Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:apache/tomcat@3.2.3
Typeapache
Namespace
Nametomcat
Version3.2.3
Qualifiers
Subpath
Is_vulnerabletrue
Next_non_vulnerable_version4.1.3
Latest_non_vulnerable_version11.0.21
Affected_by_vulnerabilities
0
url VCID-56a7-wfbu-7be8
vulnerability_id VCID-56a7-wfbu-7be8
summary Unknown vulnerability in Tomcat 3.2.1 running on HP Secure OS for Linux 1.0 allows attackers to access servlet resources. NOTE: due to the vagueness of the vendor advisory, it is not clear whether this issue is already covered by other CVE identifiers.
references
0
reference_url http://archives.neohapsis.com/archives/hp/2001-q4/0062.html
reference_id
reference_type
scores
url http://archives.neohapsis.com/archives/hp/2001-q4/0062.html
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2001-1563
reference_id
reference_type
scores
0
value 0.0498
scoring_system epss
scoring_elements 0.89703
published_at 2026-04-21T12:55:00Z
1
value 0.0498
scoring_system epss
scoring_elements 0.89707
published_at 2026-04-16T12:55:00Z
2
value 0.0498
scoring_system epss
scoring_elements 0.89709
published_at 2026-04-18T12:55:00Z
3
value 0.0498
scoring_system epss
scoring_elements 0.8965
published_at 2026-04-01T12:55:00Z
4
value 0.0498
scoring_system epss
scoring_elements 0.89653
published_at 2026-04-02T12:55:00Z
5
value 0.0498
scoring_system epss
scoring_elements 0.89668
published_at 2026-04-04T12:55:00Z
6
value 0.0498
scoring_system epss
scoring_elements 0.8967
published_at 2026-04-07T12:55:00Z
7
value 0.0498
scoring_system epss
scoring_elements 0.89687
published_at 2026-04-08T12:55:00Z
8
value 0.0498
scoring_system epss
scoring_elements 0.89693
published_at 2026-04-09T12:55:00Z
9
value 0.0498
scoring_system epss
scoring_elements 0.897
published_at 2026-04-11T12:55:00Z
10
value 0.0498
scoring_system epss
scoring_elements 0.89698
published_at 2026-04-12T12:55:00Z
11
value 0.0498
scoring_system epss
scoring_elements 0.89692
published_at 2026-04-13T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2001-1563
2
reference_url https://exchange.xforce.ibmcloud.com/vulnerabilities/42892
reference_id
reference_type
scores
url https://exchange.xforce.ibmcloud.com/vulnerabilities/42892
3
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:3.2.1:*:*:*:*:*:*:*
reference_id cpe:2.3:a:apache:tomcat:3.2.1:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:3.2.1:*:*:*:*:*:*:*
4
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:hp:secure_os:1.0:*:linux:*:*:*:*:*
reference_id cpe:2.3:o:hp:secure_os:1.0:*:linux:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:hp:secure_os:1.0:*:linux:*:*:*:*:*
5
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2001-1563
reference_id CVE-2001-1563
reference_type
scores
0
value Moderate
scoring_system apache_tomcat
scoring_elements
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2001-1563
6
reference_url https://nvd.nist.gov/vuln/detail/CVE-2001-1563
reference_id CVE-2001-1563
reference_type
scores
0
value 7.5
scoring_system cvssv2
scoring_elements AV:N/AC:L/Au:N/C:P/I:P/A:P
url https://nvd.nist.gov/vuln/detail/CVE-2001-1563
fixed_packages
0
url pkg:apache/tomcat@3.2.4
purl pkg:apache/tomcat@3.2.4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2fb2-r763-ybg5
1
vulnerability VCID-6ss8-442a-3baf
2
vulnerability VCID-6yk2-f8d5-cyc3
3
vulnerability VCID-9rpn-zb26-yfdk
4
vulnerability VCID-edmc-muvz-5ufu
5
vulnerability VCID-rybd-nsf5-j7fr
6
vulnerability VCID-shq7-jxup-5fgk
7
vulnerability VCID-x6zh-jypa-pbcc
resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@3.2.4
aliases CVE-2001-1563
risk_score 3.4
exploitability 0.5
weighted_severity 6.8
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-56a7-wfbu-7be8
1
url VCID-rybd-nsf5-j7fr
vulnerability_id VCID-rybd-nsf5-j7fr
summary The default installations of Apache Tomcat 3.2.3 and 3.2.4 allows remote attackers to obtain sensitive system information such as directory listings and web root path, via erroneous HTTP requests for Java Server Pages (JSP) in the (1) test/jsp, (2) samples/jsp and (3) examples/jsp directories, or the (4) test/realPath.jsp servlet, which leaks pathnames in error messages.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2002-2007
reference_id
reference_type
scores
0
value 0.22609
scoring_system epss
scoring_elements 0.9587
published_at 2026-04-21T12:55:00Z
1
value 0.22609
scoring_system epss
scoring_elements 0.95815
published_at 2026-04-01T12:55:00Z
2
value 0.22609
scoring_system epss
scoring_elements 0.95823
published_at 2026-04-02T12:55:00Z
3
value 0.22609
scoring_system epss
scoring_elements 0.95832
published_at 2026-04-04T12:55:00Z
4
value 0.22609
scoring_system epss
scoring_elements 0.95834
published_at 2026-04-07T12:55:00Z
5
value 0.22609
scoring_system epss
scoring_elements 0.95843
published_at 2026-04-08T12:55:00Z
6
value 0.22609
scoring_system epss
scoring_elements 0.95846
published_at 2026-04-09T12:55:00Z
7
value 0.22609
scoring_system epss
scoring_elements 0.95849
published_at 2026-04-12T12:55:00Z
8
value 0.22609
scoring_system epss
scoring_elements 0.95851
published_at 2026-04-13T12:55:00Z
9
value 0.22609
scoring_system epss
scoring_elements 0.95862
published_at 2026-04-16T12:55:00Z
10
value 0.22609
scoring_system epss
scoring_elements 0.95868
published_at 2026-04-18T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2002-2007
1
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-2007
reference_id CVE-2002-2007
reference_type
scores
0
value Moderate
scoring_system apache_tomcat
scoring_elements
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-2007
2
reference_url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/remote/21490.txt
reference_id CVE-2002-2007;OSVDB-13304
reference_type exploit
scores
url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/remote/21490.txt
3
reference_url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/remote/21491.txt
reference_id CVE-2002-2007;OSVDB-13304
reference_type exploit
scores
url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/remote/21491.txt
4
reference_url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/remote/21492.txt
reference_id CVE-2002-2007;OSVDB-13304
reference_type exploit
scores
url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/remote/21492.txt
5
reference_url https://www.securityfocus.com/bid/4876/info
reference_id CVE-2002-2007;OSVDB-13304
reference_type exploit
scores
url https://www.securityfocus.com/bid/4876/info
6
reference_url https://www.securityfocus.com/bid/4877/info
reference_id CVE-2002-2007;OSVDB-13304
reference_type exploit
scores
url https://www.securityfocus.com/bid/4877/info
7
reference_url https://www.securityfocus.com/bid/4878/info
reference_id CVE-2002-2007;OSVDB-13304
reference_type exploit
scores
url https://www.securityfocus.com/bid/4878/info
fixed_packages
0
url pkg:apache/tomcat@3.3.0-a
purl pkg:apache/tomcat@3.3.0-a
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-6ss8-442a-3baf
1
vulnerability VCID-6yk2-f8d5-cyc3
2
vulnerability VCID-9rpn-zb26-yfdk
3
vulnerability VCID-shq7-jxup-5fgk
4
vulnerability VCID-x6zh-jypa-pbcc
resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@3.3.0-a
aliases CVE-2002-2007
risk_score 10.0
exploitability 2.0
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-rybd-nsf5-j7fr
Fixing_vulnerabilities
Risk_score10.0
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:apache/tomcat@3.2.3