http://secunia.com/advisories/32120

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://web.archive.org/web/20090201124638/http://secunia.com/advisories/32120

reference_url

https://web.archive.org/web/20090201124957/http://secunia.com/advisories/31982

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://web.archive.org/web/20090201124957/http://secunia.com/advisories/31982

reference_url

https://web.archive.org/web/20090201125002/http://secunia.com/advisories/32266

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://web.archive.org/web/20090201125002/http://secunia.com/advisories/32266

reference_url

https://web.archive.org/web/20090201141000/http://secunia.com/advisories/32222

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://web.archive.org/web/20090201141000/http://secunia.com/advisories/32222

reference_url

https://web.archive.org/web/20090207111236/http://secunia.com/advisories/33797

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://web.archive.org/web/20090207111236/http://secunia.com/advisories/33797

reference_url

https://web.archive.org/web/20090225175903/http://secunia.com/advisories/33999

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://web.archive.org/web/20090225175903/http://secunia.com/advisories/33999

reference_url

https://web.archive.org/web/20090228074535/http://secunia.com/advisories/31379

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://web.archive.org/web/20090228074535/http://secunia.com/advisories/31379

reference_url

https://web.archive.org/web/20090228074540/http://secunia.com/advisories/34013

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://web.archive.org/web/20090228074540/http://secunia.com/advisories/34013

reference_url

https://web.archive.org/web/20090308065055/http://secunia.com/advisories/31865

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://web.archive.org/web/20090308065055/http://secunia.com/advisories/31865

reference_url

https://web.archive.org/web/20090811003155/http://secunia.com/advisories/35393

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://web.archive.org/web/20090811003155/http://secunia.com/advisories/35393

reference_url

https://web.archive.org/web/20090828023853/http://secunia.com/advisories/36249

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://web.archive.org/web/20090828023853/http://secunia.com/advisories/36249

reference_url

https://web.archive.org/web/20100706231759/http://secunia.com/advisories/37460

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://web.archive.org/web/20100706231759/http://secunia.com/advisories/37460

reference_url

https://web.archive.org/web/20110714083521/http://www.securitytracker.com/id?1020623

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://web.archive.org/web/20110714083521/http://www.securitytracker.com/id?1020623

reference_url

https://web.archive.org/web/20110714174318/http://www.securityfocus.com/bid/30494

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://web.archive.org/web/20110714174318/http://www.securityfocus.com/bid/30494

reference_url

https://web.archive.org/web/20120719164745/http://www.securityfocus.com/archive/1/495022/100/0/threaded

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://web.archive.org/web/20120719164745/http://www.securityfocus.com/archive/1/495022/100/0/threaded

reference_url

https://web.archive.org/web/20120724210029/http://www.securityfocus.com/bid/31681

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://web.archive.org/web/20120724210029/http://www.securityfocus.com/bid/31681

reference_url

https://web.archive.org/web/20140723000733/http://secunia.com/advisories/57126

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://web.archive.org/web/20140723000733/http://secunia.com/advisories/57126

reference_url

https://web.archive.org/web/20150621204350/http://www.securityfocus.com/archive/1/507985/100/0/threaded

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://web.archive.org/web/20150621204350/http://www.securityfocus.com/archive/1/507985/100/0/threaded

reference_url

https://www.redhat.com/archives/fedora-package-announce/2008-September/msg00712.html

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://www.redhat.com/archives/fedora-package-announce/2008-September/msg00712.html

reference_url

https://www.redhat.com/archives/fedora-package-announce/2008-September/msg00859.html

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://www.redhat.com/archives/fedora-package-announce/2008-September/msg00859.html

reference_url

https://www.redhat.com/archives/fedora-package-announce/2008-September/msg00889.html

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://www.redhat.com/archives/fedora-package-announce/2008-September/msg00889.html

reference_url

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

reference_url

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

reference_url

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://www.fujitsu.com/global/support/software/security/products-f/interstage-200902e.html

reference_url

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://www.fujitsu.com/global/support/software/security/products-f/interstage-200902e.html

reference_url

http://www.mandriva.com/security/advisories?name=MDVSA-2008:188

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://www.mandriva.com/security/advisories?name=MDVSA-2008:188

reference_url

http://www.redhat.com/support/errata/RHSA-2008-0648.html

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://www.redhat.com/support/errata/RHSA-2008-0648.html

reference_url

http://www.redhat.com/support/errata/RHSA-2008-0862.html

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://www.redhat.com/support/errata/RHSA-2008-0862.html

reference_url

http://www.redhat.com/support/errata/RHSA-2008-0864.html

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://www.redhat.com/support/errata/RHSA-2008-0864.html

reference_url	http://www.securityfocus.com/archive/1/495022/100/0/threaded
reference_id
reference_type
scores
url	http://www.securityfocus.com/archive/1/495022/100/0/threaded

reference_url	http://www.securityfocus.com/archive/1/507985/100/0/threaded
reference_id
reference_type
scores
url	http://www.securityfocus.com/archive/1/507985/100/0/threaded

reference_url	http://www.securityfocus.com/bid/30494
reference_id
reference_type
scores
url	http://www.securityfocus.com/bid/30494

reference_url	http://www.securityfocus.com/bid/31681
reference_id
reference_type
scores
url	http://www.securityfocus.com/bid/31681

reference_url	http://www.securitytracker.com/id?1020623
reference_id
reference_type
scores
url	http://www.securitytracker.com/id?1020623

reference_url

http://www.vmware.com/security/advisories/VMSA-2009-0002.html

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://www.vmware.com/security/advisories/VMSA-2009-0002.html

reference_url

http://www.vmware.com/security/advisories/VMSA-2009-0016.html

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://www.vmware.com/security/advisories/VMSA-2009-0016.html

reference_url	http://www.vupen.com/english/advisories/2008/2305
reference_id
reference_type
scores
url	http://www.vupen.com/english/advisories/2008/2305

reference_url	http://www.vupen.com/english/advisories/2008/2780
reference_id
reference_type
scores
url	http://www.vupen.com/english/advisories/2008/2780

reference_url	http://www.vupen.com/english/advisories/2008/2823
reference_id
reference_type
scores
url	http://www.vupen.com/english/advisories/2008/2823

reference_url	http://www.vupen.com/english/advisories/2009/0320
reference_id
reference_type
scores
url	http://www.vupen.com/english/advisories/2009/0320

reference_url	http://www.vupen.com/english/advisories/2009/0503
reference_id
reference_type
scores
url	http://www.vupen.com/english/advisories/2009/0503

reference_url	http://www.vupen.com/english/advisories/2009/1535
reference_id
reference_type
scores
url	http://www.vupen.com/english/advisories/2009/1535

reference_url	http://www.vupen.com/english/advisories/2009/2215
reference_id
reference_type
scores
url	http://www.vupen.com/english/advisories/2009/2215

reference_url	http://www.vupen.com/english/advisories/2009/3316
reference_id
reference_type
scores
url	http://www.vupen.com/english/advisories/2009/3316

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=457934
reference_id	457934
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=457934

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.1.0:::::::*
reference_id	cpe:2.3:a:apache:tomcat:4.1.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.1.0:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.1.1:::::::*
reference_id	cpe:2.3:a:apache:tomcat:4.1.1:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.1.1:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.1.10:::::::*
reference_id	cpe:2.3:a:apache:tomcat:4.1.10:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.1.10:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.1.11:::::::*
reference_id	cpe:2.3:a:apache:tomcat:4.1.11:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.1.11:::::::*

100

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.1.12:::::::*
reference_id	cpe:2.3:a:apache:tomcat:4.1.12:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.1.12:::::::*

101

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.1.13:::::::*
reference_id	cpe:2.3:a:apache:tomcat:4.1.13:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.1.13:::::::*

102

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.1.14:::::::*
reference_id	cpe:2.3:a:apache:tomcat:4.1.14:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.1.14:::::::*

103

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.1.15:::::::*
reference_id	cpe:2.3:a:apache:tomcat:4.1.15:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.1.15:::::::*

104

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.1.16:::::::*
reference_id	cpe:2.3:a:apache:tomcat:4.1.16:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.1.16:::::::*

105

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.1.17:::::::*
reference_id	cpe:2.3:a:apache:tomcat:4.1.17:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.1.17:::::::*

106

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.1.18:::::::*
reference_id	cpe:2.3:a:apache:tomcat:4.1.18:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.1.18:::::::*

107

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.1.19:::::::*
reference_id	cpe:2.3:a:apache:tomcat:4.1.19:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.1.19:::::::*

108

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.1.2:::::::*
reference_id	cpe:2.3:a:apache:tomcat:4.1.2:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.1.2:::::::*

109

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.1.20:::::::*
reference_id	cpe:2.3:a:apache:tomcat:4.1.20:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.1.20:::::::*

110

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.1.21:::::::*
reference_id	cpe:2.3:a:apache:tomcat:4.1.21:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.1.21:::::::*

111

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.1.22:::::::*
reference_id	cpe:2.3:a:apache:tomcat:4.1.22:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.1.22:::::::*

112

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.1.23:::::::*
reference_id	cpe:2.3:a:apache:tomcat:4.1.23:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.1.23:::::::*

113

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.1.24:::::::*
reference_id	cpe:2.3:a:apache:tomcat:4.1.24:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.1.24:::::::*

114

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.1.25:::::::*
reference_id	cpe:2.3:a:apache:tomcat:4.1.25:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.1.25:::::::*

115

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.1.26:::::::*
reference_id	cpe:2.3:a:apache:tomcat:4.1.26:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.1.26:::::::*

116

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.1.27:::::::*
reference_id	cpe:2.3:a:apache:tomcat:4.1.27:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.1.27:::::::*

117

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.1.28:::::::*
reference_id	cpe:2.3:a:apache:tomcat:4.1.28:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.1.28:::::::*

118

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.1.29:::::::*
reference_id	cpe:2.3:a:apache:tomcat:4.1.29:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.1.29:::::::*

119

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.1.3:::::::*
reference_id	cpe:2.3:a:apache:tomcat:4.1.3:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.1.3:::::::*

120

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.1.30:::::::*
reference_id	cpe:2.3:a:apache:tomcat:4.1.30:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.1.30:::::::*

121

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.1.31:::::::*
reference_id	cpe:2.3:a:apache:tomcat:4.1.31:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.1.31:::::::*

122

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.1.32:::::::*
reference_id	cpe:2.3:a:apache:tomcat:4.1.32:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.1.32:::::::*

123

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.1.33:::::::*
reference_id	cpe:2.3:a:apache:tomcat:4.1.33:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.1.33:::::::*

124

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.1.34:::::::*
reference_id	cpe:2.3:a:apache:tomcat:4.1.34:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.1.34:::::::*

125

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.1.35:::::::*
reference_id	cpe:2.3:a:apache:tomcat:4.1.35:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.1.35:::::::*

126

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.1.36:::::::*
reference_id	cpe:2.3:a:apache:tomcat:4.1.36:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.1.36:::::::*

127

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.1.37:::::::*
reference_id	cpe:2.3:a:apache:tomcat:4.1.37:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.1.37:::::::*

128

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.1.4:::::::*
reference_id	cpe:2.3:a:apache:tomcat:4.1.4:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.1.4:::::::*

129

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.1.5:::::::*
reference_id	cpe:2.3:a:apache:tomcat:4.1.5:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.1.5:::::::*

130

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.1.6:::::::*
reference_id	cpe:2.3:a:apache:tomcat:4.1.6:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.1.6:::::::*

131

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.1.7:::::::*
reference_id	cpe:2.3:a:apache:tomcat:4.1.7:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.1.7:::::::*

132

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.1.8:::::::*
reference_id	cpe:2.3:a:apache:tomcat:4.1.8:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.1.8:::::::*

133

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.1.9:::::::*
reference_id	cpe:2.3:a:apache:tomcat:4.1.9:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.1.9:::::::*

134

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.0:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.5.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.0:::::::*

135

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.1:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.5.1:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.1:::::::*

136

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.10:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.5.10:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.10:::::::*

137

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.11:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.5.11:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.11:::::::*

138

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.12:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.5.12:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.12:::::::*

139

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.13:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.5.13:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.13:::::::*

140

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.14:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.5.14:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.14:::::::*

141

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.15:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.5.15:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.15:::::::*

142

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.16:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.5.16:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.16:::::::*

143

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.17:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.5.17:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.17:::::::*

144

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.18:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.5.18:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.18:::::::*

145

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.19:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.5.19:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.19:::::::*

146

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.2:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.5.2:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.2:::::::*

147

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.20:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.5.20:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.20:::::::*

148

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.21:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.5.21:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.21:::::::*

149

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.22:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.5.22:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.22:::::::*

150

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.23:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.5.23:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.23:::::::*

151

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.24:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.5.24:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.24:::::::*

152

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.25:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.5.25:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.25:::::::*

153

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.26:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.5.26:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.26:::::::*

154

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.3:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.5.3:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.3:::::::*

155

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.4:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.5.4:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.4:::::::*

156

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.5:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.5.5:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.5:::::::*

157

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.6:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.5.6:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.6:::::::*

158

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.7:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.5.7:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.7:::::::*

159

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.8:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.5.8:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.8:::::::*

160

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.9:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.5.9:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.9:::::::*

161

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.0:::::::*
reference_id	cpe:2.3:a:apache:tomcat:6.0.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.0:::::::*

162

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.1:::::::*
reference_id	cpe:2.3:a:apache:tomcat:6.0.1:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.1:::::::*

163

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.10:::::::*
reference_id	cpe:2.3:a:apache:tomcat:6.0.10:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.10:::::::*

164

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.11:::::::*
reference_id	cpe:2.3:a:apache:tomcat:6.0.11:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.11:::::::*

165

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.12:::::::*
reference_id	cpe:2.3:a:apache:tomcat:6.0.12:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.12:::::::*

166

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.13:::::::*
reference_id	cpe:2.3:a:apache:tomcat:6.0.13:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.13:::::::*

167

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.14:::::::*
reference_id	cpe:2.3:a:apache:tomcat:6.0.14:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.14:::::::*

168

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.15:::::::*
reference_id	cpe:2.3:a:apache:tomcat:6.0.15:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.15:::::::*

169

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.16:::::::*
reference_id	cpe:2.3:a:apache:tomcat:6.0.16:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.16:::::::*

170

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.2:::::::*
reference_id	cpe:2.3:a:apache:tomcat:6.0.2:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.2:::::::*

171

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.3:::::::*
reference_id	cpe:2.3:a:apache:tomcat:6.0.3:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.3:::::::*

172

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.4:::::::*
reference_id	cpe:2.3:a:apache:tomcat:6.0.4:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.4:::::::*

173

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.5:::::::*
reference_id	cpe:2.3:a:apache:tomcat:6.0.5:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.5:::::::*

174

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.6:::::::*
reference_id	cpe:2.3:a:apache:tomcat:6.0.6:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.6:::::::*

175

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.7:::::::*
reference_id	cpe:2.3:a:apache:tomcat:6.0.7:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.7:::::::*

176

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.8:::::::*
reference_id	cpe:2.3:a:apache:tomcat:6.0.8:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.8:::::::*

177

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.9:::::::*
reference_id	cpe:2.3:a:apache:tomcat:6.0.9:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.9:::::::*

178

reference_url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2370

reference_id

CVE-2008-2370

reference_type

scores

value	Important
scoring_system	apache_tomcat
scoring_elements

url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2370

179

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2008-2370

reference_id

CVE-2008-2370

reference_type

scores

value	5.0
scoring_system	cvssv2
scoring_elements	AV:N/AC:L/Au:N/C:P/I:N/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2008-2370

180

reference_url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/remote/32137.txt
reference_id	CVE-2008-2370;OSVDB-47463
reference_type	exploit
scores
url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/remote/32137.txt

181

reference_url	https://www.securityfocus.com/bid/30494/info
reference_id	CVE-2008-2370;OSVDB-47463
reference_type	exploit
scores
url	https://www.securityfocus.com/bid/30494/info

182

reference_url

https://github.com/advisories/GHSA-m8h8-6rvg-f4mg

reference_id

GHSA-m8h8-6rvg-f4mg

reference_type

scores

value	MODERATE
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-m8h8-6rvg-f4mg

fixed_packages

url pkg:apache/tomcat@4.1.39

purl pkg:apache/tomcat@4.1.39

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4rcx-xfn5-7kdb

vulnerability	VCID-bung-pa58-ayfv

vulnerability	VCID-dcrp-rae1-zfcm

vulnerability	VCID-mnf8-t3ew-4fgb

vulnerability	VCID-r84b-7ay9-ekcm

resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@4.1.39

url pkg:apache/tomcat@5.5.27

purl pkg:apache/tomcat@5.5.27

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4rcx-xfn5-7kdb

vulnerability	VCID-bung-pa58-ayfv

vulnerability	VCID-dcrp-rae1-zfcm

vulnerability	VCID-mnf8-t3ew-4fgb

vulnerability	VCID-r84b-7ay9-ekcm

resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@5.5.27

url pkg:apache/tomcat@6.0.18

purl pkg:apache/tomcat@6.0.18

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4rcx-xfn5-7kdb

vulnerability	VCID-bung-pa58-ayfv

vulnerability	VCID-dcrp-rae1-zfcm

vulnerability	VCID-mnf8-t3ew-4fgb

vulnerability	VCID-r84b-7ay9-ekcm

resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@6.0.18

aliases CVE-2008-2370, GHSA-m8h8-6rvg-f4mg

risk_score 10.0

exploitability 2.0

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-acmu-9eqb-fya5

url VCID-qdck-q54n-rkcv

vulnerability_id VCID-qdck-q54n-rkcv

summary The SingleSignOn Valve (org.apache.catalina.authenticator.SingleSignOn) in Apache Tomcat before 5.5.21 does not set the secure flag for the JSESSIONIDSSO cookie in an https session, which can cause the cookie to be sent in http requests and make it easier for remote attackers to capture this cookie.

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-0128.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-0128.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2008-0128

reference_id

reference_type

scores

value	0.03858
scoring_system	epss
scoring_elements	0.88224
published_at	2026-04-21T12:55:00Z

value	0.03858
scoring_system	epss
scoring_elements	0.88153
published_at	2026-04-01T12:55:00Z

value	0.03858
scoring_system	epss
scoring_elements	0.88162
published_at	2026-04-02T12:55:00Z

value	0.03858
scoring_system	epss
scoring_elements	0.88178
published_at	2026-04-04T12:55:00Z

value	0.03858
scoring_system	epss
scoring_elements	0.88184
published_at	2026-04-07T12:55:00Z

value	0.03858
scoring_system	epss
scoring_elements	0.88203
published_at	2026-04-08T12:55:00Z

value	0.03858
scoring_system	epss
scoring_elements	0.88209
published_at	2026-04-09T12:55:00Z

value	0.03858
scoring_system	epss
scoring_elements	0.8822
published_at	2026-04-11T12:55:00Z

value	0.03858
scoring_system	epss
scoring_elements	0.88213
published_at	2026-04-12T12:55:00Z

value	0.03858
scoring_system	epss
scoring_elements	0.88212
published_at	2026-04-13T12:55:00Z

value	0.03858
scoring_system	epss
scoring_elements	0.88226
published_at	2026-04-16T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2008-0128

reference_url	https://svn.apache.org/viewvc?view=rev&rev=684900
reference_id
reference_type
scores
url	https://svn.apache.org/viewvc?view=rev&rev=684900

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=429821
reference_id	429821
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=429821

reference_url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-0128

reference_id

CVE-2008-0128

reference_type

scores

value	Moderate
scoring_system	apache_tomcat
scoring_elements

url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-0128

reference_url	https://access.redhat.com/errata/RHSA-2008:0630
reference_id	RHSA-2008:0630
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2008:0630

fixed_packages

url pkg:apache/tomcat@4.1.39

purl pkg:apache/tomcat@4.1.39

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4rcx-xfn5-7kdb

vulnerability	VCID-bung-pa58-ayfv

vulnerability	VCID-dcrp-rae1-zfcm

vulnerability	VCID-mnf8-t3ew-4fgb

vulnerability	VCID-r84b-7ay9-ekcm

resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@4.1.39

url pkg:apache/tomcat@5.5.21

purl pkg:apache/tomcat@5.5.21

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-87p8-zvvf-y7dm

resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@5.5.21

url pkg:apache/tomcat@6.0.9

purl pkg:apache/tomcat@6.0.9

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-87p8-zvvf-y7dm

resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@6.0.9

aliases CVE-2008-0128

risk_score 3.1

exploitability 0.5

weighted_severity 6.2

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-qdck-q54n-rkcv

Fixing_vulnerabilities

url VCID-27q8-96un-9fbk

vulnerability_id VCID-27q8-96un-9fbk

summary Multiple cross-site scripting (XSS) vulnerabilities in the appdev/sample/web/hello.jsp example application in Tomcat 4.0.0 through 4.0.6, 4.1.0 through 4.1.36, 5.0.0 through 5.0.30, 5.5.0 through 5.5.23, and 6.0.0 through 6.0.10 allow remote attackers to inject arbitrary web script or HTML via the test parameter and unspecified vectors.

references

reference_url

http://community.ca.com/blogs/casecurityresponseblog/archive/2009/01/23.aspx

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://community.ca.com/blogs/casecurityresponseblog/archive/2009/01/23.aspx

reference_url

http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01178795

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01178795

reference_url

http://lists.apple.com/archives/security-announce/2008//Jun/msg00002.html

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://lists.apple.com/archives/security-announce/2008//Jun/msg00002.html

reference_url	http://osvdb.org/34875
reference_id
reference_type
scores
url	http://osvdb.org/34875

reference_url

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://api.first.org/data/v1/epss?cve=CVE-2007-1355

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-1355.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-1355.json

reference_url

reference_id

reference_type

scores

value	0.833
scoring_system	epss
scoring_elements	0.99263
published_at	2026-04-02T12:55:00Z

value	0.833
scoring_system	epss
scoring_elements	0.99272
published_at	2026-04-21T12:55:00Z

value	0.833
scoring_system	epss
scoring_elements	0.99271
published_at	2026-04-13T12:55:00Z

value	0.833
scoring_system	epss
scoring_elements	0.9927
published_at	2026-04-08T12:55:00Z

value	0.833
scoring_system	epss
scoring_elements	0.99269
published_at	2026-04-07T12:55:00Z

value	0.833
scoring_system	epss
scoring_elements	0.99266
published_at	2026-04-04T12:55:00Z

value	0.833
scoring_system	epss
scoring_elements	0.99262
published_at	2026-04-01T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2007-1355

reference_url	http://secunia.com/advisories/27037
reference_id
reference_type
scores
url	http://secunia.com/advisories/27037

reference_url	http://secunia.com/advisories/27727
reference_id
reference_type
scores
url	http://secunia.com/advisories/27727

reference_url	http://secunia.com/advisories/30802
reference_id
reference_type
scores
url	http://secunia.com/advisories/30802

reference_url	http://secunia.com/advisories/30899
reference_id
reference_type
scores
url	http://secunia.com/advisories/30899

reference_url	http://secunia.com/advisories/30908
reference_id
reference_type
scores
url	http://secunia.com/advisories/30908

reference_url	http://secunia.com/advisories/31493
reference_id
reference_type
scores
url	http://secunia.com/advisories/31493

reference_url	http://secunia.com/advisories/33668
reference_id
reference_type
scores
url	http://secunia.com/advisories/33668

reference_url	http://securityreason.com/securityalert/2722
reference_id
reference_type
scores
url	http://securityreason.com/securityalert/2722

reference_url

https://exchange.xforce.ibmcloud.com/vulnerabilities/34377

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://exchange.xforce.ibmcloud.com/vulnerabilities/34377

reference_url

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/29dc6c2b625789e70a9c4756b5a327e6547273ff8bde7e0327af48c5@%3Cdev.tomcat.apache.org%3E

reference_url

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/29dc6c2b625789e70a9c4756b5a327e6547273ff8bde7e0327af48c5@%3Cdev.tomcat.apache.org%3E

reference_url

https://lists.apache.org/thread.html/29dc6c2b625789e70a9c4756b5a327e6547273ff8bde7e0327af48c5%40%3Cdev.tomcat.apache.org%3E

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/29dc6c2b625789e70a9c4756b5a327e6547273ff8bde7e0327af48c5%40%3Cdev.tomcat.apache.org%3E

reference_url

https://lists.apache.org/thread.html/c62b0e3a7bf23342352a5810c640a94b6db69957c5c19db507004d74@%3Cdev.tomcat.apache.org%3E

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/c62b0e3a7bf23342352a5810c640a94b6db69957c5c19db507004d74@%3Cdev.tomcat.apache.org%3E

reference_url

https://lists.apache.org/thread.html/c62b0e3a7bf23342352a5810c640a94b6db69957c5c19db507004d74%40%3Cdev.tomcat.apache.org%3E

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/c62b0e3a7bf23342352a5810c640a94b6db69957c5c19db507004d74%40%3Cdev.tomcat.apache.org%3E

reference_url

https://lists.apache.org/thread.html/rb71997f506c6cc8b530dd845c084995a9878098846c7b4eacfae8db3@%3Cdev.tomcat.apache.org%3E

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/rb71997f506c6cc8b530dd845c084995a9878098846c7b4eacfae8db3@%3Cdev.tomcat.apache.org%3E

reference_url

https://lists.apache.org/thread.html/rb71997f506c6cc8b530dd845c084995a9878098846c7b4eacfae8db3%40%3Cdev.tomcat.apache.org%3E

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/rb71997f506c6cc8b530dd845c084995a9878098846c7b4eacfae8db3%40%3Cdev.tomcat.apache.org%3E

reference_url

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6111

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6111

reference_url

http://sunsolve.sun.com/search/document.do?assetkey=1-26-239312-1

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://sunsolve.sun.com/search/document.do?assetkey=1-26-239312-1

reference_url

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://support.ca.com/irj/portal/anonymous/phpsupcontent?contentID=197540

reference_url

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://support.ca.com/irj/portal/anonymous/phpsupcontent?contentID=197540

reference_url

https://www.redhat.com/archives/fedora-package-announce/2007-November/msg00525.html

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://www.redhat.com/archives/fedora-package-announce/2007-November/msg00525.html

reference_url

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

reference_url

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

reference_url

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://www.redhat.com/support/errata/RHSA-2008-0261.html

reference_url

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://www.redhat.com/support/errata/RHSA-2008-0261.html

reference_url	http://www.securityfocus.com/archive/1/469067/100/0/threaded
reference_id
reference_type
scores
url	http://www.securityfocus.com/archive/1/469067/100/0/threaded

reference_url	http://www.securityfocus.com/archive/1/500396/100/0/threaded
reference_id
reference_type
scores
url	http://www.securityfocus.com/archive/1/500396/100/0/threaded

reference_url	http://www.securityfocus.com/archive/1/500412/100/0/threaded
reference_id
reference_type
scores
url	http://www.securityfocus.com/archive/1/500412/100/0/threaded

reference_url	http://www.securityfocus.com/bid/24058
reference_id
reference_type
scores
url	http://www.securityfocus.com/bid/24058

reference_url	http://www.vupen.com/english/advisories/2007/3386
reference_id
reference_type
scores
url	http://www.vupen.com/english/advisories/2007/3386

reference_url	http://www.vupen.com/english/advisories/2008/1979/references
reference_id
reference_type
scores
url	http://www.vupen.com/english/advisories/2008/1979/references

reference_url	http://www.vupen.com/english/advisories/2008/1981/references
reference_id
reference_type
scores
url	http://www.vupen.com/english/advisories/2008/1981/references

reference_url	http://www.vupen.com/english/advisories/2009/0233
reference_id
reference_type
scores
url	http://www.vupen.com/english/advisories/2009/0233

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=253166
reference_id	253166
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=253166

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.0.0:::::::*
reference_id	cpe:2.3:a:apache:tomcat:4.0.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.0.0:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.0.1:::::::*
reference_id	cpe:2.3:a:apache:tomcat:4.0.1:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.0.1:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.0.2:::::::*
reference_id	cpe:2.3:a:apache:tomcat:4.0.2:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.0.2:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.0.3:::::::*
reference_id	cpe:2.3:a:apache:tomcat:4.0.3:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.0.3:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.0.4:::::::*
reference_id	cpe:2.3:a:apache:tomcat:4.0.4:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.0.4:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.0.5:::::::*
reference_id	cpe:2.3:a:apache:tomcat:4.0.5:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.0.5:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.0.6:::::::*
reference_id	cpe:2.3:a:apache:tomcat:4.0.6:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.0.6:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.1.10:::::::*
reference_id	cpe:2.3:a:apache:tomcat:4.1.10:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.1.10:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.1.15:::::::*
reference_id	cpe:2.3:a:apache:tomcat:4.1.15:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.1.15:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.1.24:::::::*
reference_id	cpe:2.3:a:apache:tomcat:4.1.24:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.1.24:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.1.28:::::::*
reference_id	cpe:2.3:a:apache:tomcat:4.1.28:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.1.28:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.1.31:::::::*
reference_id	cpe:2.3:a:apache:tomcat:4.1.31:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.1.31:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.1:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.0.1:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.1:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.10:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.0.10:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.10:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.11:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.0.11:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.11:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.12:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.0.12:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.12:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.13:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.0.13:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.13:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.14:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.0.14:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.14:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.15:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.0.15:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.15:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.16:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.0.16:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.16:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.17:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.0.17:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.17:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.18:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.0.18:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.18:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.19:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.0.19:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.19:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.2:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.0.2:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.2:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.21:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.0.21:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.21:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.22:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.0.22:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.22:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.23:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.0.23:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.23:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.24:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.0.24:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.24:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.25:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.0.25:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.25:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.26:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.0.26:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.26:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.27:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.0.27:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.27:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.28:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.0.28:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.28:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.29:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.0.29:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.29:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.3:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.0.3:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.3:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.30:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.0.30:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.30:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.4:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.0.4:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.4:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.5:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.0.5:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.5:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.6:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.0.6:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.6:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.7:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.0.7:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.7:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.8:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.0.8:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.8:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.9:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.0.9:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.9:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.0:::::::*
reference_id	cpe:2.3:a:apache:tomcat:6.0.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.0:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.1:::::::*
reference_id	cpe:2.3:a:apache:tomcat:6.0.1:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.1:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.10:::::::*
reference_id	cpe:2.3:a:apache:tomcat:6.0.10:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.10:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.2:::::::*
reference_id	cpe:2.3:a:apache:tomcat:6.0.2:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.2:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.3:::::::*
reference_id	cpe:2.3:a:apache:tomcat:6.0.3:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.3:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.4:::::::*
reference_id	cpe:2.3:a:apache:tomcat:6.0.4:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.4:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.5:::::::*
reference_id	cpe:2.3:a:apache:tomcat:6.0.5:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.5:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.6:::::::*
reference_id	cpe:2.3:a:apache:tomcat:6.0.6:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.6:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.7:::::::*
reference_id	cpe:2.3:a:apache:tomcat:6.0.7:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.7:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.8:::::::*
reference_id	cpe:2.3:a:apache:tomcat:6.0.8:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.8:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.9:::::::*
reference_id	cpe:2.3:a:apache:tomcat:6.0.9:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.9:::::::*

reference_url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-1355

reference_id

CVE-2007-1355

reference_type

scores

value	Moderate
scoring_system	apache_tomcat
scoring_elements

url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-1355

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2007-1355

reference_id

CVE-2007-1355

reference_type

scores

value	4.3
scoring_system	cvssv2
scoring_elements	AV:N/AC:M/Au:N/C:N/I:P/A:N

value	5.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2007-1355

reference_url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/remote/30052.txt
reference_id	CVE-2007-1355;OSVDB-34875
reference_type	exploit
scores
url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/remote/30052.txt

reference_url	https://www.securityfocus.com/bid/24058/info
reference_id	CVE-2007-1355;OSVDB-34875
reference_type	exploit
scores
url	https://www.securityfocus.com/bid/24058/info

reference_url

https://github.com/advisories/GHSA-4c6x-gfc8-c26r

reference_id

GHSA-4c6x-gfc8-c26r

reference_type

scores

value	MODERATE
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-4c6x-gfc8-c26r

reference_url	https://access.redhat.com/errata/RHSA-2008:0630
reference_id	RHSA-2008:0630
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2008:0630

fixed_packages

url pkg:apache/tomcat@4.1.37

purl pkg:apache/tomcat@4.1.37

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-a9cu-fxqw-xkdg

vulnerability	VCID-acmu-9eqb-fya5

vulnerability	VCID-qdck-q54n-rkcv

resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@4.1.37

url pkg:apache/tomcat@5.5.24

purl pkg:apache/tomcat@5.5.24

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6p3e-4u8s-17ep

vulnerability	VCID-7969-7a8h-zyhh

vulnerability	VCID-peya-mr7j-vugf

vulnerability	VCID-su1y-2bxh-9qe2

vulnerability	VCID-tcju-3rvu-wkht

resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@5.5.24

url	pkg:apache/tomcat@6.0.11
purl	pkg:apache/tomcat@6.0.11
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@6.0.11

aliases CVE-2007-1355, GHSA-4c6x-gfc8-c26r

risk_score 10.0

exploitability 2.0

weighted_severity 6.2

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-27q8-96un-9fbk

url VCID-6p3e-4u8s-17ep

vulnerability_id VCID-6p3e-4u8s-17ep

summary Apache Tomcat 6.0.0 to 6.0.13, 5.5.0 to 5.5.24, 5.0.0 to 5.0.30, 4.1.0 to 4.1.36, and 3.3 to 3.3.2 does not properly handle the \" character sequence in a cookie value, which might cause sensitive information such as session IDs to be leaked to remote attackers and enable session hijacking attacks.

references

reference_url

http://community.ca.com/blogs/casecurityresponseblog/archive/2009/01/23.aspx

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://community.ca.com/blogs/casecurityresponseblog/archive/2009/01/23.aspx

reference_url

http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01178795

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01178795

reference_url

http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01192554

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01192554

reference_url

http://lists.apple.com/archives/security-announce/2008//Jun/msg00002.html

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://lists.apple.com/archives/security-announce/2008//Jun/msg00002.html

reference_url

http://lists.opensuse.org/opensuse-security-announce/2008-03/msg00001.html

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://lists.opensuse.org/opensuse-security-announce/2008-03/msg00001.html

reference_url

http://lists.opensuse.org/opensuse-security-announce/2009-02/msg00002.html

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://lists.opensuse.org/opensuse-security-announce/2009-02/msg00002.html

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-3385.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-3385.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2007-3385

reference_id

reference_type

scores

value	0.80997
scoring_system	epss
scoring_elements	0.99145
published_at	2026-04-01T12:55:00Z

value	0.81368
scoring_system	epss
scoring_elements	0.99167
published_at	2026-04-04T12:55:00Z

value	0.81368
scoring_system	epss
scoring_elements	0.99164
published_at	2026-04-02T12:55:00Z

value	0.81368
scoring_system	epss
scoring_elements	0.99175
published_at	2026-04-21T12:55:00Z

value	0.81368
scoring_system	epss
scoring_elements	0.99174
published_at	2026-04-18T12:55:00Z

value	0.81368
scoring_system	epss
scoring_elements	0.99172
published_at	2026-04-16T12:55:00Z

value	0.81368
scoring_system	epss
scoring_elements	0.99171
published_at	2026-04-13T12:55:00Z

value	0.81368
scoring_system	epss
scoring_elements	0.99169
published_at	2026-04-07T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2007-3385

reference_url

https://exchange.xforce.ibmcloud.com/vulnerabilities/35999

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://exchange.xforce.ibmcloud.com/vulnerabilities/35999

reference_url

https://lists.apache.org/thread.html/06cfb634bc7bf37af7d8f760f118018746ad8efbd519c4b789ac9c2e@%3Cdev.tomcat.apache.org%3E

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/06cfb634bc7bf37af7d8f760f118018746ad8efbd519c4b789ac9c2e@%3Cdev.tomcat.apache.org%3E

reference_url

https://lists.apache.org/thread.html/06cfb634bc7bf37af7d8f760f118018746ad8efbd519c4b789ac9c2e%40%3Cdev.tomcat.apache.org%3E

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/06cfb634bc7bf37af7d8f760f118018746ad8efbd519c4b789ac9c2e%40%3Cdev.tomcat.apache.org%3E

reference_url

https://lists.apache.org/thread.html/29dc6c2b625789e70a9c4756b5a327e6547273ff8bde7e0327af48c5@%3Cdev.tomcat.apache.org%3E

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/29dc6c2b625789e70a9c4756b5a327e6547273ff8bde7e0327af48c5@%3Cdev.tomcat.apache.org%3E

reference_url

https://lists.apache.org/thread.html/29dc6c2b625789e70a9c4756b5a327e6547273ff8bde7e0327af48c5%40%3Cdev.tomcat.apache.org%3E

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/29dc6c2b625789e70a9c4756b5a327e6547273ff8bde7e0327af48c5%40%3Cdev.tomcat.apache.org%3E

reference_url

https://lists.apache.org/thread.html/8dcaf7c3894d66cb717646ea1504ea6e300021c85bb4e677dc16b1aa@%3Cdev.tomcat.apache.org%3E

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/8dcaf7c3894d66cb717646ea1504ea6e300021c85bb4e677dc16b1aa@%3Cdev.tomcat.apache.org%3E

reference_url

https://lists.apache.org/thread.html/8dcaf7c3894d66cb717646ea1504ea6e300021c85bb4e677dc16b1aa%40%3Cdev.tomcat.apache.org%3E

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/8dcaf7c3894d66cb717646ea1504ea6e300021c85bb4e677dc16b1aa%40%3Cdev.tomcat.apache.org%3E

reference_url

https://lists.apache.org/thread.html/c62b0e3a7bf23342352a5810c640a94b6db69957c5c19db507004d74@%3Cdev.tomcat.apache.org%3E

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/c62b0e3a7bf23342352a5810c640a94b6db69957c5c19db507004d74@%3Cdev.tomcat.apache.org%3E

reference_url

https://lists.apache.org/thread.html/c62b0e3a7bf23342352a5810c640a94b6db69957c5c19db507004d74%40%3Cdev.tomcat.apache.org%3E

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/c62b0e3a7bf23342352a5810c640a94b6db69957c5c19db507004d74%40%3Cdev.tomcat.apache.org%3E

reference_url

https://lists.apache.org/thread.html/r3aacc40356defc3f248aa504b1e48e819dd0471a0a83349080c6bcbf@%3Cdev.tomcat.apache.org%3E

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/r3aacc40356defc3f248aa504b1e48e819dd0471a0a83349080c6bcbf@%3Cdev.tomcat.apache.org%3E

reference_url

https://lists.apache.org/thread.html/r3aacc40356defc3f248aa504b1e48e819dd0471a0a83349080c6bcbf%40%3Cdev.tomcat.apache.org%3E

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/r3aacc40356defc3f248aa504b1e48e819dd0471a0a83349080c6bcbf%40%3Cdev.tomcat.apache.org%3E

reference_url

https://lists.apache.org/thread.html/r584a714f141eff7b1c358d4679288177bd4ca4558e9999d15867d4b5@%3Cdev.tomcat.apache.org%3E

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/r584a714f141eff7b1c358d4679288177bd4ca4558e9999d15867d4b5@%3Cdev.tomcat.apache.org%3E

reference_url

https://lists.apache.org/thread.html/r584a714f141eff7b1c358d4679288177bd4ca4558e9999d15867d4b5%40%3Cdev.tomcat.apache.org%3E

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/r584a714f141eff7b1c358d4679288177bd4ca4558e9999d15867d4b5%40%3Cdev.tomcat.apache.org%3E

reference_url

https://lists.apache.org/thread.html/rb71997f506c6cc8b530dd845c084995a9878098846c7b4eacfae8db3@%3Cdev.tomcat.apache.org%3E

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/rb71997f506c6cc8b530dd845c084995a9878098846c7b4eacfae8db3@%3Cdev.tomcat.apache.org%3E

reference_url

https://lists.apache.org/thread.html/rb71997f506c6cc8b530dd845c084995a9878098846c7b4eacfae8db3%40%3Cdev.tomcat.apache.org%3E

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/rb71997f506c6cc8b530dd845c084995a9878098846c7b4eacfae8db3%40%3Cdev.tomcat.apache.org%3E

reference_url

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9549

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9549

reference_url

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://support.ca.com/irj/portal/anonymous/phpsupcontent?contentID=197540

reference_url

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://support.ca.com/irj/portal/anonymous/phpsupcontent?contentID=197540

reference_url

https://www.redhat.com/archives/fedora-package-announce/2007-November/msg00525.html

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://www.redhat.com/archives/fedora-package-announce/2007-November/msg00525.html

reference_url

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://www-01.ibm.com/support/docview.wss?uid=swg1IZ55562

reference_url

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://www-01.ibm.com/support/docview.wss?uid=swg1IZ55562

reference_url

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

reference_url

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://www.kb.cert.org/vuls/id/993544

reference_url

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://www.kb.cert.org/vuls/id/993544

reference_url

http://www.mandriva.com/security/advisories?name=MDKSA-2007:241

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://www.mandriva.com/security/advisories?name=MDKSA-2007:241

reference_url

http://www.redhat.com/support/errata/RHSA-2007-0871.html

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://www.redhat.com/support/errata/RHSA-2007-0871.html

reference_url

http://www.redhat.com/support/errata/RHSA-2007-0950.html

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://www.redhat.com/support/errata/RHSA-2007-0950.html

reference_url

http://www.redhat.com/support/errata/RHSA-2008-0195.html

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://www.redhat.com/support/errata/RHSA-2008-0195.html

reference_url

http://www.redhat.com/support/errata/RHSA-2008-0261.html

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://www.redhat.com/support/errata/RHSA-2008-0261.html

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=247976
reference_id	247976
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=247976

reference_url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3385

reference_id

CVE-2007-3385

reference_type

scores

value	Low
scoring_system	apache_tomcat
scoring_elements

url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3385

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2007-3385

reference_id

CVE-2007-3385

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2007-3385

reference_url

https://github.com/advisories/GHSA-6j8f-66vh-39mj

reference_id

GHSA-6j8f-66vh-39mj

reference_type

scores

value	MODERATE
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-6j8f-66vh-39mj

reference_url	https://access.redhat.com/errata/RHSA-2007:0871
reference_id	RHSA-2007:0871
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2007:0871

reference_url	https://access.redhat.com/errata/RHSA-2007:0876
reference_id	RHSA-2007:0876
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2007:0876

reference_url	https://access.redhat.com/errata/RHSA-2007:0950
reference_id	RHSA-2007:0950
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2007:0950

reference_url	https://access.redhat.com/errata/RHSA-2007:1069
reference_id	RHSA-2007:1069
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2007:1069

reference_url	https://access.redhat.com/errata/RHSA-2008:0195
reference_id	RHSA-2008:0195
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2008:0195

fixed_packages

url pkg:apache/tomcat@4.1.37

purl pkg:apache/tomcat@4.1.37

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-a9cu-fxqw-xkdg

vulnerability	VCID-acmu-9eqb-fya5

vulnerability	VCID-qdck-q54n-rkcv

resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@4.1.37

url pkg:apache/tomcat@5.5.25

purl pkg:apache/tomcat@5.5.25

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-7pd9-1r19-73fe

vulnerability	VCID-88v7-kc2y-bfd7

vulnerability	VCID-hhkg-mfp5-2kax

vulnerability	VCID-v94p-bxm3-akfd

resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@5.5.25

url pkg:apache/tomcat@6.0.14

purl pkg:apache/tomcat@6.0.14

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-88v7-kc2y-bfd7

vulnerability	VCID-v94p-bxm3-akfd

resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@6.0.14

aliases CVE-2007-3385, GHSA-6j8f-66vh-39mj

risk_score 10.0

exploitability 2.0

weighted_severity 6.2

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-6p3e-4u8s-17ep

url VCID-7969-7a8h-zyhh

vulnerability_id VCID-7969-7a8h-zyhh

summary Apache Tomcat 6.0.0 to 6.0.13, 5.5.0 to 5.5.24, 5.0.0 to 5.0.30, 4.1.0 to 4.1.36, and 3.3 to 3.3.2 treats single quotes ("'") as delimiters in cookies, which might cause sensitive information such as session IDs to be leaked and allow remote attackers to conduct session hijacking attacks.

references

reference_url

http://community.ca.com/blogs/casecurityresponseblog/archive/2009/01/23.aspx

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://community.ca.com/blogs/casecurityresponseblog/archive/2009/01/23.aspx

reference_url

http://lists.apple.com/archives/security-announce/2008//Jun/msg00002.html

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://lists.apple.com/archives/security-announce/2008//Jun/msg00002.html

reference_url

http://lists.opensuse.org/opensuse-security-announce/2008-03/msg00001.html

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://lists.opensuse.org/opensuse-security-announce/2008-03/msg00001.html

reference_url

http://lists.opensuse.org/opensuse-security-announce/2009-02/msg00002.html

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://lists.opensuse.org/opensuse-security-announce/2009-02/msg00002.html

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-3382.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-3382.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2007-3382

reference_id

reference_type

scores

value	0.83605
scoring_system	epss
scoring_elements	0.99277
published_at	2026-04-01T12:55:00Z

value	0.83908
scoring_system	epss
scoring_elements	0.99298
published_at	2026-04-09T12:55:00Z

value	0.83908
scoring_system	epss
scoring_elements	0.99297
published_at	2026-04-08T12:55:00Z

value	0.83908
scoring_system	epss
scoring_elements	0.99294
published_at	2026-04-04T12:55:00Z

value	0.83908
scoring_system	epss
scoring_elements	0.99291
published_at	2026-04-02T12:55:00Z

value	0.83908
scoring_system	epss
scoring_elements	0.99302
published_at	2026-04-18T12:55:00Z

value	0.83908
scoring_system	epss
scoring_elements	0.993
published_at	2026-04-13T12:55:00Z

value	0.83908
scoring_system	epss
scoring_elements	0.99301
published_at	2026-04-21T12:55:00Z

value	0.83908
scoring_system	epss
scoring_elements	0.99299
published_at	2026-04-11T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2007-3382

reference_url

https://exchange.xforce.ibmcloud.com/vulnerabilities/36006

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://exchange.xforce.ibmcloud.com/vulnerabilities/36006

reference_url

https://lists.apache.org/thread.html/29dc6c2b625789e70a9c4756b5a327e6547273ff8bde7e0327af48c5@%3Cdev.tomcat.apache.org%3E

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/29dc6c2b625789e70a9c4756b5a327e6547273ff8bde7e0327af48c5@%3Cdev.tomcat.apache.org%3E

reference_url

https://lists.apache.org/thread.html/c62b0e3a7bf23342352a5810c640a94b6db69957c5c19db507004d74@%3Cdev.tomcat.apache.org%3E

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/c62b0e3a7bf23342352a5810c640a94b6db69957c5c19db507004d74@%3Cdev.tomcat.apache.org%3E

reference_url

https://lists.apache.org/thread.html/rb71997f506c6cc8b530dd845c084995a9878098846c7b4eacfae8db3@%3Cdev.tomcat.apache.org%3E

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/rb71997f506c6cc8b530dd845c084995a9878098846c7b4eacfae8db3@%3Cdev.tomcat.apache.org%3E

reference_url

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://www.redhat.com/archives/fedora-package-announce/2007-November/msg00525.html

reference_url

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://www.redhat.com/archives/fedora-package-announce/2007-November/msg00525.html

reference_url

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

reference_url

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

reference_url

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://www.redhat.com/support/errata/RHSA-2007-0871.html

reference_url

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://www.redhat.com/support/errata/RHSA-2007-0871.html

reference_url

http://www.redhat.com/support/errata/RHSA-2007-0950.html

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://www.redhat.com/support/errata/RHSA-2007-0950.html

reference_url

http://www.redhat.com/support/errata/RHSA-2008-0195.html

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://www.redhat.com/support/errata/RHSA-2008-0195.html

reference_url

http://www.redhat.com/support/errata/RHSA-2008-0261.html

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://www.redhat.com/support/errata/RHSA-2008-0261.html

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=247972
reference_id	247972
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=247972

reference_url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3382

reference_id

CVE-2007-3382

reference_type

scores

value	Low
scoring_system	apache_tomcat
scoring_elements

url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3382

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2007-3382

reference_id

CVE-2007-3382

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2007-3382

reference_url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/remote/30496.txt
reference_id	CVE-2007-3382;OSVDB-37070
reference_type	exploit
scores
url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/remote/30496.txt

reference_url	https://www.securityfocus.com/bid/25316/info
reference_id	CVE-2007-3382;OSVDB-37070
reference_type	exploit
scores
url	https://www.securityfocus.com/bid/25316/info

reference_url

https://github.com/advisories/GHSA-qff8-g48j-pwpw

reference_id

GHSA-qff8-g48j-pwpw

reference_type

scores

value	MODERATE
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-qff8-g48j-pwpw

reference_url	https://access.redhat.com/errata/RHSA-2007:0871
reference_id	RHSA-2007:0871
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2007:0871

reference_url	https://access.redhat.com/errata/RHSA-2007:0876
reference_id	RHSA-2007:0876
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2007:0876

reference_url	https://access.redhat.com/errata/RHSA-2007:0950
reference_id	RHSA-2007:0950
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2007:0950

reference_url	https://access.redhat.com/errata/RHSA-2007:1069
reference_id	RHSA-2007:1069
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2007:1069

reference_url	https://access.redhat.com/errata/RHSA-2008:0195
reference_id	RHSA-2008:0195
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2008:0195

fixed_packages

url pkg:apache/tomcat@4.1.37

purl pkg:apache/tomcat@4.1.37

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-a9cu-fxqw-xkdg

vulnerability	VCID-acmu-9eqb-fya5

vulnerability	VCID-qdck-q54n-rkcv

resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@4.1.37

url pkg:apache/tomcat@5.5.25

purl pkg:apache/tomcat@5.5.25

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-7pd9-1r19-73fe

vulnerability	VCID-88v7-kc2y-bfd7

vulnerability	VCID-hhkg-mfp5-2kax

vulnerability	VCID-v94p-bxm3-akfd

resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@5.5.25

url pkg:apache/tomcat@6.0.14

purl pkg:apache/tomcat@6.0.14

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-88v7-kc2y-bfd7

vulnerability	VCID-v94p-bxm3-akfd

resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@6.0.14

aliases CVE-2007-3382, GHSA-qff8-g48j-pwpw

risk_score 10.0

exploitability 2.0

weighted_severity 6.2

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-7969-7a8h-zyhh

url VCID-88v7-kc2y-bfd7

vulnerability_id VCID-88v7-kc2y-bfd7

summary Absolute path traversal vulnerability in Apache Tomcat 4.0.0 through 4.0.6, 4.1.0, 5.0.0, 5.5.0 through 5.5.25, and 6.0.0 through 6.0.14, under certain configurations, allows remote authenticated users to read arbitrary files via a WebDAV write request that specifies an entity with a SYSTEM tag.

references

reference_url

http://geronimo.apache.org/2007/10/18/potential-vulnerability-in-apache-tomcat-webdav-servlet.html

reference_id

reference_type

scores

value	LOW
scoring_system	generic_textual
scoring_elements

url

http://geronimo.apache.org/2007/10/18/potential-vulnerability-in-apache-tomcat-webdav-servlet.html

reference_url

http://issues.apache.org/jira/browse/GERONIMO-3549

reference_id

reference_type

scores

value	LOW
scoring_system	generic_textual
scoring_elements

url

http://issues.apache.org/jira/browse/GERONIMO-3549

reference_url

http://lists.apple.com/archives/security-announce/2008//Jun/msg00002.html

reference_id

reference_type

scores

value	LOW
scoring_system	generic_textual
scoring_elements

url

http://lists.apple.com/archives/security-announce/2008//Jun/msg00002.html

reference_url

http://lists.apple.com/archives/security-announce/2008/Oct/msg00001.html

reference_id

reference_type

scores

value	LOW
scoring_system	generic_textual
scoring_elements

url

http://lists.apple.com/archives/security-announce/2008/Oct/msg00001.html

reference_url

http://lists.opensuse.org/opensuse-security-announce/2008-03/msg00001.html

reference_id

reference_type

scores

value	LOW
scoring_system	generic_textual
scoring_elements

url

http://lists.opensuse.org/opensuse-security-announce/2008-03/msg00001.html

reference_url

http://lists.opensuse.org/opensuse-security-announce/2009-02/msg00002.html

reference_id

reference_type

scores

value	LOW
scoring_system	generic_textual
scoring_elements

url

http://lists.opensuse.org/opensuse-security-announce/2009-02/msg00002.html

reference_url

http://mail-archives.apache.org/mod_mbox/tomcat-users/200710.mbox/%3C47135C2D.1000705@apache.org%3E

reference_id

reference_type

scores

value	LOW
scoring_system	generic_textual
scoring_elements

url

http://mail-archives.apache.org/mod_mbox/tomcat-users/200710.mbox/%3C47135C2D.1000705@apache.org%3E

reference_url

reference_id

reference_type

scores

value	LOW
scoring_system	generic_textual
scoring_elements

url

http://marc.info/?l=full-disclosure&m=119239530508382

reference_url

reference_id

reference_type

scores

value	LOW
scoring_system	generic_textual
scoring_elements

url

http://marc.info/?l=full-disclosure&m=119239530508382

reference_url

reference_id

reference_type

scores

value	LOW
scoring_system	generic_textual
scoring_elements

url

https://api.first.org/data/v1/epss?cve=CVE-2007-5461

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-5461.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-5461.json

reference_url

reference_id

reference_type

scores

value	0.06267
scoring_system	epss
scoring_elements	0.90947
published_at	2026-04-21T12:55:00Z

value	0.06267
scoring_system	epss
scoring_elements	0.90873
published_at	2026-04-01T12:55:00Z

value	0.06267
scoring_system	epss
scoring_elements	0.90878
published_at	2026-04-02T12:55:00Z

value	0.06267
scoring_system	epss
scoring_elements	0.90888
published_at	2026-04-04T12:55:00Z

value	0.06267
scoring_system	epss
scoring_elements	0.90898
published_at	2026-04-07T12:55:00Z

value	0.06267
scoring_system	epss
scoring_elements	0.9091
published_at	2026-04-08T12:55:00Z

value	0.06267
scoring_system	epss
scoring_elements	0.90916
published_at	2026-04-09T12:55:00Z

value	0.06267
scoring_system	epss
scoring_elements	0.90925
published_at	2026-04-12T12:55:00Z

value	0.06267
scoring_system	epss
scoring_elements	0.90924
published_at	2026-04-13T12:55:00Z

value	0.06267
scoring_system	epss
scoring_elements	0.90948
published_at	2026-04-16T12:55:00Z

value	0.06267
scoring_system	epss
scoring_elements	0.90946
published_at	2026-04-18T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2007-5461

reference_url

reference_id

reference_type

scores

value	LOW
scoring_system	generic_textual
scoring_elements

url

https://exchange.xforce.ibmcloud.com/vulnerabilities/37243

reference_url

reference_id

reference_type

scores

value	LOW
scoring_system	generic_textual
scoring_elements

url

https://exchange.xforce.ibmcloud.com/vulnerabilities/37243

reference_url

reference_id

reference_type

scores

value	LOW
scoring_system	generic_textual
scoring_elements

url

https://github.com/apache/tomcat/commit/1e7b31e24801777f4de45d565f6a20a5377dd22c

reference_url

reference_id

reference_type

scores

value	LOW
scoring_system	generic_textual
scoring_elements

url

https://github.com/apache/tomcat/commit/1e7b31e24801777f4de45d565f6a20a5377dd22c

reference_url

https://github.com/apache/tomcat/commit/901292cf9d7d8225f8a3b96c7583e2bd8b41772d

reference_id

reference_type

scores

value	LOW
scoring_system	generic_textual
scoring_elements

url

https://github.com/apache/tomcat/commit/901292cf9d7d8225f8a3b96c7583e2bd8b41772d

reference_url

https://lists.apache.org/thread.html/06cfb634bc7bf37af7d8f760f118018746ad8efbd519c4b789ac9c2e@%3Cdev.tomcat.apache.org%3E

reference_id

reference_type

scores

value	LOW
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/06cfb634bc7bf37af7d8f760f118018746ad8efbd519c4b789ac9c2e@%3Cdev.tomcat.apache.org%3E

reference_url

https://lists.apache.org/thread.html/29dc6c2b625789e70a9c4756b5a327e6547273ff8bde7e0327af48c5@%3Cdev.tomcat.apache.org%3E

reference_id

reference_type

scores

value	LOW
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/29dc6c2b625789e70a9c4756b5a327e6547273ff8bde7e0327af48c5@%3Cdev.tomcat.apache.org%3E

reference_url

https://lists.apache.org/thread.html/8dcaf7c3894d66cb717646ea1504ea6e300021c85bb4e677dc16b1aa@%3Cdev.tomcat.apache.org%3E

reference_id

reference_type

scores

value	LOW
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/8dcaf7c3894d66cb717646ea1504ea6e300021c85bb4e677dc16b1aa@%3Cdev.tomcat.apache.org%3E

reference_url

https://lists.apache.org/thread.html/c62b0e3a7bf23342352a5810c640a94b6db69957c5c19db507004d74@%3Cdev.tomcat.apache.org%3E

reference_id

reference_type

scores

value	LOW
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/c62b0e3a7bf23342352a5810c640a94b6db69957c5c19db507004d74@%3Cdev.tomcat.apache.org%3E

reference_url

https://lists.apache.org/thread.html/r3aacc40356defc3f248aa504b1e48e819dd0471a0a83349080c6bcbf@%3Cdev.tomcat.apache.org%3E

reference_id

reference_type

scores

value	LOW
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/r3aacc40356defc3f248aa504b1e48e819dd0471a0a83349080c6bcbf@%3Cdev.tomcat.apache.org%3E

reference_url

https://lists.apache.org/thread.html/r584a714f141eff7b1c358d4679288177bd4ca4558e9999d15867d4b5@%3Cdev.tomcat.apache.org%3E

reference_id

reference_type

scores

value	LOW
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/r584a714f141eff7b1c358d4679288177bd4ca4558e9999d15867d4b5@%3Cdev.tomcat.apache.org%3E

reference_url

https://lists.apache.org/thread.html/rb71997f506c6cc8b530dd845c084995a9878098846c7b4eacfae8db3@%3Cdev.tomcat.apache.org%3E

reference_id

reference_type

scores

value	LOW
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/rb71997f506c6cc8b530dd845c084995a9878098846c7b4eacfae8db3@%3Cdev.tomcat.apache.org%3E

reference_url

reference_id

reference_type

scores

value	LOW
scoring_system	generic_textual
scoring_elements

url

reference_url

reference_id

reference_type

scores

value	LOW
scoring_system	generic_textual
scoring_elements

url

https://www.redhat.com/archives/fedora-package-announce/2007-November/msg00525.html

reference_url

reference_id

reference_type

scores

value	LOW
scoring_system	generic_textual
scoring_elements

url

https://www.redhat.com/archives/fedora-package-announce/2007-November/msg00525.html

reference_url

reference_id

reference_type

scores

value	LOW
scoring_system	generic_textual
scoring_elements

url

reference_url

reference_id

reference_type

scores

value	LOW
scoring_system	generic_textual
scoring_elements

url

reference_url

reference_id

reference_type

scores

value	LOW
scoring_system	generic_textual
scoring_elements

url

reference_url

reference_id

reference_type

scores

value	LOW
scoring_system	generic_textual
scoring_elements

url

reference_url

reference_id

reference_type

scores

value	LOW
scoring_system	generic_textual
scoring_elements

url

http://www.redhat.com/support/errata/RHSA-2008-0042.html

reference_url

reference_id

reference_type

scores

value	LOW
scoring_system	generic_textual
scoring_elements

url

http://www.redhat.com/support/errata/RHSA-2008-0042.html

reference_url

http://www.redhat.com/support/errata/RHSA-2008-0195.html

reference_id

reference_type

scores

value	LOW
scoring_system	generic_textual
scoring_elements

url

http://www.redhat.com/support/errata/RHSA-2008-0195.html

reference_url

http://www.redhat.com/support/errata/RHSA-2008-0261.html

reference_id

reference_type

scores

value	LOW
scoring_system	generic_textual
scoring_elements

url

http://www.redhat.com/support/errata/RHSA-2008-0261.html

reference_url

http://www.redhat.com/support/errata/RHSA-2008-0862.html

reference_id

reference_type

scores

value	LOW
scoring_system	generic_textual
scoring_elements

url

http://www.redhat.com/support/errata/RHSA-2008-0862.html

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=333791
reference_id	333791
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=333791

reference_url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5461

reference_id

CVE-2007-5461

reference_type

scores

value	Important
scoring_system	apache_tomcat
scoring_elements

url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5461

reference_url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/remote/4552.pl
reference_id	CVE-2007-5461
reference_type	exploit
scores
url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/remote/4552.pl

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2007-5461

reference_id

CVE-2007-5461

reference_type

scores

value	LOW
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2007-5461

reference_url

https://github.com/advisories/GHSA-v5p2-vg3c-pmrr

reference_id

GHSA-v5p2-vg3c-pmrr

reference_type

scores

value	LOW
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-v5p2-vg3c-pmrr

reference_url	https://security.gentoo.org/glsa/200804-10
reference_id	GLSA-200804-10
reference_type
scores
url	https://security.gentoo.org/glsa/200804-10

reference_url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/remote/4530.pl
reference_id	OSVDB-38187;CVE-2007-5461
reference_type	exploit
scores
url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/remote/4530.pl

reference_url	https://access.redhat.com/errata/RHSA-2008:0042
reference_id	RHSA-2008:0042
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2008:0042

reference_url	https://access.redhat.com/errata/RHSA-2008:0151
reference_id	RHSA-2008:0151
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2008:0151

reference_url	https://access.redhat.com/errata/RHSA-2008:0158
reference_id	RHSA-2008:0158
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2008:0158

reference_url	https://access.redhat.com/errata/RHSA-2008:0195
reference_id	RHSA-2008:0195
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2008:0195

reference_url	https://access.redhat.com/errata/RHSA-2008:0213
reference_id	RHSA-2008:0213
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2008:0213

reference_url	https://access.redhat.com/errata/RHSA-2008:0630
reference_id	RHSA-2008:0630
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2008:0630

fixed_packages

url pkg:apache/tomcat@4.1.37

purl pkg:apache/tomcat@4.1.37

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-a9cu-fxqw-xkdg

vulnerability	VCID-acmu-9eqb-fya5

vulnerability	VCID-qdck-q54n-rkcv

resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@4.1.37

url pkg:apache/tomcat@5.5.26

purl pkg:apache/tomcat@5.5.26

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-a9cu-fxqw-xkdg

vulnerability	VCID-acmu-9eqb-fya5

vulnerability	VCID-egup-27ub-6uaf

resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@5.5.26

url pkg:apache/tomcat@6.0.16

purl pkg:apache/tomcat@6.0.16

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-a9cu-fxqw-xkdg

vulnerability	VCID-acmu-9eqb-fya5

vulnerability	VCID-egup-27ub-6uaf

vulnerability	VCID-hves-r5bg-yfes

resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@6.0.16

aliases CVE-2007-5461, GHSA-v5p2-vg3c-pmrr

risk_score 10.0

exploitability 2.0

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-88v7-kc2y-bfd7

url VCID-mp3r-5531-uqg5

vulnerability_id VCID-mp3r-5531-uqg5

summary The AJP connector in Apache Tomcat 4.0.1 through 4.0.6 and 4.1.0 through 4.1.36, as used in Hitachi Cosminexus Application Server and standalone, does not properly handle when a connection is broken before request body data is sent in a POST request, which can lead to an information leak when "unsuitable request body data" is used for a different request, possibly related to Java Servlet pages.

references

reference_url

http://jvn.jp/jp/JVN%2379314822/index.html

reference_id

reference_type

scores

value	LOW
scoring_system	generic_textual
scoring_elements

url

http://jvn.jp/jp/JVN%2379314822/index.html

reference_url

http://lists.apple.com/archives/security-announce/2008//Jun/msg00002.html

reference_id

reference_type

scores

value	LOW
scoring_system	generic_textual
scoring_elements

url

http://lists.apple.com/archives/security-announce/2008//Jun/msg00002.html

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2005-3164

reference_id

reference_type

scores

value	0.03388
scoring_system	epss
scoring_elements	0.87418
published_at	2026-04-18T12:55:00Z

value	0.03388
scoring_system	epss
scoring_elements	0.87415
published_at	2026-04-16T12:55:00Z

value	0.03388
scoring_system	epss
scoring_elements	0.874
published_at	2026-04-13T12:55:00Z

value	0.03388
scoring_system	epss
scoring_elements	0.87404
published_at	2026-04-12T12:55:00Z

value	0.03388
scoring_system	epss
scoring_elements	0.87409
published_at	2026-04-11T12:55:00Z

value	0.03388
scoring_system	epss
scoring_elements	0.87397
published_at	2026-04-09T12:55:00Z

value	0.03388
scoring_system	epss
scoring_elements	0.8739
published_at	2026-04-08T12:55:00Z

value	0.03388
scoring_system	epss
scoring_elements	0.87372
published_at	2026-04-07T12:55:00Z

value	0.03388
scoring_system	epss
scoring_elements	0.87347
published_at	2026-04-01T12:55:00Z

value	0.03388
scoring_system	epss
scoring_elements	0.87357
published_at	2026-04-02T12:55:00Z

value	0.03388
scoring_system	epss
scoring_elements	0.87412
published_at	2026-04-21T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2005-3164

reference_url	http://secunia.com/advisories/17019
reference_id
reference_type
scores
url	http://secunia.com/advisories/17019

reference_url	http://secunia.com/advisories/30802
reference_id
reference_type
scores
url	http://secunia.com/advisories/30802

reference_url	http://secunia.com/advisories/30899
reference_id
reference_type
scores
url	http://secunia.com/advisories/30899

reference_url	http://secunia.com/advisories/30908
reference_id
reference_type
scores
url	http://secunia.com/advisories/30908

reference_url

https://lists.apache.org/thread.html/29dc6c2b625789e70a9c4756b5a327e6547273ff8bde7e0327af48c5@%3Cdev.tomcat.apache.org%3E

reference_id

reference_type

scores

value	LOW
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/29dc6c2b625789e70a9c4756b5a327e6547273ff8bde7e0327af48c5@%3Cdev.tomcat.apache.org%3E

reference_url	https://lists.apache.org/thread.html/29dc6c2b625789e70a9c4756b5a327e6547273ff8bde7e0327af48c5%40%3Cdev.tomcat.apache.org%3E
reference_id
reference_type
scores
url	https://lists.apache.org/thread.html/29dc6c2b625789e70a9c4756b5a327e6547273ff8bde7e0327af48c5%40%3Cdev.tomcat.apache.org%3E

reference_url

https://lists.apache.org/thread.html/c62b0e3a7bf23342352a5810c640a94b6db69957c5c19db507004d74@%3Cdev.tomcat.apache.org%3E

reference_id

reference_type

scores

value	LOW
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/c62b0e3a7bf23342352a5810c640a94b6db69957c5c19db507004d74@%3Cdev.tomcat.apache.org%3E

reference_url	https://lists.apache.org/thread.html/c62b0e3a7bf23342352a5810c640a94b6db69957c5c19db507004d74%40%3Cdev.tomcat.apache.org%3E
reference_id
reference_type
scores
url	https://lists.apache.org/thread.html/c62b0e3a7bf23342352a5810c640a94b6db69957c5c19db507004d74%40%3Cdev.tomcat.apache.org%3E

reference_url

https://lists.apache.org/thread.html/rb71997f506c6cc8b530dd845c084995a9878098846c7b4eacfae8db3@%3Cdev.tomcat.apache.org%3E

reference_id

reference_type

scores

value	LOW
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/rb71997f506c6cc8b530dd845c084995a9878098846c7b4eacfae8db3@%3Cdev.tomcat.apache.org%3E

reference_url	https://lists.apache.org/thread.html/rb71997f506c6cc8b530dd845c084995a9878098846c7b4eacfae8db3%40%3Cdev.tomcat.apache.org%3E
reference_id
reference_type
scores
url	https://lists.apache.org/thread.html/rb71997f506c6cc8b530dd845c084995a9878098846c7b4eacfae8db3%40%3Cdev.tomcat.apache.org%3E

reference_url	http://sunsolve.sun.com/search/document.do?assetkey=1-26-239312-1
reference_id
reference_type
scores
url	http://sunsolve.sun.com/search/document.do?assetkey=1-26-239312-1

reference_url

reference_id

reference_type

scores

value	LOW
scoring_system	generic_textual
scoring_elements

url

https://web.archive.org/web/20051215074217/http://www.hitachi-support.com/security_e/vuls_e/HS05-019_e/01-e.html

reference_url

reference_id

reference_type

scores

value	LOW
scoring_system	generic_textual
scoring_elements

url

https://web.archive.org/web/20051215074217/http://www.hitachi-support.com/security_e/vuls_e/HS05-019_e/01-e.html

reference_url

https://web.archive.org/web/20081202183445/http://www.securityfocus.com/bid/15003

reference_id

reference_type

scores

value	LOW
scoring_system	generic_textual
scoring_elements

url

https://web.archive.org/web/20081202183445/http://www.securityfocus.com/bid/15003

reference_url	http://tomcat.apache.org/security-4.html
reference_id
reference_type
scores
url	http://tomcat.apache.org/security-4.html

reference_url

http://www.hitachi-support.com/security_e/vuls_e/HS05-019_e/01-e.html

reference_id

reference_type

scores

value	LOW
scoring_system	generic_textual
scoring_elements

url

http://www.hitachi-support.com/security_e/vuls_e/HS05-019_e/01-e.html

reference_url	http://www.securityfocus.com/bid/15003
reference_id
reference_type
scores
url	http://www.securityfocus.com/bid/15003

reference_url	http://www.vupen.com/english/advisories/2008/1979/references
reference_id
reference_type
scores
url	http://www.vupen.com/english/advisories/2008/1979/references

reference_url	http://www.vupen.com/english/advisories/2008/1981/references
reference_id
reference_type
scores
url	http://www.vupen.com/english/advisories/2008/1981/references

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat::::::::
reference_id	cpe:2.3:a:apache:tomcat::::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat::::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:hitachi:cosminexus_application_server:05_00_05_05_e:::::::*
reference_id	cpe:2.3:a:hitachi:cosminexus_application_server:05_00_05_05_e:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:hitachi:cosminexus_application_server:05_00_05_05_e:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:hitachi:cosminexus_application_server:05_00_05_05_f:::::::*
reference_id	cpe:2.3:a:hitachi:cosminexus_application_server:05_00_05_05_f:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:hitachi:cosminexus_application_server:05_00_05_05_f:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:hitachi:cosminexus_application_server:05_00_05_05_h:::::::*
reference_id	cpe:2.3:a:hitachi:cosminexus_application_server:05_00_05_05_h:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:hitachi:cosminexus_application_server:05_00_05_05_h:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:hitachi:cosminexus_application_server:05_00_05_05_k:::::::*
reference_id	cpe:2.3:a:hitachi:cosminexus_application_server:05_00_05_05_k:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:hitachi:cosminexus_application_server:05_00_05_05_k:::::::*

reference_url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3164

reference_id

CVE-2005-3164

reference_type

scores

value	Important
scoring_system	apache_tomcat
scoring_elements

url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3164

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2005-3164

reference_id

CVE-2005-3164

reference_type

scores

value	2.6
scoring_system	cvssv2
scoring_elements	AV:N/AC:H/Au:N/C:P/I:N/A:N

value	LOW
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2005-3164

reference_url

https://github.com/advisories/GHSA-qhqv-q4xg-f6g7

reference_id

GHSA-qhqv-q4xg-f6g7

reference_type

scores

value	LOW
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-qhqv-q4xg-f6g7

fixed_packages

url pkg:apache/tomcat@4.1.37

purl pkg:apache/tomcat@4.1.37

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-a9cu-fxqw-xkdg

vulnerability	VCID-acmu-9eqb-fya5

vulnerability	VCID-qdck-q54n-rkcv

resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@4.1.37

aliases CVE-2005-3164, GHSA-qhqv-q4xg-f6g7

risk_score 4.0

exploitability 0.5

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-mp3r-5531-uqg5

url VCID-p45v-qpgg-qqfj

vulnerability_id VCID-p45v-qpgg-qqfj

summary Cross-site scripting (XSS) vulnerability in SendMailServlet in the examples web application (examples/jsp/mail/sendmail.jsp) in Apache Tomcat 4.0.0 through 4.0.6 and 4.1.0 through 4.1.36 allows remote attackers to inject arbitrary web script or HTML via the From field and possibly other fields, related to generation of error messages.

references

reference_url

http://lists.apple.com/archives/security-announce/2008//Jun/msg00002.html

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://lists.apple.com/archives/security-announce/2008//Jun/msg00002.html

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2007-3383

reference_id

reference_type

scores

value	0.38832
scoring_system	epss
scoring_elements	0.97271
published_at	2026-04-21T12:55:00Z

value	0.38832
scoring_system	epss
scoring_elements	0.97268
published_at	2026-04-18T12:55:00Z

value	0.38832
scoring_system	epss
scoring_elements	0.97266
published_at	2026-04-16T12:55:00Z

value	0.38832
scoring_system	epss
scoring_elements	0.97258
published_at	2026-04-13T12:55:00Z

value	0.38832
scoring_system	epss
scoring_elements	0.97257
published_at	2026-04-11T12:55:00Z

value	0.38832
scoring_system	epss
scoring_elements	0.97254
published_at	2026-04-09T12:55:00Z

value	0.38832
scoring_system	epss
scoring_elements	0.97252
published_at	2026-04-08T12:55:00Z

value	0.38832
scoring_system	epss
scoring_elements	0.97245
published_at	2026-04-07T12:55:00Z

value	0.38832
scoring_system	epss
scoring_elements	0.97244
published_at	2026-04-04T12:55:00Z

value	0.38832
scoring_system	epss
scoring_elements	0.97233
published_at	2026-04-01T12:55:00Z

value	0.38832
scoring_system	epss
scoring_elements	0.97239
published_at	2026-04-02T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2007-3383

reference_url

http://seclists.org/fulldisclosure/2007/Jul/0448.html

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://seclists.org/fulldisclosure/2007/Jul/0448.html

reference_url

https://exchange.xforce.ibmcloud.com/vulnerabilities/35536

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://exchange.xforce.ibmcloud.com/vulnerabilities/35536

reference_url

https://lists.apache.org/thread.html/29dc6c2b625789e70a9c4756b5a327e6547273ff8bde7e0327af48c5@%3Cdev.tomcat.apache.org%3E

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/29dc6c2b625789e70a9c4756b5a327e6547273ff8bde7e0327af48c5@%3Cdev.tomcat.apache.org%3E

reference_url

https://lists.apache.org/thread.html/c62b0e3a7bf23342352a5810c640a94b6db69957c5c19db507004d74@%3Cdev.tomcat.apache.org%3E

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/c62b0e3a7bf23342352a5810c640a94b6db69957c5c19db507004d74@%3Cdev.tomcat.apache.org%3E

reference_url

https://lists.apache.org/thread.html/rb71997f506c6cc8b530dd845c084995a9878098846c7b4eacfae8db3@%3Cdev.tomcat.apache.org%3E

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/rb71997f506c6cc8b530dd845c084995a9878098846c7b4eacfae8db3@%3Cdev.tomcat.apache.org%3E

reference_url

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

reference_url

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://www.kb.cert.org/vuls/id/862600

reference_url

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://www.kb.cert.org/vuls/id/862600

reference_url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3383

reference_id

CVE-2007-3383

reference_type

scores

value	Low
scoring_system	apache_tomcat
scoring_elements

url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3383

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2007-3383

reference_id

CVE-2007-3383

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2007-3383

reference_url

https://github.com/advisories/GHSA-wjwr-3jch-479j

reference_id

GHSA-wjwr-3jch-479j

reference_type

scores

value	MODERATE
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-wjwr-3jch-479j

fixed_packages

url pkg:apache/tomcat@4.1.37

purl pkg:apache/tomcat@4.1.37

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-a9cu-fxqw-xkdg

vulnerability	VCID-acmu-9eqb-fya5

vulnerability	VCID-qdck-q54n-rkcv

resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@4.1.37

aliases CVE-2007-3383, GHSA-wjwr-3jch-479j

risk_score 3.1

exploitability 0.5

weighted_severity 6.2

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-p45v-qpgg-qqfj

url VCID-peya-mr7j-vugf

vulnerability_id VCID-peya-mr7j-vugf

summary Multiple cross-site scripting (XSS) vulnerabilities in certain JSP files in the examples web application in Apache Tomcat 4.0.0 through 4.0.6, 4.1.0 through 4.1.36, 5.0.0 through 5.0.30, 5.5.0 through 5.5.24, and 6.0.0 through 6.0.13 allow remote attackers to inject arbitrary web script or HTML via the portion of the URI after the ';' character, as demonstrated by a URI containing a "snp/snoop.jsp;" sequence.

references

reference_url	http://community.ca.com/blogs/casecurityresponseblog/archive/2009/01/23.aspx
reference_id
reference_type
scores
url	http://community.ca.com/blogs/casecurityresponseblog/archive/2009/01/23.aspx

reference_url	http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01178795
reference_id
reference_type
scores
url	http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01178795

reference_url

http://lists.apple.com/archives/security-announce/2008//Jun/msg00002.html

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://lists.apple.com/archives/security-announce/2008//Jun/msg00002.html

reference_url

http://lists.opensuse.org/opensuse-security-announce/2008-03/msg00008.html

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://lists.opensuse.org/opensuse-security-announce/2008-03/msg00008.html

reference_url

http://lists.opensuse.org/opensuse-security-announce/2009-02/msg00002.html

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://lists.opensuse.org/opensuse-security-announce/2009-02/msg00002.html

reference_url	http://osvdb.org/36080
reference_id
reference_type
scores
url	http://osvdb.org/36080

reference_url

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://api.first.org/data/v1/epss?cve=CVE-2007-2449

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-2449.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-2449.json

reference_url

reference_id

reference_type

scores

value	0.4909
scoring_system	epss
scoring_elements	0.97776
published_at	2026-04-13T12:55:00Z

value	0.4909
scoring_system	epss
scoring_elements	0.97774
published_at	2026-04-12T12:55:00Z

value	0.4909
scoring_system	epss
scoring_elements	0.97772
published_at	2026-04-11T12:55:00Z

value	0.4909
scoring_system	epss
scoring_elements	0.9777
published_at	2026-04-09T12:55:00Z

value	0.4909
scoring_system	epss
scoring_elements	0.97784
published_at	2026-04-18T12:55:00Z

value	0.4909
scoring_system	epss
scoring_elements	0.97782
published_at	2026-04-16T12:55:00Z

value	0.4909
scoring_system	epss
scoring_elements	0.97761
published_at	2026-04-07T12:55:00Z

value	0.4909
scoring_system	epss
scoring_elements	0.97783
published_at	2026-04-21T12:55:00Z

value	0.4909
scoring_system	epss
scoring_elements	0.97759
published_at	2026-04-04T12:55:00Z

value	0.4909
scoring_system	epss
scoring_elements	0.97758
published_at	2026-04-02T12:55:00Z

value	0.4909
scoring_system	epss
scoring_elements	0.97752
published_at	2026-04-01T12:55:00Z

value	0.4909
scoring_system	epss
scoring_elements	0.97767
published_at	2026-04-08T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2007-2449

reference_url	http://secunia.com/advisories/26076
reference_id
reference_type
scores
url	http://secunia.com/advisories/26076

reference_url	http://secunia.com/advisories/27037
reference_id
reference_type
scores
url	http://secunia.com/advisories/27037

reference_url	http://secunia.com/advisories/27727
reference_id
reference_type
scores
url	http://secunia.com/advisories/27727

reference_url	http://secunia.com/advisories/29392
reference_id
reference_type
scores
url	http://secunia.com/advisories/29392

reference_url	http://secunia.com/advisories/30802
reference_id
reference_type
scores
url	http://secunia.com/advisories/30802

reference_url	http://secunia.com/advisories/31493
reference_id
reference_type
scores
url	http://secunia.com/advisories/31493

reference_url	http://secunia.com/advisories/33668
reference_id
reference_type
scores
url	http://secunia.com/advisories/33668

reference_url	http://securityreason.com/securityalert/2804
reference_id
reference_type
scores
url	http://securityreason.com/securityalert/2804

reference_url

https://exchange.xforce.ibmcloud.com/vulnerabilities/34869

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://exchange.xforce.ibmcloud.com/vulnerabilities/34869

reference_url

https://lists.apache.org/thread.html/06cfb634bc7bf37af7d8f760f118018746ad8efbd519c4b789ac9c2e@%3Cdev.tomcat.apache.org%3E

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/06cfb634bc7bf37af7d8f760f118018746ad8efbd519c4b789ac9c2e@%3Cdev.tomcat.apache.org%3E

reference_url	https://lists.apache.org/thread.html/06cfb634bc7bf37af7d8f760f118018746ad8efbd519c4b789ac9c2e%40%3Cdev.tomcat.apache.org%3E
reference_id
reference_type
scores
url	https://lists.apache.org/thread.html/06cfb634bc7bf37af7d8f760f118018746ad8efbd519c4b789ac9c2e%40%3Cdev.tomcat.apache.org%3E

reference_url

https://lists.apache.org/thread.html/29dc6c2b625789e70a9c4756b5a327e6547273ff8bde7e0327af48c5@%3Cdev.tomcat.apache.org%3E

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/29dc6c2b625789e70a9c4756b5a327e6547273ff8bde7e0327af48c5@%3Cdev.tomcat.apache.org%3E

reference_url	https://lists.apache.org/thread.html/29dc6c2b625789e70a9c4756b5a327e6547273ff8bde7e0327af48c5%40%3Cdev.tomcat.apache.org%3E
reference_id
reference_type
scores
url	https://lists.apache.org/thread.html/29dc6c2b625789e70a9c4756b5a327e6547273ff8bde7e0327af48c5%40%3Cdev.tomcat.apache.org%3E

reference_url

https://lists.apache.org/thread.html/8dcaf7c3894d66cb717646ea1504ea6e300021c85bb4e677dc16b1aa@%3Cdev.tomcat.apache.org%3E

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/8dcaf7c3894d66cb717646ea1504ea6e300021c85bb4e677dc16b1aa@%3Cdev.tomcat.apache.org%3E

reference_url	https://lists.apache.org/thread.html/8dcaf7c3894d66cb717646ea1504ea6e300021c85bb4e677dc16b1aa%40%3Cdev.tomcat.apache.org%3E
reference_id
reference_type
scores
url	https://lists.apache.org/thread.html/8dcaf7c3894d66cb717646ea1504ea6e300021c85bb4e677dc16b1aa%40%3Cdev.tomcat.apache.org%3E

reference_url

https://lists.apache.org/thread.html/c62b0e3a7bf23342352a5810c640a94b6db69957c5c19db507004d74@%3Cdev.tomcat.apache.org%3E

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/c62b0e3a7bf23342352a5810c640a94b6db69957c5c19db507004d74@%3Cdev.tomcat.apache.org%3E

reference_url	https://lists.apache.org/thread.html/c62b0e3a7bf23342352a5810c640a94b6db69957c5c19db507004d74%40%3Cdev.tomcat.apache.org%3E
reference_id
reference_type
scores
url	https://lists.apache.org/thread.html/c62b0e3a7bf23342352a5810c640a94b6db69957c5c19db507004d74%40%3Cdev.tomcat.apache.org%3E

reference_url

https://lists.apache.org/thread.html/rb71997f506c6cc8b530dd845c084995a9878098846c7b4eacfae8db3@%3Cdev.tomcat.apache.org%3E

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/rb71997f506c6cc8b530dd845c084995a9878098846c7b4eacfae8db3@%3Cdev.tomcat.apache.org%3E

reference_url	https://lists.apache.org/thread.html/rb71997f506c6cc8b530dd845c084995a9878098846c7b4eacfae8db3%40%3Cdev.tomcat.apache.org%3E
reference_id
reference_type
scores
url	https://lists.apache.org/thread.html/rb71997f506c6cc8b530dd845c084995a9878098846c7b4eacfae8db3%40%3Cdev.tomcat.apache.org%3E

reference_url	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10578
reference_id
reference_type
scores
url	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10578

reference_url

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://support.ca.com/irj/portal/anonymous/phpsupcontent?contentID=197540

reference_url

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://support.ca.com/irj/portal/anonymous/phpsupcontent?contentID=197540

reference_url

https://www.redhat.com/archives/fedora-package-announce/2007-November/msg00525.html

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://www.redhat.com/archives/fedora-package-announce/2007-November/msg00525.html

reference_url

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

reference_url

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

reference_url

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://www.redhat.com/support/errata/RHSA-2007-0569.html

reference_url	http://www.mandriva.com/security/advisories?name=MDKSA-2007:241
reference_id
reference_type
scores
url	http://www.mandriva.com/security/advisories?name=MDKSA-2007:241

reference_url

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://www.redhat.com/support/errata/RHSA-2007-0569.html

reference_url

http://www.redhat.com/support/errata/RHSA-2008-0261.html

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://www.redhat.com/support/errata/RHSA-2008-0261.html

reference_url	http://www.securityfocus.com/archive/1/471351/100/0/threaded
reference_id
reference_type
scores
url	http://www.securityfocus.com/archive/1/471351/100/0/threaded

reference_url	http://www.securityfocus.com/archive/1/500396/100/0/threaded
reference_id
reference_type
scores
url	http://www.securityfocus.com/archive/1/500396/100/0/threaded

reference_url	http://www.securityfocus.com/archive/1/500412/100/0/threaded
reference_id
reference_type
scores
url	http://www.securityfocus.com/archive/1/500412/100/0/threaded

reference_url	http://www.securityfocus.com/bid/24476
reference_id
reference_type
scores
url	http://www.securityfocus.com/bid/24476

reference_url	http://www.securitytracker.com/id?1018245
reference_id
reference_type
scores
url	http://www.securitytracker.com/id?1018245

reference_url	http://www.vupen.com/english/advisories/2007/2213
reference_id
reference_type
scores
url	http://www.vupen.com/english/advisories/2007/2213

reference_url	http://www.vupen.com/english/advisories/2007/3386
reference_id
reference_type
scores
url	http://www.vupen.com/english/advisories/2007/3386

reference_url	http://www.vupen.com/english/advisories/2008/1981/references
reference_id
reference_type
scores
url	http://www.vupen.com/english/advisories/2008/1981/references

reference_url	http://www.vupen.com/english/advisories/2009/0233
reference_id
reference_type
scores
url	http://www.vupen.com/english/advisories/2009/0233

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=244804
reference_id	244804
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=244804

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat::::::::
reference_id	cpe:2.3:a:apache:tomcat::::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat::::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.0.0:::::::*
reference_id	cpe:2.3:a:apache:tomcat:4.0.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.0.0:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.0.1:::::::*
reference_id	cpe:2.3:a:apache:tomcat:4.0.1:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.0.1:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.0.2:::::::*
reference_id	cpe:2.3:a:apache:tomcat:4.0.2:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.0.2:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.0.3:::::::*
reference_id	cpe:2.3:a:apache:tomcat:4.0.3:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.0.3:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.0.4:::::::*
reference_id	cpe:2.3:a:apache:tomcat:4.0.4:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.0.4:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.0.5:::::::*
reference_id	cpe:2.3:a:apache:tomcat:4.0.5:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.0.5:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.0:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.0.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.0:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.1:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.0.1:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.1:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.10:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.0.10:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.10:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.11:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.0.11:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.11:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.12:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.0.12:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.12:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.13:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.0.13:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.13:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.14:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.0.14:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.14:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.15:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.0.15:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.15:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.16:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.0.16:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.16:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.17:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.0.17:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.17:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.18:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.0.18:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.18:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.19:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.0.19:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.19:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.2:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.0.2:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.2:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.21:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.0.21:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.21:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.22:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.0.22:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.22:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.23:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.0.23:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.23:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.24:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.0.24:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.24:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.25:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.0.25:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.25:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.26:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.0.26:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.26:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.27:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.0.27:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.27:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.28:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.0.28:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.28:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.29:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.0.29:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.29:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.3:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.0.3:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.3:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.30:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.0.30:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.30:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.4:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.0.4:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.4:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.5:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.0.5:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.5:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.6:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.0.6:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.6:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.7:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.0.7:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.7:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.8:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.0.8:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.8:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.9:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.0.9:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.9:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.0:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.5.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.0:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.1:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.5.1:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.1:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.10:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.5.10:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.10:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.11:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.5.11:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.11:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.12:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.5.12:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.12:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.13:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.5.13:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.13:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.14:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.5.14:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.14:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.15:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.5.15:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.15:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.16:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.5.16:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.16:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.17:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.5.17:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.17:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.18:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.5.18:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.18:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.19:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.5.19:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.19:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.2:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.5.2:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.2:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.20:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.5.20:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.20:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.21:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.5.21:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.21:::::::*

100

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.22:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.5.22:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.22:::::::*

101

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.3:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.5.3:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.3:::::::*

102

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.4:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.5.4:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.4:::::::*

103

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.5:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.5.5:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.5:::::::*

104

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.6:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.5.6:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.6:::::::*

105

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.7:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.5.7:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.7:::::::*

106

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.8:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.5.8:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.8:::::::*

107

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.9:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.5.9:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.9:::::::*

108

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.0:::::::*
reference_id	cpe:2.3:a:apache:tomcat:6.0.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.0:::::::*

109

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.1:::::::*
reference_id	cpe:2.3:a:apache:tomcat:6.0.1:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.1:::::::*

110

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.10:::::::*
reference_id	cpe:2.3:a:apache:tomcat:6.0.10:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.10:::::::*

111

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.11:::::::*
reference_id	cpe:2.3:a:apache:tomcat:6.0.11:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.11:::::::*

112

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.12:::::::*
reference_id	cpe:2.3:a:apache:tomcat:6.0.12:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.12:::::::*

113

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.13:::::::*
reference_id	cpe:2.3:a:apache:tomcat:6.0.13:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.13:::::::*

114

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.2:::::::*
reference_id	cpe:2.3:a:apache:tomcat:6.0.2:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.2:::::::*

115

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.3:::::::*
reference_id	cpe:2.3:a:apache:tomcat:6.0.3:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.3:::::::*

116

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.4:::::::*
reference_id	cpe:2.3:a:apache:tomcat:6.0.4:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.4:::::::*

117

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.5:::::::*
reference_id	cpe:2.3:a:apache:tomcat:6.0.5:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.5:::::::*

118

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.6:::::::*
reference_id	cpe:2.3:a:apache:tomcat:6.0.6:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.6:::::::*

119

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.7:::::::*
reference_id	cpe:2.3:a:apache:tomcat:6.0.7:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.7:::::::*

120

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.8:::::::*
reference_id	cpe:2.3:a:apache:tomcat:6.0.8:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.8:::::::*

121

reference_url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2449

reference_id

CVE-2007-2449

reference_type

scores

value	Low
scoring_system	apache_tomcat
scoring_elements

url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2449

122

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2007-2449

reference_id

CVE-2007-2449

reference_type

scores

value	4.3
scoring_system	cvssv2
scoring_elements	AV:N/AC:M/Au:N/C:N/I:P/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2007-2449

123

reference_url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/jsp/webapps/30189.txt
reference_id	CVE-2007-2449;OSVDB-36080
reference_type	exploit
scores
url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/jsp/webapps/30189.txt

124

reference_url	https://www.securityfocus.com/bid/24476/info
reference_id	CVE-2007-2449;OSVDB-36080
reference_type	exploit
scores
url	https://www.securityfocus.com/bid/24476/info

125

reference_url

https://github.com/advisories/GHSA-hc39-rjwp-qffq

reference_id

GHSA-hc39-rjwp-qffq

reference_type

scores

value	MODERATE
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-hc39-rjwp-qffq

126

reference_url	https://access.redhat.com/errata/RHSA-2007:0569
reference_id	RHSA-2007:0569
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2007:0569

127

reference_url	https://access.redhat.com/errata/RHSA-2007:0876
reference_id	RHSA-2007:0876
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2007:0876

128

reference_url	https://access.redhat.com/errata/RHSA-2008:0630
reference_id	RHSA-2008:0630
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2008:0630

fixed_packages

url pkg:apache/tomcat@4.1.37

purl pkg:apache/tomcat@4.1.37

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-a9cu-fxqw-xkdg

vulnerability	VCID-acmu-9eqb-fya5

vulnerability	VCID-qdck-q54n-rkcv

resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@4.1.37

url pkg:apache/tomcat@5.5.25

purl pkg:apache/tomcat@5.5.25

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-7pd9-1r19-73fe

vulnerability	VCID-88v7-kc2y-bfd7

vulnerability	VCID-hhkg-mfp5-2kax

vulnerability	VCID-v94p-bxm3-akfd

resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@5.5.25

url pkg:apache/tomcat@6.0.14

purl pkg:apache/tomcat@6.0.14

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-88v7-kc2y-bfd7

vulnerability	VCID-v94p-bxm3-akfd

resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@6.0.14

aliases CVE-2007-2449, GHSA-hc39-rjwp-qffq

risk_score 10.0

exploitability 2.0

weighted_severity 6.2

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-peya-mr7j-vugf

url VCID-tcju-3rvu-wkht

vulnerability_id VCID-tcju-3rvu-wkht

summary Multiple cross-site scripting (XSS) vulnerabilities in the (1) Manager and (2) Host Manager web applications in Apache Tomcat 4.0.0 through 4.0.6, 4.1.0 through 4.1.36, 5.0.0 through 5.0.30, 5.5.0 through 5.5.24, and 6.0.0 through 6.0.13 allow remote authenticated users to inject arbitrary web script or HTML via a parameter name to manager/html/upload, and other unspecified vectors.

references

reference_url

http://community.ca.com/blogs/casecurityresponseblog/archive/2009/01/23.aspx

reference_id

reference_type

scores

value	LOW
scoring_system	generic_textual
scoring_elements

url

http://community.ca.com/blogs/casecurityresponseblog/archive/2009/01/23.aspx

reference_url

http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01178795

reference_id

reference_type

scores

value	LOW
scoring_system	generic_textual
scoring_elements

url

http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01178795

reference_url

http://jvn.jp/jp/JVN%2307100457/index.html

reference_id

reference_type

scores

value	LOW
scoring_system	generic_textual
scoring_elements

url

http://jvn.jp/jp/JVN%2307100457/index.html

reference_url

http://lists.apple.com/archives/security-announce/2008//Jun/msg00002.html

reference_id

reference_type

scores

value	LOW
scoring_system	generic_textual
scoring_elements

url

http://lists.apple.com/archives/security-announce/2008//Jun/msg00002.html

reference_url

http://lists.opensuse.org/opensuse-security-announce/2009-02/msg00002.html

reference_id

reference_type

scores

value	LOW
scoring_system	generic_textual
scoring_elements

url

http://lists.opensuse.org/opensuse-security-announce/2009-02/msg00002.html

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-2450.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-2450.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2007-2450

reference_id

reference_type

scores

value	0.01224
scoring_system	epss
scoring_elements	0.79139
published_at	2026-04-11T12:55:00Z

value	0.01224
scoring_system	epss
scoring_elements	0.7914
published_at	2026-04-21T12:55:00Z

value	0.01224
scoring_system	epss
scoring_elements	0.79141
published_at	2026-04-18T12:55:00Z

value	0.01224
scoring_system	epss
scoring_elements	0.79144
published_at	2026-04-16T12:55:00Z

value	0.01224
scoring_system	epss
scoring_elements	0.79126
published_at	2026-04-12T12:55:00Z

value	0.01224
scoring_system	epss
scoring_elements	0.79115
published_at	2026-04-09T12:55:00Z

value	0.01224
scoring_system	epss
scoring_elements	0.79107
published_at	2026-04-08T12:55:00Z

value	0.01224
scoring_system	epss
scoring_elements	0.79083
published_at	2026-04-07T12:55:00Z

value	0.01224
scoring_system	epss
scoring_elements	0.79098
published_at	2026-04-04T12:55:00Z

value	0.01224
scoring_system	epss
scoring_elements	0.79071
published_at	2026-04-02T12:55:00Z

value	0.01224
scoring_system	epss
scoring_elements	0.79064
published_at	2026-04-01T12:55:00Z

value	0.01224
scoring_system	epss
scoring_elements	0.79116
published_at	2026-04-13T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2007-2450

reference_url	http://secunia.com/advisories/25678
reference_id
reference_type
scores
url	http://secunia.com/advisories/25678

reference_url	http://secunia.com/advisories/26076
reference_id
reference_type
scores
url	http://secunia.com/advisories/26076

reference_url	http://secunia.com/advisories/27037
reference_id
reference_type
scores
url	http://secunia.com/advisories/27037

reference_url	http://secunia.com/advisories/27727
reference_id
reference_type
scores
url	http://secunia.com/advisories/27727

reference_url	http://secunia.com/advisories/28549
reference_id
reference_type
scores
url	http://secunia.com/advisories/28549

reference_url	http://secunia.com/advisories/30802
reference_id
reference_type
scores
url	http://secunia.com/advisories/30802

reference_url	http://secunia.com/advisories/30899
reference_id
reference_type
scores
url	http://secunia.com/advisories/30899

reference_url	http://secunia.com/advisories/30908
reference_id
reference_type
scores
url	http://secunia.com/advisories/30908

reference_url	http://secunia.com/advisories/33668
reference_id
reference_type
scores
url	http://secunia.com/advisories/33668

reference_url	http://securityreason.com/securityalert/2813
reference_id
reference_type
scores
url	http://securityreason.com/securityalert/2813

reference_url

https://exchange.xforce.ibmcloud.com/vulnerabilities/34868

reference_id

reference_type

scores

value	LOW
scoring_system	generic_textual
scoring_elements

url

https://exchange.xforce.ibmcloud.com/vulnerabilities/34868

reference_url

reference_id

reference_type

scores

value	LOW
scoring_system	generic_textual
scoring_elements

url

https://github.com/apache/tomcat/commit/1bc3bcb2848f478fd6674487d6dad507fd5dd686

reference_url

reference_id

reference_type

scores

value	LOW
scoring_system	generic_textual
scoring_elements

url

https://github.com/apache/tomcat/commit/1bc3bcb2848f478fd6674487d6dad507fd5dd686

reference_url

https://lists.apache.org/thread.html/29dc6c2b625789e70a9c4756b5a327e6547273ff8bde7e0327af48c5@%3Cdev.tomcat.apache.org%3E

reference_id

reference_type

scores

value	LOW
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/29dc6c2b625789e70a9c4756b5a327e6547273ff8bde7e0327af48c5@%3Cdev.tomcat.apache.org%3E

reference_url	https://lists.apache.org/thread.html/29dc6c2b625789e70a9c4756b5a327e6547273ff8bde7e0327af48c5%40%3Cdev.tomcat.apache.org%3E
reference_id
reference_type
scores
url	https://lists.apache.org/thread.html/29dc6c2b625789e70a9c4756b5a327e6547273ff8bde7e0327af48c5%40%3Cdev.tomcat.apache.org%3E

reference_url

https://lists.apache.org/thread.html/c62b0e3a7bf23342352a5810c640a94b6db69957c5c19db507004d74@%3Cdev.tomcat.apache.org%3E

reference_id

reference_type

scores

value	LOW
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/c62b0e3a7bf23342352a5810c640a94b6db69957c5c19db507004d74@%3Cdev.tomcat.apache.org%3E

reference_url	https://lists.apache.org/thread.html/c62b0e3a7bf23342352a5810c640a94b6db69957c5c19db507004d74%40%3Cdev.tomcat.apache.org%3E
reference_id
reference_type
scores
url	https://lists.apache.org/thread.html/c62b0e3a7bf23342352a5810c640a94b6db69957c5c19db507004d74%40%3Cdev.tomcat.apache.org%3E

reference_url

https://lists.apache.org/thread.html/rb71997f506c6cc8b530dd845c084995a9878098846c7b4eacfae8db3@%3Cdev.tomcat.apache.org%3E

reference_id

reference_type

scores

value	LOW
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/rb71997f506c6cc8b530dd845c084995a9878098846c7b4eacfae8db3@%3Cdev.tomcat.apache.org%3E

reference_url	https://lists.apache.org/thread.html/rb71997f506c6cc8b530dd845c084995a9878098846c7b4eacfae8db3%40%3Cdev.tomcat.apache.org%3E
reference_id
reference_type
scores
url	https://lists.apache.org/thread.html/rb71997f506c6cc8b530dd845c084995a9878098846c7b4eacfae8db3%40%3Cdev.tomcat.apache.org%3E

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2007-2450

reference_id

reference_type

scores

value	3.5
scoring_system	cvssv2
scoring_elements	AV:N/AC:M/Au:S/C:N/I:P/A:N

value	LOW
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2007-2450

reference_url

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11287

reference_id

reference_type

scores

value	LOW
scoring_system	generic_textual
scoring_elements

url

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11287

reference_url

http://sunsolve.sun.com/search/document.do?assetkey=1-26-239312-1

reference_id

reference_type

scores

value	LOW
scoring_system	generic_textual
scoring_elements

url

http://sunsolve.sun.com/search/document.do?assetkey=1-26-239312-1

reference_url

reference_id

reference_type

scores

value	LOW
scoring_system	generic_textual
scoring_elements

url

http://support.ca.com/irj/portal/anonymous/phpsupcontent?contentID=197540

reference_url

reference_id

reference_type

scores

value	LOW
scoring_system	generic_textual
scoring_elements

url

http://support.ca.com/irj/portal/anonymous/phpsupcontent?contentID=197540

reference_url

https://web.archive.org/web/20071203205513/http://secunia.com/advisories/25678

reference_id

reference_type

scores

value	LOW
scoring_system	generic_textual
scoring_elements

url

https://web.archive.org/web/20071203205513/http://secunia.com/advisories/25678

reference_url

https://web.archive.org/web/20080212014926/http://secunia.com/advisories/26076

reference_id

reference_type

scores

value	LOW
scoring_system	generic_textual
scoring_elements

url

https://web.archive.org/web/20080212014926/http://secunia.com/advisories/26076

reference_url

https://web.archive.org/web/20080320042501/http://secunia.com/advisories/27727

reference_id

reference_type

scores

value	LOW
scoring_system	generic_textual
scoring_elements

url

https://web.archive.org/web/20080320042501/http://secunia.com/advisories/27727

reference_url

https://web.archive.org/web/20080324012730/http://secunia.com/advisories/28549

reference_id

reference_type

scores

value	LOW
scoring_system	generic_textual
scoring_elements

url

https://web.archive.org/web/20080324012730/http://secunia.com/advisories/28549

reference_url

https://web.archive.org/web/20080413164556/http://securitytracker.com/alerts/2007/Jun/1018245.html

reference_id

reference_type

scores

value	LOW
scoring_system	generic_textual
scoring_elements

url

https://web.archive.org/web/20080413164556/http://securitytracker.com/alerts/2007/Jun/1018245.html

reference_url

https://web.archive.org/web/20080724125033/http://secunia.com/advisories/27037

reference_id

reference_type

scores

value	LOW
scoring_system	generic_textual
scoring_elements

url

https://web.archive.org/web/20080724125033/http://secunia.com/advisories/27037

reference_url

https://web.archive.org/web/20080801204240/http://secunia.com/advisories/30899

reference_id

reference_type

scores

value	LOW
scoring_system	generic_textual
scoring_elements

url

https://web.archive.org/web/20080801204240/http://secunia.com/advisories/30899

reference_url

https://web.archive.org/web/20080801210056/http://secunia.com/advisories/30802

reference_id

reference_type

scores

value	LOW
scoring_system	generic_textual
scoring_elements

url

https://web.archive.org/web/20080801210056/http://secunia.com/advisories/30802

reference_url

https://web.archive.org/web/20090623202429/http://secunia.com/advisories/33668

reference_id

reference_type

scores

value	LOW
scoring_system	generic_textual
scoring_elements

url

https://web.archive.org/web/20090623202429/http://secunia.com/advisories/33668

reference_url

https://web.archive.org/web/20120809122231/http://secunia.com/advisories/30908

reference_id

reference_type

scores

value	LOW
scoring_system	generic_textual
scoring_elements

url

https://web.archive.org/web/20120809122231/http://secunia.com/advisories/30908

reference_url

https://web.archive.org/web/20200229180652/http://www.securityfocus.com/bid/24475

reference_id

reference_type

scores

value	LOW
scoring_system	generic_textual
scoring_elements

url

https://web.archive.org/web/20200229180652/http://www.securityfocus.com/bid/24475

reference_url

https://web.archive.org/web/20200517122628/http://www.securityfocus.com/archive/1/500396/100/0/threaded

reference_id

reference_type

scores

value	LOW
scoring_system	generic_textual
scoring_elements

url

https://web.archive.org/web/20200517122628/http://www.securityfocus.com/archive/1/500396/100/0/threaded

reference_url

https://web.archive.org/web/20200517153851/http://www.securityfocus.com/archive/1/500412/100/0/threaded

reference_id

reference_type

scores

value	LOW
scoring_system	generic_textual
scoring_elements

url

https://web.archive.org/web/20200517153851/http://www.securityfocus.com/archive/1/500412/100/0/threaded

reference_url

https://web.archive.org/web/20200809062244/http://www.securityfocus.com/archive/1/471357/100/0/threaded

reference_id

reference_type

scores

value	LOW
scoring_system	generic_textual
scoring_elements

url

https://web.archive.org/web/20200809062244/http://www.securityfocus.com/archive/1/471357/100/0/threaded

reference_url

https://web.archive.org/web/20201207215920/https://cxsecurity.com/issue/WLB-2007060074

reference_id

reference_type

scores

value	LOW
scoring_system	generic_textual
scoring_elements

url

https://web.archive.org/web/20201207215920/https://cxsecurity.com/issue/WLB-2007060074

reference_url

https://www.redhat.com/archives/fedora-package-announce/2007-November/msg00525.html

reference_id

reference_type

scores

value	LOW
scoring_system	generic_textual
scoring_elements

url

https://www.redhat.com/archives/fedora-package-announce/2007-November/msg00525.html

reference_url

reference_id

reference_type

scores

value	LOW
scoring_system	generic_textual
scoring_elements

url

reference_url

reference_id

reference_type

scores

value	LOW
scoring_system	generic_textual
scoring_elements

url

reference_url

reference_id

reference_type

scores

value	LOW
scoring_system	generic_textual
scoring_elements

url

http://www.debian.org/security/2008/dsa-1468

reference_url

reference_id

reference_type

scores

value	LOW
scoring_system	generic_textual
scoring_elements

url

http://www.debian.org/security/2008/dsa-1468

reference_url

http://www.mandriva.com/security/advisories?name=MDKSA-2007:241

reference_id

reference_type

scores

value	LOW
scoring_system	generic_textual
scoring_elements

url

http://www.mandriva.com/security/advisories?name=MDKSA-2007:241

reference_url	http://www.osvdb.org/36079
reference_id
reference_type
scores
url	http://www.osvdb.org/36079

reference_url

http://www.redhat.com/support/errata/RHSA-2007-0569.html

reference_id

reference_type

scores

value	LOW
scoring_system	generic_textual
scoring_elements

url

http://www.redhat.com/support/errata/RHSA-2007-0569.html

reference_url

http://www.redhat.com/support/errata/RHSA-2008-0261.html

reference_id

reference_type

scores

value	LOW
scoring_system	generic_textual
scoring_elements

url

http://www.redhat.com/support/errata/RHSA-2008-0261.html

reference_url	http://www.securityfocus.com/archive/1/471357/100/0/threaded
reference_id
reference_type
scores
url	http://www.securityfocus.com/archive/1/471357/100/0/threaded

reference_url	http://www.securityfocus.com/archive/1/500396/100/0/threaded
reference_id
reference_type
scores
url	http://www.securityfocus.com/archive/1/500396/100/0/threaded

reference_url	http://www.securityfocus.com/archive/1/500412/100/0/threaded
reference_id
reference_type
scores
url	http://www.securityfocus.com/archive/1/500412/100/0/threaded

reference_url	http://www.securityfocus.com/bid/24475
reference_id
reference_type
scores
url	http://www.securityfocus.com/bid/24475

reference_url	http://www.securitytracker.com/id?1018245
reference_id
reference_type
scores
url	http://www.securitytracker.com/id?1018245

reference_url	http://www.vupen.com/english/advisories/2007/2213
reference_id
reference_type
scores
url	http://www.vupen.com/english/advisories/2007/2213

reference_url	http://www.vupen.com/english/advisories/2007/3386
reference_id
reference_type
scores
url	http://www.vupen.com/english/advisories/2007/3386

reference_url	http://www.vupen.com/english/advisories/2008/1979/references
reference_id
reference_type
scores
url	http://www.vupen.com/english/advisories/2008/1979/references

reference_url	http://www.vupen.com/english/advisories/2008/1981/references
reference_id
reference_type
scores
url	http://www.vupen.com/english/advisories/2008/1981/references

reference_url	http://www.vupen.com/english/advisories/2009/0233
reference_id
reference_type
scores
url	http://www.vupen.com/english/advisories/2009/0233

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=244808
reference_id	244808
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=244808

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.0.0:::::::*
reference_id	cpe:2.3:a:apache:tomcat:4.0.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.0.0:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.0.1:::::::*
reference_id	cpe:2.3:a:apache:tomcat:4.0.1:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.0.1:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.0.2:::::::*
reference_id	cpe:2.3:a:apache:tomcat:4.0.2:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.0.2:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.0.3:::::::*
reference_id	cpe:2.3:a:apache:tomcat:4.0.3:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.0.3:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.0.4:::::::*
reference_id	cpe:2.3:a:apache:tomcat:4.0.4:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.0.4:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.0.5:::::::*
reference_id	cpe:2.3:a:apache:tomcat:4.0.5:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.0.5:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.0.6:::::::*
reference_id	cpe:2.3:a:apache:tomcat:4.0.6:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.0.6:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.1.0:::::::*
reference_id	cpe:2.3:a:apache:tomcat:4.1.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.1.0:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.1.1:::::::*
reference_id	cpe:2.3:a:apache:tomcat:4.1.1:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.1.1:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.1.10:::::::*
reference_id	cpe:2.3:a:apache:tomcat:4.1.10:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.1.10:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.1.15:::::::*
reference_id	cpe:2.3:a:apache:tomcat:4.1.15:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.1.15:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.1.2:::::::*
reference_id	cpe:2.3:a:apache:tomcat:4.1.2:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.1.2:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.1.24:::::::*
reference_id	cpe:2.3:a:apache:tomcat:4.1.24:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.1.24:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.1.28:::::::*
reference_id	cpe:2.3:a:apache:tomcat:4.1.28:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.1.28:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.1.3:::::::*
reference_id	cpe:2.3:a:apache:tomcat:4.1.3:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.1.3:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.1.31:::::::*
reference_id	cpe:2.3:a:apache:tomcat:4.1.31:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.1.31:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.1.36:::::::*
reference_id	cpe:2.3:a:apache:tomcat:4.1.36:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.1.36:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.1.3:beta::::::
reference_id	cpe:2.3:a:apache:tomcat:4.1.3:beta::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.1.3:beta::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.1.9:beta::::::
reference_id	cpe:2.3:a:apache:tomcat:4.1.9:beta::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:4.1.9:beta::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.0:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.0.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.0:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.1:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.0.1:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.1:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.10:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.0.10:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.10:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.11:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.0.11:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.11:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.12:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.0.12:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.12:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.13:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.0.13:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.13:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.14:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.0.14:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.14:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.15:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.0.15:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.15:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.16:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.0.16:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.16:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.17:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.0.17:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.17:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.18:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.0.18:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.18:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.19:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.0.19:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.19:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.2:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.0.2:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.2:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.21:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.0.21:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.21:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.22:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.0.22:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.22:::::::*

100

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.23:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.0.23:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.23:::::::*

101

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.24:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.0.24:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.24:::::::*

102

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.25:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.0.25:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.25:::::::*

103

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.26:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.0.26:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.26:::::::*

104

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.27:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.0.27:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.27:::::::*

105

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.28:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.0.28:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.28:::::::*

106

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.29:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.0.29:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.29:::::::*

107

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.3:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.0.3:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.3:::::::*

108

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.30:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.0.30:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.30:::::::*

109

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.4:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.0.4:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.4:::::::*

110

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.5:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.0.5:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.5:::::::*

111

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.6:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.0.6:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.6:::::::*

112

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.7:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.0.7:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.7:::::::*

113

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.8:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.0.8:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.8:::::::*

114

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.9:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.0.9:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.0.9:::::::*

115

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.0:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.5.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.0:::::::*

116

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.1:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.5.1:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.1:::::::*

117

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.10:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.5.10:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.10:::::::*

118

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.11:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.5.11:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.11:::::::*

119

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.12:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.5.12:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.12:::::::*

120

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.13:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.5.13:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.13:::::::*

121

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.14:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.5.14:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.14:::::::*

122

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.15:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.5.15:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.15:::::::*

123

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.16:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.5.16:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.16:::::::*

124

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.17:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.5.17:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.17:::::::*

125

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.18:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.5.18:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.18:::::::*

126

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.19:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.5.19:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.19:::::::*

127

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.2:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.5.2:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.2:::::::*

128

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.20:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.5.20:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.20:::::::*

129

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.21:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.5.21:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.21:::::::*

130

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.22:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.5.22:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.22:::::::*

131

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.23:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.5.23:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.23:::::::*

132

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.24:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.5.24:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.24:::::::*

133

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.3:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.5.3:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.3:::::::*

134

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.4:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.5.4:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.4:::::::*

135

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.5:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.5.5:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.5:::::::*

136

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.6:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.5.6:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.6:::::::*

137

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.7:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.5.7:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.7:::::::*

138

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.8:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.5.8:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.8:::::::*

139

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.9:::::::*
reference_id	cpe:2.3:a:apache:tomcat:5.5.9:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:5.5.9:::::::*

140

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.0:::::::*
reference_id	cpe:2.3:a:apache:tomcat:6.0.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.0:::::::*

141

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.1:::::::*
reference_id	cpe:2.3:a:apache:tomcat:6.0.1:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.1:::::::*

142

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.10:::::::*
reference_id	cpe:2.3:a:apache:tomcat:6.0.10:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.10:::::::*

143

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.11:::::::*
reference_id	cpe:2.3:a:apache:tomcat:6.0.11:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.11:::::::*

144

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.12:::::::*
reference_id	cpe:2.3:a:apache:tomcat:6.0.12:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.12:::::::*

145

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.13:::::::*
reference_id	cpe:2.3:a:apache:tomcat:6.0.13:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.13:::::::*

146

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.2:::::::*
reference_id	cpe:2.3:a:apache:tomcat:6.0.2:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.2:::::::*

147

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.3:::::::*
reference_id	cpe:2.3:a:apache:tomcat:6.0.3:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.3:::::::*

148

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.4:::::::*
reference_id	cpe:2.3:a:apache:tomcat:6.0.4:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.4:::::::*

149

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.5:::::::*
reference_id	cpe:2.3:a:apache:tomcat:6.0.5:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.5:::::::*

150

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.6:::::::*
reference_id	cpe:2.3:a:apache:tomcat:6.0.6:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.6:::::::*

151

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.7:::::::*
reference_id	cpe:2.3:a:apache:tomcat:6.0.7:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.7:::::::*

152

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.8:::::::*
reference_id	cpe:2.3:a:apache:tomcat:6.0.8:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.8:::::::*

153

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.9:::::::*
reference_id	cpe:2.3:a:apache:tomcat:6.0.9:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.9:::::::*

154

reference_url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2450

reference_id

CVE-2007-2450

reference_type

scores

value	Low
scoring_system	apache_tomcat
scoring_elements

url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2450

155

reference_url

https://github.com/advisories/GHSA-5c5p-jxvx-x7j2

reference_id

GHSA-5c5p-jxvx-x7j2

reference_type

scores

value	LOW
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-5c5p-jxvx-x7j2

156

reference_url	https://access.redhat.com/errata/RHSA-2007:0569
reference_id	RHSA-2007:0569
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2007:0569

157

reference_url	https://access.redhat.com/errata/RHSA-2007:0876
reference_id	RHSA-2007:0876
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2007:0876

fixed_packages

url pkg:apache/tomcat@4.1.37

purl pkg:apache/tomcat@4.1.37

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-a9cu-fxqw-xkdg

vulnerability	VCID-acmu-9eqb-fya5

vulnerability	VCID-qdck-q54n-rkcv

resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@4.1.37

url pkg:apache/tomcat@5.5.25

purl pkg:apache/tomcat@5.5.25

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-7pd9-1r19-73fe

vulnerability	VCID-88v7-kc2y-bfd7

vulnerability	VCID-hhkg-mfp5-2kax

vulnerability	VCID-v94p-bxm3-akfd

resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@5.5.25

url pkg:apache/tomcat@6.0.14

purl pkg:apache/tomcat@6.0.14

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-88v7-kc2y-bfd7

vulnerability	VCID-v94p-bxm3-akfd

resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@6.0.14

aliases CVE-2007-2450, GHSA-5c5p-jxvx-x7j2

risk_score 1.6

exploitability 0.5

weighted_severity 3.1

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-tcju-3rvu-wkht

url VCID-v94p-bxm3-akfd

vulnerability_id VCID-v94p-bxm3-akfd

summary Apache Tomcat 6.0.0 through 6.0.14, 5.5.0 through 5.5.25, and 4.1.0 through 4.1.36 does not properly handle (1) double quote (") characters or (2) %5C (encoded backslash) sequences in a cookie value, which might cause sensitive information such as session IDs to be leaked to remote attackers and enable session hijacking attacks. NOTE: this issue exists because of an incomplete fix for CVE-2007-3385.

references

reference_url

http://jvn.jp/jp/JVN%2309470767/index.html

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://jvn.jp/jp/JVN%2309470767/index.html

reference_url

http://lists.apple.com/archives/security-announce/2008//Jun/msg00002.html

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://lists.apple.com/archives/security-announce/2008//Jun/msg00002.html

reference_url

http://lists.apple.com/archives/security-announce/2008/Oct/msg00001.html

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://lists.apple.com/archives/security-announce/2008/Oct/msg00001.html

reference_url

http://lists.opensuse.org/opensuse-security-announce/2009-02/msg00002.html

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://lists.opensuse.org/opensuse-security-announce/2009-02/msg00002.html

reference_url

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://api.first.org/data/v1/epss?cve=CVE-2007-5333

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-5333.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-5333.json

reference_url

reference_id

reference_type

scores

value	0.81599
scoring_system	epss
scoring_elements	0.99179
published_at	2026-04-04T12:55:00Z

value	0.81599
scoring_system	epss
scoring_elements	0.99177
published_at	2026-04-02T12:55:00Z

value	0.81599
scoring_system	epss
scoring_elements	0.99176
published_at	2026-04-01T12:55:00Z

value	0.81599
scoring_system	epss
scoring_elements	0.99182
published_at	2026-04-07T12:55:00Z

value	0.81599
scoring_system	epss
scoring_elements	0.99187
published_at	2026-04-21T12:55:00Z

value	0.81599
scoring_system	epss
scoring_elements	0.99185
published_at	2026-04-18T12:55:00Z

value	0.81599
scoring_system	epss
scoring_elements	0.99184
published_at	2026-04-16T12:55:00Z

value	0.81599
scoring_system	epss
scoring_elements	0.99183
published_at	2026-04-13T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2007-5333

reference_url

https://bugzilla.redhat.com/show_bug.cgi?id=532111

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://bugzilla.redhat.com/show_bug.cgi?id=532111

reference_url

http://secunia.com/advisories/28878

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://secunia.com/advisories/28878

reference_url

http://secunia.com/advisories/28884

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://secunia.com/advisories/28884

reference_url

http://secunia.com/advisories/28915

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://secunia.com/advisories/28915

reference_url

http://secunia.com/advisories/29711

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://secunia.com/advisories/29711

reference_url

http://secunia.com/advisories/30676

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://secunia.com/advisories/30676

reference_url

http://secunia.com/advisories/30802

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://secunia.com/advisories/30802

reference_url

http://secunia.com/advisories/32036

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://secunia.com/advisories/32036

reference_url

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://secunia.com/advisories/33330

reference_url

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://secunia.com/advisories/33330

reference_url

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://secunia.com/advisories/44183

reference_url

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://secunia.com/advisories/44183

reference_url

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

reference_url

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://securityreason.com/securityalert/3636

reference_url

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://securityreason.com/securityalert/3636

reference_url

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/06cfb634bc7bf37af7d8f760f118018746ad8efbd519c4b789ac9c2e@%3Cdev.tomcat.apache.org%3E

reference_url

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/06cfb634bc7bf37af7d8f760f118018746ad8efbd519c4b789ac9c2e@%3Cdev.tomcat.apache.org%3E

reference_url

https://lists.apache.org/thread.html/06cfb634bc7bf37af7d8f760f118018746ad8efbd519c4b789ac9c2e%40%3Cdev.tomcat.apache.org%3E

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/06cfb634bc7bf37af7d8f760f118018746ad8efbd519c4b789ac9c2e%40%3Cdev.tomcat.apache.org%3E

reference_url

https://lists.apache.org/thread.html/29dc6c2b625789e70a9c4756b5a327e6547273ff8bde7e0327af48c5@%3Cdev.tomcat.apache.org%3E

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/29dc6c2b625789e70a9c4756b5a327e6547273ff8bde7e0327af48c5@%3Cdev.tomcat.apache.org%3E

reference_url

https://lists.apache.org/thread.html/29dc6c2b625789e70a9c4756b5a327e6547273ff8bde7e0327af48c5%40%3Cdev.tomcat.apache.org%3E

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/29dc6c2b625789e70a9c4756b5a327e6547273ff8bde7e0327af48c5%40%3Cdev.tomcat.apache.org%3E

reference_url

https://lists.apache.org/thread.html/8dcaf7c3894d66cb717646ea1504ea6e300021c85bb4e677dc16b1aa@%3Cdev.tomcat.apache.org%3E

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/8dcaf7c3894d66cb717646ea1504ea6e300021c85bb4e677dc16b1aa@%3Cdev.tomcat.apache.org%3E

reference_url

https://lists.apache.org/thread.html/8dcaf7c3894d66cb717646ea1504ea6e300021c85bb4e677dc16b1aa%40%3Cdev.tomcat.apache.org%3E

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/8dcaf7c3894d66cb717646ea1504ea6e300021c85bb4e677dc16b1aa%40%3Cdev.tomcat.apache.org%3E

reference_url

https://lists.apache.org/thread.html/c62b0e3a7bf23342352a5810c640a94b6db69957c5c19db507004d74@%3Cdev.tomcat.apache.org%3E

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/c62b0e3a7bf23342352a5810c640a94b6db69957c5c19db507004d74@%3Cdev.tomcat.apache.org%3E

reference_url

https://lists.apache.org/thread.html/c62b0e3a7bf23342352a5810c640a94b6db69957c5c19db507004d74%40%3Cdev.tomcat.apache.org%3E

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/c62b0e3a7bf23342352a5810c640a94b6db69957c5c19db507004d74%40%3Cdev.tomcat.apache.org%3E

reference_url

https://lists.apache.org/thread.html/r3aacc40356defc3f248aa504b1e48e819dd0471a0a83349080c6bcbf@%3Cdev.tomcat.apache.org%3E

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/r3aacc40356defc3f248aa504b1e48e819dd0471a0a83349080c6bcbf@%3Cdev.tomcat.apache.org%3E

reference_url

https://lists.apache.org/thread.html/r3aacc40356defc3f248aa504b1e48e819dd0471a0a83349080c6bcbf%40%3Cdev.tomcat.apache.org%3E

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/r3aacc40356defc3f248aa504b1e48e819dd0471a0a83349080c6bcbf%40%3Cdev.tomcat.apache.org%3E

reference_url

https://lists.apache.org/thread.html/r584a714f141eff7b1c358d4679288177bd4ca4558e9999d15867d4b5@%3Cdev.tomcat.apache.org%3E

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/r584a714f141eff7b1c358d4679288177bd4ca4558e9999d15867d4b5@%3Cdev.tomcat.apache.org%3E

reference_url

https://lists.apache.org/thread.html/r584a714f141eff7b1c358d4679288177bd4ca4558e9999d15867d4b5%40%3Cdev.tomcat.apache.org%3E

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/r584a714f141eff7b1c358d4679288177bd4ca4558e9999d15867d4b5%40%3Cdev.tomcat.apache.org%3E

reference_url

https://lists.apache.org/thread.html/rb71997f506c6cc8b530dd845c084995a9878098846c7b4eacfae8db3@%3Cdev.tomcat.apache.org%3E

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/rb71997f506c6cc8b530dd845c084995a9878098846c7b4eacfae8db3@%3Cdev.tomcat.apache.org%3E

reference_url

https://lists.apache.org/thread.html/rb71997f506c6cc8b530dd845c084995a9878098846c7b4eacfae8db3%40%3Cdev.tomcat.apache.org%3E

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/rb71997f506c6cc8b530dd845c084995a9878098846c7b4eacfae8db3%40%3Cdev.tomcat.apache.org%3E

reference_url

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11177

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11177

reference_url

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

reference_url

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://www.redhat.com/archives/fedora-package-announce/2008-February/msg00315.html

reference_url

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://www.redhat.com/archives/fedora-package-announce/2008-February/msg00315.html

reference_url

https://www.redhat.com/archives/fedora-package-announce/2008-February/msg00460.html

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://www.redhat.com/archives/fedora-package-announce/2008-February/msg00460.html

reference_url

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

reference_url

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

reference_url

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://www-01.ibm.com/support/docview.wss?uid=swg24018932

reference_url

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://www-01.ibm.com/support/docview.wss?uid=swg24018932

reference_url

http://www-01.ibm.com/support/docview.wss?uid=swg27012047

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://www-01.ibm.com/support/docview.wss?uid=swg27012047

reference_url

http://www-01.ibm.com/support/docview.wss?uid=swg27012048

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://www-01.ibm.com/support/docview.wss?uid=swg27012048

reference_url

http://www-1.ibm.com/support/docview.wss?uid=swg1IZ20133

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://www-1.ibm.com/support/docview.wss?uid=swg1IZ20133

reference_url

http://www-1.ibm.com/support/docview.wss?uid=swg1IZ20991

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://www-1.ibm.com/support/docview.wss?uid=swg1IZ20991

reference_url

http://www.mandriva.com/security/advisories?name=MDVSA-2009:018

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://www.mandriva.com/security/advisories?name=MDVSA-2009:018

reference_url

http://www.mandriva.com/security/advisories?name=MDVSA-2010:176

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://www.mandriva.com/security/advisories?name=MDVSA-2010:176

reference_url

http://www.redhat.com/docs/en-US/JBoss_Enterprise_Application_Platform/4.2.0.cp08/html-single/Release_Notes/index.html

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://www.redhat.com/docs/en-US/JBoss_Enterprise_Application_Platform/4.2.0.cp08/html-single/Release_Notes/index.html

reference_url

http://www.securityfocus.com/archive/1/487822/100/0/threaded

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://www.securityfocus.com/archive/1/487822/100/0/threaded

reference_url

http://www.securityfocus.com/archive/1/507985/100/0/threaded

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://www.securityfocus.com/archive/1/507985/100/0/threaded

reference_url

http://www.securityfocus.com/bid/27706

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://www.securityfocus.com/bid/27706

reference_url

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://www.vmware.com/security/advisories/VMSA-2008-0010.html

reference_url

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://www.vmware.com/security/advisories/VMSA-2008-0010.html

reference_url

http://www.vmware.com/security/advisories/VMSA-2009-0016.html

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://www.vmware.com/security/advisories/VMSA-2009-0016.html

reference_url

http://www.vupen.com/english/advisories/2008/0488

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://www.vupen.com/english/advisories/2008/0488

reference_url

http://www.vupen.com/english/advisories/2008/1856/references

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://www.vupen.com/english/advisories/2008/1856/references

reference_url

http://www.vupen.com/english/advisories/2008/1981/references

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://www.vupen.com/english/advisories/2008/1981/references

reference_url

http://www.vupen.com/english/advisories/2008/2690

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://www.vupen.com/english/advisories/2008/2690

reference_url

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

reference_url

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url