Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:maven/org.apache.tomcat/tomcat@10.1.0-M1

Type maven

Namespace org.apache.tomcat

Name tomcat

Version 10.1.0-M1

Qualifiers

Subpath

Is_vulnerable true

Next_non_vulnerable_version 10.1.0-M6

Latest_non_vulnerable_version 11.0.22

Affected_by_vulnerabilities

url VCID-1maq-ar71-p3ha

vulnerability_id VCID-1maq-ar71-p3ha

summary

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2024-34750

reference_id

reference_type

scores

value	0.2198
scoring_system	epss
scoring_elements	0.95872
published_at	2026-05-30T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2024-34750

reference_url	https://github.com/apache/tomcat/commit/2344a4c0d03e307ba6b8ab6dc8b894cc8bac63f2
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/2344a4c0d03e307ba6b8ab6dc8b894cc8bac63f2

reference_url	https://github.com/apache/tomcat/commit/2afae300c9ac9c0e516e2e9de580847d925365c3
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/2afae300c9ac9c0e516e2e9de580847d925365c3

reference_url	https://github.com/apache/tomcat/commit/9fec9a82887853402833a80b584e3762c7423f5f
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/9fec9a82887853402833a80b584e3762c7423f5f

reference_url	https://lists.apache.org/thread/4kqf0bc9gxymjc2x7v3p7dvplnl77y8l
reference_id
reference_type
scores
url	https://lists.apache.org/thread/4kqf0bc9gxymjc2x7v3p7dvplnl77y8l

reference_url	https://lists.debian.org/debian-lts-announce/2025/07/msg00009.html
reference_id
reference_type
scores
url	https://lists.debian.org/debian-lts-announce/2025/07/msg00009.html

reference_url	https://security.netapp.com/advisory/ntap-20240816-0004
reference_id
reference_type
scores
url	https://security.netapp.com/advisory/ntap-20240816-0004

reference_url	https://tomcat.apache.org/security-10.html
reference_id
reference_type
scores
url	https://tomcat.apache.org/security-10.html

reference_url	https://tomcat.apache.org/security-11.html
reference_id
reference_type
scores
url	https://tomcat.apache.org/security-11.html

reference_url	https://tomcat.apache.org/security-9.html
reference_id
reference_type
scores
url	https://tomcat.apache.org/security-9.html

reference_url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-34750

reference_id

CVE-2024-34750

reference_type

scores

value	Important
scoring_system	apache_tomcat
scoring_elements

url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-34750

reference_url	https://nvd.nist.gov/vuln/detail/CVE-2024-34750
reference_id	CVE-2024-34750
reference_type
scores
url	https://nvd.nist.gov/vuln/detail/CVE-2024-34750

reference_url

https://github.com/advisories/GHSA-wm9w-rjj3-j356

reference_id

GHSA-wm9w-rjj3-j356

reference_type

scores

value	HIGH
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-wm9w-rjj3-j356

fixed_packages

url	pkg:maven/org.apache.tomcat/tomcat@10.1.25
purl	pkg:maven/org.apache.tomcat/tomcat@10.1.25
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@10.1.25

url	pkg:maven/org.apache.tomcat/tomcat@11.0.0-M21
purl	pkg:maven/org.apache.tomcat/tomcat@11.0.0-M21
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@11.0.0-M21

aliases CVE-2024-34750, GHSA-wm9w-rjj3-j356

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-1maq-ar71-p3ha

url VCID-1mms-9rqw-xqhq

vulnerability_id VCID-1mms-9rqw-xqhq

summary

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2026-34483

reference_id

reference_type

scores

value	0.00091
scoring_system	epss
scoring_elements	0.25733
published_at	2026-05-30T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2026-34483

reference_url	https://github.com/apache/tomcat/commit/97566842589d0b80de138ca719378861fd017d68
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/97566842589d0b80de138ca719378861fd017d68

reference_url	https://github.com/apache/tomcat/commit/f22dc2ce6cfda8609ed86816c0d78e1a9cbadb06
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/f22dc2ce6cfda8609ed86816c0d78e1a9cbadb06

reference_url	https://github.com/apache/tomcat/commit/f9ddc24fcfcdfaea4a6953198d8636aca3e957bc
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/f9ddc24fcfcdfaea4a6953198d8636aca3e957bc

reference_url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-34483

reference_id

CVE-2026-34483

reference_type

scores

value	Low
scoring_system	apache_tomcat
scoring_elements

url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-34483

fixed_packages

url pkg:maven/org.apache.tomcat/tomcat@10.1.54

purl pkg:maven/org.apache.tomcat/tomcat@10.1.54

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4qzp-up1c-2kfq

vulnerability	VCID-5j78-np3z-rfda

vulnerability	VCID-9ptv-guzs-kyg1

vulnerability	VCID-c8b5-23zz-cudd

vulnerability	VCID-dk5d-3ebq-yfbn

vulnerability	VCID-kxvn-6xbg-4fep

vulnerability	VCID-pmx1-hkph-4qhd

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@10.1.54

url pkg:maven/org.apache.tomcat/tomcat@11.0.21

purl pkg:maven/org.apache.tomcat/tomcat@11.0.21

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4qzp-up1c-2kfq

vulnerability	VCID-5j78-np3z-rfda

vulnerability	VCID-9ptv-guzs-kyg1

vulnerability	VCID-c8b5-23zz-cudd

vulnerability	VCID-dk5d-3ebq-yfbn

vulnerability	VCID-kxvn-6xbg-4fep

vulnerability	VCID-pmx1-hkph-4qhd

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@11.0.21

aliases CVE-2026-34483

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-1mms-9rqw-xqhq

url VCID-2kta-z43d-2uhm

vulnerability_id VCID-2kta-z43d-2uhm

summary

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2021-43980

reference_id

reference_type

scores

value	0.00203
scoring_system	epss
scoring_elements	0.4225
published_at	2026-05-30T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2021-43980

reference_url	https://github.com/apache/tomcat/commit/170e0f792bd18ff031677890ba2fe50eb7a376c1
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/170e0f792bd18ff031677890ba2fe50eb7a376c1

reference_url	https://github.com/apache/tomcat/commit/17f177eeb7df5938f67ef9ea580411b120195f13
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/17f177eeb7df5938f67ef9ea580411b120195f13

reference_url	https://github.com/apache/tomcat/commit/4a00b0c0890538b9d3107eef8f2e0afadd119beb
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/4a00b0c0890538b9d3107eef8f2e0afadd119beb

reference_url	https://github.com/apache/tomcat/commit/9651b83a1d04583791525e5f0c4c9089f678d9fc
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/9651b83a1d04583791525e5f0c4c9089f678d9fc

reference_url	https://lists.apache.org/thread/3jjqbsp6j88b198x5rmg99b1qr8ht3g3
reference_id
reference_type
scores
url	https://lists.apache.org/thread/3jjqbsp6j88b198x5rmg99b1qr8ht3g3

reference_url	https://lists.debian.org/debian-lts-announce/2022/10/msg00029.html
reference_id
reference_type
scores
url	https://lists.debian.org/debian-lts-announce/2022/10/msg00029.html

reference_url	https://tomcat.apache.org/security-10.html
reference_id
reference_type
scores
url	https://tomcat.apache.org/security-10.html

reference_url	https://tomcat.apache.org/security-8.html
reference_id
reference_type
scores
url	https://tomcat.apache.org/security-8.html

reference_url	https://tomcat.apache.org/security-9.html
reference_id
reference_type
scores
url	https://tomcat.apache.org/security-9.html

reference_url	https://www.debian.org/security/2022/dsa-5265
reference_id
reference_type
scores
url	https://www.debian.org/security/2022/dsa-5265

reference_url	http://www.openwall.com/lists/oss-security/2022/09/28/1
reference_id
reference_type
scores
url	http://www.openwall.com/lists/oss-security/2022/09/28/1

reference_url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43980

reference_id

CVE-2021-43980

reference_type

scores

value	High
scoring_system	apache_tomcat
scoring_elements

url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43980

reference_url	https://nvd.nist.gov/vuln/detail/CVE-2021-43980
reference_id	CVE-2021-43980
reference_type
scores
url	https://nvd.nist.gov/vuln/detail/CVE-2021-43980

reference_url

https://github.com/advisories/GHSA-jx7c-7mj5-9438

reference_id

GHSA-jx7c-7mj5-9438

reference_type

scores

value	LOW
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-jx7c-7mj5-9438

fixed_packages

url pkg:maven/org.apache.tomcat/tomcat@10.1.0-M14

purl pkg:maven/org.apache.tomcat/tomcat@10.1.0-M14

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4pgx-mk91-xyba

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@10.1.0-M14

aliases CVE-2021-43980, GHSA-jx7c-7mj5-9438

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-2kta-z43d-2uhm

url VCID-35fm-apgj-jqd3

vulnerability_id VCID-35fm-apgj-jqd3

summary

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2023-42795

reference_id

reference_type

scores

value	0.00712
scoring_system	epss
scoring_elements	0.72593
published_at	2026-05-30T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2023-42795

reference_url	https://github.com/apache/tomcat
reference_id
reference_type
scores
url	https://github.com/apache/tomcat

reference_url	https://github.com/apache/tomcat/commit/30f8063d7a9b4c43ae4722f5e382a76af1d7a6bf
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/30f8063d7a9b4c43ae4722f5e382a76af1d7a6bf

reference_url	https://github.com/apache/tomcat/commit/44d05d75d696ca10ce251e4e370511e38f20ae75
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/44d05d75d696ca10ce251e4e370511e38f20ae75

reference_url	https://github.com/apache/tomcat/commit/9375d67106f8df9eb9d7b360b2bef052fe67d3d4
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/9375d67106f8df9eb9d7b360b2bef052fe67d3d4

reference_url	https://github.com/apache/tomcat/commit/d6db22e411307c97ddf78315c15d5889356eca38
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/d6db22e411307c97ddf78315c15d5889356eca38

reference_url	https://lists.apache.org/thread/065jfyo583490r9j2v73nhpyxdob56lw
reference_id
reference_type
scores
url	https://lists.apache.org/thread/065jfyo583490r9j2v73nhpyxdob56lw

reference_url	https://lists.debian.org/debian-lts-announce/2023/10/msg00020.html
reference_id
reference_type
scores
url	https://lists.debian.org/debian-lts-announce/2023/10/msg00020.html

reference_url	https://security.netapp.com/advisory/ntap-20231103-0007
reference_id
reference_type
scores
url	https://security.netapp.com/advisory/ntap-20231103-0007

reference_url	https://www.debian.org/security/2023/dsa-5521
reference_id
reference_type
scores
url	https://www.debian.org/security/2023/dsa-5521

reference_url	https://www.debian.org/security/2023/dsa-5522
reference_id
reference_type
scores
url	https://www.debian.org/security/2023/dsa-5522

reference_url	http://www.openwall.com/lists/oss-security/2023/10/10/9
reference_id
reference_type
scores
url	http://www.openwall.com/lists/oss-security/2023/10/10/9

reference_url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-42795

reference_id

CVE-2023-42795

reference_type

scores

value	Important
scoring_system	apache_tomcat
scoring_elements

url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-42795

reference_url	https://nvd.nist.gov/vuln/detail/CVE-2023-42795
reference_id	CVE-2023-42795
reference_type
scores
url	https://nvd.nist.gov/vuln/detail/CVE-2023-42795

reference_url	https://github.com/advisories/GHSA-g8pj-r55q-5c2v
reference_id	GHSA-g8pj-r55q-5c2v
reference_type
scores
url	https://github.com/advisories/GHSA-g8pj-r55q-5c2v

fixed_packages

url	pkg:maven/org.apache.tomcat/tomcat@10.1.14
purl	pkg:maven/org.apache.tomcat/tomcat@10.1.14
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@10.1.14

url	pkg:maven/org.apache.tomcat/tomcat@11.0.0-M12
purl	pkg:maven/org.apache.tomcat/tomcat@11.0.0-M12
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@11.0.0-M12

aliases CVE-2023-42795, GHSA-g8pj-r55q-5c2v

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-35fm-apgj-jqd3

url VCID-4pgx-mk91-xyba

vulnerability_id VCID-4pgx-mk91-xyba

summary

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2022-29885

reference_id

reference_type

scores

value	0.55532
scoring_system	epss
scoring_elements	0.98117
published_at	2026-05-30T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2022-29885

reference_url	https://github.com/apache/tomcat/commit/0fa7721f11d565a2cd2e44366c388ad6a3e6357d
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/0fa7721f11d565a2cd2e44366c388ad6a3e6357d

reference_url	https://github.com/apache/tomcat/commit/36826ea638457d7e17876a70f89cb435b6db0d91
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/36826ea638457d7e17876a70f89cb435b6db0d91

reference_url	https://github.com/apache/tomcat/commit/b679bc627f5a4ea6510af95adfb7476b07eba890
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/b679bc627f5a4ea6510af95adfb7476b07eba890

reference_url	https://github.com/apache/tomcat/commit/eaafd28296c54d983e28a47953c1f5cb2c334f48
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/eaafd28296c54d983e28a47953c1f5cb2c334f48

reference_url	https://lists.apache.org/thread/2b4qmhbcyqvc7dyfpjyx54c03x65vhcv
reference_id
reference_type
scores
url	https://lists.apache.org/thread/2b4qmhbcyqvc7dyfpjyx54c03x65vhcv

reference_url	https://lists.debian.org/debian-lts-announce/2022/10/msg00029.html
reference_id
reference_type
scores
url	https://lists.debian.org/debian-lts-announce/2022/10/msg00029.html

reference_url	https://security.netapp.com/advisory/ntap-20220629-0002
reference_id
reference_type
scores
url	https://security.netapp.com/advisory/ntap-20220629-0002

reference_url	https://www.debian.org/security/2022/dsa-5265
reference_id
reference_type
scores
url	https://www.debian.org/security/2022/dsa-5265

reference_url	https://www.oracle.com/security-alerts/cpujul2022.html
reference_id
reference_type
scores
url	https://www.oracle.com/security-alerts/cpujul2022.html

reference_url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-29885

reference_id

CVE-2022-29885

reference_type

scores

value	Low
scoring_system	apache_tomcat
scoring_elements

url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-29885

reference_url	https://nvd.nist.gov/vuln/detail/CVE-2022-29885
reference_id	CVE-2022-29885
reference_type
scores
url	https://nvd.nist.gov/vuln/detail/CVE-2022-29885

reference_url

https://github.com/advisories/GHSA-r84p-88g2-2vx2

reference_id

GHSA-r84p-88g2-2vx2

reference_type

scores

value	HIGH
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-r84p-88g2-2vx2

fixed_packages

url	pkg:maven/org.apache.tomcat/tomcat@10.1.0-M15
purl	pkg:maven/org.apache.tomcat/tomcat@10.1.0-M15
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@10.1.0-M15

url pkg:maven/org.apache.tomcat/tomcat@10.1.1

purl pkg:maven/org.apache.tomcat/tomcat@10.1.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-a8x5-hzkb-vuf4

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@10.1.1

aliases CVE-2022-29885, GHSA-r84p-88g2-2vx2

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-4pgx-mk91-xyba

url VCID-4qzp-up1c-2kfq

vulnerability_id VCID-4qzp-up1c-2kfq

summary

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2026-42498

reference_id

reference_type

scores

value	0.0005
scoring_system	epss
scoring_elements	0.15903
published_at	2026-05-30T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2026-42498

reference_url	https://github.com/apache/tomcat/commit/169d725788ea6aec217ecac70fe4161c837ba423
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/169d725788ea6aec217ecac70fe4161c837ba423

reference_url	https://github.com/apache/tomcat/commit/6cbe274592ef2d11607b5b188e1df649de52f8d5
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/6cbe274592ef2d11607b5b188e1df649de52f8d5

reference_url	https://github.com/apache/tomcat/commit/b7b173694d588ddcfa432f079baf763cbbbaa5c4
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/b7b173694d588ddcfa432f079baf763cbbbaa5c4

reference_url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-42498

reference_id

CVE-2026-42498

reference_type

scores

value	Low
scoring_system	apache_tomcat
scoring_elements

url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-42498

fixed_packages

url	pkg:maven/org.apache.tomcat/tomcat@10.1.55
purl	pkg:maven/org.apache.tomcat/tomcat@10.1.55
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@10.1.55

url	pkg:maven/org.apache.tomcat/tomcat@11.0.22
purl	pkg:maven/org.apache.tomcat/tomcat@11.0.22
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@11.0.22

aliases CVE-2026-42498

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-4qzp-up1c-2kfq

url VCID-5fj8-g5jf-wybu

vulnerability_id VCID-5fj8-g5jf-wybu

summary denial of service

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2021-42340

reference_id

reference_type

scores

value	0.04282
scoring_system	epss
scoring_elements	0.89025
published_at	2026-05-30T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2021-42340

reference_url	https://github.com/apache/tomcat/commit/31d62426645824bdfe076a0c0eafa904d90b4fb9
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/31d62426645824bdfe076a0c0eafa904d90b4fb9

reference_url	https://github.com/apache/tomcat/commit/80f1438ec45e77a07b96419808971838d259eb47
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/80f1438ec45e77a07b96419808971838d259eb47

reference_url	https://github.com/apache/tomcat/commit/d27535bdee95d252418201eb21e9d29476aa6b6a
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/d27535bdee95d252418201eb21e9d29476aa6b6a

reference_url	https://github.com/apache/tomcat/commit/d5a6660cba7f51589468937bf3bbad4db7810371
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/d5a6660cba7f51589468937bf3bbad4db7810371

reference_url

https://security.archlinux.org/AVG-2469

reference_id

AVG-2469

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-2469

reference_url

https://security.archlinux.org/AVG-2470

reference_id

AVG-2470

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-2470

reference_url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-42340

reference_id

CVE-2021-42340

reference_type

scores

value	Important
scoring_system	apache_tomcat
scoring_elements

url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-42340

reference_url	https://nvd.nist.gov/vuln/detail/CVE-2021-42340
reference_id	CVE-2021-42340
reference_type
scores
url	https://nvd.nist.gov/vuln/detail/CVE-2021-42340

fixed_packages

url	pkg:maven/org.apache.tomcat/tomcat@10.1.0-M6
purl	pkg:maven/org.apache.tomcat/tomcat@10.1.0-M6
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@10.1.0-M6

aliases CVE-2021-42340

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-5fj8-g5jf-wybu

url VCID-5j78-np3z-rfda

vulnerability_id VCID-5j78-np3z-rfda

summary

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2026-43512

reference_id

reference_type

scores

value	0.00139
scoring_system	epss
scoring_elements	0.33629
published_at	2026-05-30T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2026-43512

reference_url	https://github.com/apache/tomcat/commit/3d4d3fae07a6cd9c2eb193c5491001740ec64448
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/3d4d3fae07a6cd9c2eb193c5491001740ec64448

reference_url	https://github.com/apache/tomcat/commit/6565a6cb6499e56fe2f34457cec99f9d1c4f39e9
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/6565a6cb6499e56fe2f34457cec99f9d1c4f39e9

reference_url	https://github.com/apache/tomcat/commit/a99c355e8199adbfd67c9a1fffbd85b810b196cd
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/a99c355e8199adbfd67c9a1fffbd85b810b196cd

reference_url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-43512

reference_id

CVE-2026-43512

reference_type

scores

value	Moderate
scoring_system	apache_tomcat
scoring_elements

url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-43512

fixed_packages

url	pkg:maven/org.apache.tomcat/tomcat@10.1.55
purl	pkg:maven/org.apache.tomcat/tomcat@10.1.55
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@10.1.55

url	pkg:maven/org.apache.tomcat/tomcat@11.0.22
purl	pkg:maven/org.apache.tomcat/tomcat@11.0.22
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@11.0.22

aliases CVE-2026-43512

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-5j78-np3z-rfda

url VCID-61p6-f9vu-7fca

vulnerability_id VCID-61p6-f9vu-7fca

summary

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2025-48989

reference_id

reference_type

scores

value	0.01022
scoring_system	epss
scoring_elements	0.77545
published_at	2026-05-30T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2025-48989

reference_url	https://github.com/apache/tomcat/commit/73c04a10395774bda71a0b37802cf983662ce255
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/73c04a10395774bda71a0b37802cf983662ce255

reference_url	https://github.com/apache/tomcat/commit/f362c8eb3b8ec5b7f312f7f5610731c0fb299a06
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/f362c8eb3b8ec5b7f312f7f5610731c0fb299a06

reference_url	https://github.com/apache/tomcat/commit/f36b8a4eea4ce8a0bc035079e1d259d29f5eb7bf
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/f36b8a4eea4ce8a0bc035079e1d259d29f5eb7bf

reference_url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-48989

reference_id

CVE-2025-48989

reference_type

scores

value	Important
scoring_system	apache_tomcat
scoring_elements

url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-48989

fixed_packages

url pkg:maven/org.apache.tomcat/tomcat@10.1.44

purl pkg:maven/org.apache.tomcat/tomcat@10.1.44

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6t1m-v4ym-4uhs

vulnerability	VCID-h11m-szkg-p7c5

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@10.1.44

url pkg:maven/org.apache.tomcat/tomcat@11.0.10

purl pkg:maven/org.apache.tomcat/tomcat@11.0.10

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6t1m-v4ym-4uhs

vulnerability	VCID-h11m-szkg-p7c5

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@11.0.10

aliases CVE-2025-48989

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-61p6-f9vu-7fca

url VCID-61xw-8vnm-vkcx

vulnerability_id VCID-61xw-8vnm-vkcx

summary

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2024-54677

reference_id

reference_type

scores

value	0.01228
scoring_system	epss
scoring_elements	0.79465
published_at	2026-05-30T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2024-54677

reference_url	https://github.com/apache/tomcat/commit/1d88dd3ffaed76188dd4ee32ce77709ce6e153cd
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/1d88dd3ffaed76188dd4ee32ce77709ce6e153cd

reference_url	https://github.com/apache/tomcat/commit/3315a9027a7eaab18f42625b97b569940ff1365d
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/3315a9027a7eaab18f42625b97b569940ff1365d

reference_url	https://github.com/apache/tomcat/commit/4a335c6dcba8d6f8a54629eda392a50da267bdf4
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/4a335c6dcba8d6f8a54629eda392a50da267bdf4

reference_url	https://github.com/apache/tomcat/commit/4d5cc6538d91386f950373ac8120e98c2c78ed3a
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/4d5cc6538d91386f950373ac8120e98c2c78ed3a

reference_url	https://github.com/apache/tomcat/commit/4f0236606961176257b883213e1621b1859ed746
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/4f0236606961176257b883213e1621b1859ed746

reference_url	https://github.com/apache/tomcat/commit/54e56495e9a106218efe9fc9c79d976c0032bbfd
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/54e56495e9a106218efe9fc9c79d976c0032bbfd

reference_url	https://github.com/apache/tomcat/commit/721544ea28e92549824b106be954a9f411867a1c
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/721544ea28e92549824b106be954a9f411867a1c

reference_url	https://github.com/apache/tomcat/commit/722814668708c42a61b0c1e340b15bc2b785c0d1
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/722814668708c42a61b0c1e340b15bc2b785c0d1

reference_url	https://github.com/apache/tomcat/commit/75ff7e8622edcc024b268677aa789ee8f0880ecc
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/75ff7e8622edcc024b268677aa789ee8f0880ecc

reference_url	https://github.com/apache/tomcat/commit/84065e26ca4555e63a922bb29b13b0a1c86b7654
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/84065e26ca4555e63a922bb29b13b0a1c86b7654

reference_url	https://github.com/apache/tomcat/commit/84c4af76e7a10fc7f8630ce62e6a46632ea4a90e
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/84c4af76e7a10fc7f8630ce62e6a46632ea4a90e

reference_url	https://github.com/apache/tomcat/commit/9ffd23fc27f5d1fc95bf97e5cea175c8968f4533
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/9ffd23fc27f5d1fc95bf97e5cea175c8968f4533

reference_url	https://github.com/apache/tomcat/commit/a95bf2b0303442a2c9a1ac364b0e63b56049e33a
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/a95bf2b0303442a2c9a1ac364b0e63b56049e33a

reference_url	https://github.com/apache/tomcat/commit/aa5b4d0043289cf054f531ec55126c980d3572e1
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/aa5b4d0043289cf054f531ec55126c980d3572e1

reference_url	https://github.com/apache/tomcat/commit/b1f65728b37d7d227a0764344473b7e261a13408
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/b1f65728b37d7d227a0764344473b7e261a13408

reference_url	https://github.com/apache/tomcat/commit/bbd82e9593314ade4cfd57248f9285fbad686f66
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/bbd82e9593314ade4cfd57248f9285fbad686f66

reference_url	https://github.com/apache/tomcat/commit/c0a23927ea5e061ca3fdff695138464179fe674a
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/c0a23927ea5e061ca3fdff695138464179fe674a

reference_url	https://github.com/apache/tomcat/commit/c2f7ce21c3fb12caefee87c517a8bb4f80700044
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/c2f7ce21c3fb12caefee87c517a8bb4f80700044

reference_url	https://github.com/apache/tomcat/commit/cb1707685472994e9d924746f8c91cb116fa5213
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/cb1707685472994e9d924746f8c91cb116fa5213

reference_url	https://github.com/apache/tomcat/commit/d63a10afc142b12f462a15f7d10f79fd80ff94eb
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/d63a10afc142b12f462a15f7d10f79fd80ff94eb

reference_url	https://github.com/apache/tomcat/commit/dbec927859d9484cb8bd680a7c67b1a560f48444
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/dbec927859d9484cb8bd680a7c67b1a560f48444

reference_url	https://github.com/apache/tomcat/commit/e8c16cdba833884e1bd49fff1f1cb699da177585
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/e8c16cdba833884e1bd49fff1f1cb699da177585

reference_url	https://github.com/apache/tomcat/commit/f57a9d9847c1038be61f5818d73b8be907c460d4
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/f57a9d9847c1038be61f5818d73b8be907c460d4

reference_url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-54677

reference_id

CVE-2024-54677

reference_type

scores

value	Low
scoring_system	apache_tomcat
scoring_elements

url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-54677

fixed_packages

url pkg:maven/org.apache.tomcat/tomcat@10.1.34

purl pkg:maven/org.apache.tomcat/tomcat@10.1.34

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-kq3c-qp43-dqgg

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@10.1.34

url pkg:maven/org.apache.tomcat/tomcat@11.0.2

purl pkg:maven/org.apache.tomcat/tomcat@11.0.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-kq3c-qp43-dqgg

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@11.0.2

aliases CVE-2024-54677

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-61xw-8vnm-vkcx

url VCID-64r1-zcg6-qfb8

vulnerability_id VCID-64r1-zcg6-qfb8

summary

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2023-28708

reference_id

reference_type

scores

value	0.0011
scoring_system	epss
scoring_elements	0.29009
published_at	2026-05-30T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2023-28708

reference_url	https://bz.apache.org/bugzilla/show_bug.cgi?id=66471
reference_id
reference_type
scores
url	https://bz.apache.org/bugzilla/show_bug.cgi?id=66471

reference_url	https://github.com/apache/tomcat
reference_id
reference_type
scores
url	https://github.com/apache/tomcat

reference_url	https://github.com/apache/tomcat/commit/3b51230764da595bb19e8d0962dd8c69ab40dfab
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/3b51230764da595bb19e8d0962dd8c69ab40dfab

reference_url	https://github.com/apache/tomcat/commit/5b72c94e8b2c4ada63a1d91dc527bf4d8fd1f510
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/5b72c94e8b2c4ada63a1d91dc527bf4d8fd1f510

reference_url	https://github.com/apache/tomcat/commit/c64d496dda1560b5df113be55fbfaefec349b50f
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/c64d496dda1560b5df113be55fbfaefec349b50f

reference_url	https://github.com/apache/tomcat/commit/f509bbf31fc00abe3d9f25ebfabca5e05173da5b
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/f509bbf31fc00abe3d9f25ebfabca5e05173da5b

reference_url	https://lists.apache.org/thread/hdksc59z3s7tm39x0pp33mtwdrt8qr67
reference_id
reference_type
scores
url	https://lists.apache.org/thread/hdksc59z3s7tm39x0pp33mtwdrt8qr67

reference_url	https://security.netapp.com/advisory/ntap-20230331-0012
reference_id
reference_type
scores
url	https://security.netapp.com/advisory/ntap-20230331-0012

reference_url	https://tomcat.apache.org/security-10.html
reference_id
reference_type
scores
url	https://tomcat.apache.org/security-10.html

reference_url	https://tomcat.apache.org/security-11.html
reference_id
reference_type
scores
url	https://tomcat.apache.org/security-11.html

reference_url	https://tomcat.apache.org/security-8.html
reference_id
reference_type
scores
url	https://tomcat.apache.org/security-8.html

reference_url	https://tomcat.apache.org/security-9.html
reference_id
reference_type
scores
url	https://tomcat.apache.org/security-9.html

reference_url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-28708

reference_id

CVE-2023-28708

reference_type

scores

value	Important
scoring_system	apache_tomcat
scoring_elements

url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-28708

reference_url	https://nvd.nist.gov/vuln/detail/CVE-2023-28708
reference_id	CVE-2023-28708
reference_type
scores
url	https://nvd.nist.gov/vuln/detail/CVE-2023-28708

reference_url	https://github.com/advisories/GHSA-2c9m-w27f-53rm
reference_id	GHSA-2c9m-w27f-53rm
reference_type
scores
url	https://github.com/advisories/GHSA-2c9m-w27f-53rm

fixed_packages

url	pkg:maven/org.apache.tomcat/tomcat@10.1.6
purl	pkg:maven/org.apache.tomcat/tomcat@10.1.6
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@10.1.6

url	pkg:maven/org.apache.tomcat/tomcat@11.0.0-M3
purl	pkg:maven/org.apache.tomcat/tomcat@11.0.0-M3
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@11.0.0-M3

aliases CVE-2023-28708, GHSA-2c9m-w27f-53rm

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-64r1-zcg6-qfb8

url VCID-67rb-z7qk-zke9

vulnerability_id VCID-67rb-z7qk-zke9

summary

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2026-24733

reference_id

reference_type

scores

value	0.00163
scoring_system	epss
scoring_elements	0.36946
published_at	2026-05-30T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2026-24733

reference_url	https://github.com/apache/tomcat
reference_id
reference_type
scores
url	https://github.com/apache/tomcat

reference_url	https://github.com/apache/tomcat/commit/2e2fa23f2635bbb819759576a2f2f5e64ecf7c5f
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/2e2fa23f2635bbb819759576a2f2f5e64ecf7c5f

reference_url	https://github.com/apache/tomcat/commit/6c73d74ff281260d74c836370ff6b82f1da8048b
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/6c73d74ff281260d74c836370ff6b82f1da8048b

reference_url	https://github.com/apache/tomcat/commit/711b465cf22684a1acf0cb43501cdbbce9b6c5f4
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/711b465cf22684a1acf0cb43501cdbbce9b6c5f4

reference_url	https://lists.apache.org/thread/6xk3t65qpn1myp618krtfotbjn1qt90f
reference_id
reference_type
scores
url	https://lists.apache.org/thread/6xk3t65qpn1myp618krtfotbjn1qt90f

reference_url	https://tomcat.apache.org/security-10.html
reference_id
reference_type
scores
url	https://tomcat.apache.org/security-10.html

reference_url	https://tomcat.apache.org/security-11.html
reference_id
reference_type
scores
url	https://tomcat.apache.org/security-11.html

reference_url	https://tomcat.apache.org/security-9.html
reference_id
reference_type
scores
url	https://tomcat.apache.org/security-9.html

reference_url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-24733

reference_id

CVE-2026-24733

reference_type

scores

value	Low
scoring_system	apache_tomcat
scoring_elements

url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-24733

reference_url	https://nvd.nist.gov/vuln/detail/CVE-2026-24733
reference_id	CVE-2026-24733
reference_type
scores
url	https://nvd.nist.gov/vuln/detail/CVE-2026-24733

reference_url

https://github.com/advisories/GHSA-qq5r-98hh-rxc9

reference_id

GHSA-qq5r-98hh-rxc9

reference_type

scores

value	LOW
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-qq5r-98hh-rxc9

fixed_packages

url pkg:maven/org.apache.tomcat/tomcat@10.1.50

purl pkg:maven/org.apache.tomcat/tomcat@10.1.50

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-8btx-vpre-pugb

vulnerability	VCID-keyp-7fnn-cbh8

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@10.1.50

url pkg:maven/org.apache.tomcat/tomcat@11.0.15

purl pkg:maven/org.apache.tomcat/tomcat@11.0.15

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-8btx-vpre-pugb

vulnerability	VCID-keyp-7fnn-cbh8

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@11.0.15

aliases CVE-2026-24733, GHSA-qq5r-98hh-rxc9

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-67rb-z7qk-zke9

url VCID-6t1m-v4ym-4uhs

vulnerability_id VCID-6t1m-v4ym-4uhs

summary

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2025-55752

reference_id

reference_type

scores

value	0.00215
scoring_system	epss
scoring_elements	0.43999
published_at	2026-05-30T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2025-55752

reference_url	https://cert-portal.siemens.com/productcert/html/ssa-032379.html
reference_id
reference_type
scores
url	https://cert-portal.siemens.com/productcert/html/ssa-032379.html

reference_url	https://github.com/apache/tomcat/commit/130d36d8492ef9e4eb22952c17c92423cb35fd06
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/130d36d8492ef9e4eb22952c17c92423cb35fd06

reference_url	https://github.com/apache/tomcat/commit/b5042622b8b78340ae65403c55dcb9c7416924df
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/b5042622b8b78340ae65403c55dcb9c7416924df

reference_url	https://github.com/apache/tomcat/commit/fec06c610ed7466b401e29cc567a58aee5ed826a
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/fec06c610ed7466b401e29cc567a58aee5ed826a

reference_url	https://lists.apache.org/thread/n05kjcwyj1s45ovs8ll1qrrojhfb1tog
reference_id
reference_type
scores
url	https://lists.apache.org/thread/n05kjcwyj1s45ovs8ll1qrrojhfb1tog

reference_url	https://tomcat.apache.org/security-10.html#Fixed_in_Apache_Tomcat_10.1.45
reference_id
reference_type
scores
url	https://tomcat.apache.org/security-10.html#Fixed_in_Apache_Tomcat_10.1.45

reference_url	https://tomcat.apache.org/security-11.html#Fixed_in_Apache_Tomcat_11.0.11
reference_id
reference_type
scores
url	https://tomcat.apache.org/security-11.html#Fixed_in_Apache_Tomcat_11.0.11

reference_url	https://tomcat.apache.org/security-9.html#Fixed_in_Apache_Tomcat_9.0.109
reference_id
reference_type
scores
url	https://tomcat.apache.org/security-9.html#Fixed_in_Apache_Tomcat_9.0.109

reference_url	http://www.openwall.com/lists/oss-security/2025/10/27/4
reference_id
reference_type
scores
url	http://www.openwall.com/lists/oss-security/2025/10/27/4

reference_url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-55752

reference_id

CVE-2025-55752

reference_type

scores

value	Important
scoring_system	apache_tomcat
scoring_elements

url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-55752

reference_url	https://nvd.nist.gov/vuln/detail/CVE-2025-55752
reference_id	CVE-2025-55752
reference_type
scores
url	https://nvd.nist.gov/vuln/detail/CVE-2025-55752

reference_url	https://www.vicarius.io/vsociety/posts/cve-2025-55752-detect-apache-tomcat-vulnerability
reference_id	CVE-2025-55752-DETECT-APACHE-TOMCAT-VULNERABILITY
reference_type
scores
url	https://www.vicarius.io/vsociety/posts/cve-2025-55752-detect-apache-tomcat-vulnerability

reference_url	https://www.vicarius.io/vsociety/posts/cve-2025-55752-mitigate-apache-tomcat-vulnerability
reference_id	CVE-2025-55752-MITIGATE-APACHE-TOMCAT-VULNERABILITY
reference_type
scores
url	https://www.vicarius.io/vsociety/posts/cve-2025-55752-mitigate-apache-tomcat-vulnerability

reference_url

https://github.com/advisories/GHSA-wmwf-9ccg-fff5

reference_id

GHSA-wmwf-9ccg-fff5

reference_type

scores

value	HIGH
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-wmwf-9ccg-fff5

fixed_packages

url	pkg:maven/org.apache.tomcat/tomcat@10.1.45
purl	pkg:maven/org.apache.tomcat/tomcat@10.1.45
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@10.1.45

url pkg:maven/org.apache.tomcat/tomcat@11.0.11

purl pkg:maven/org.apache.tomcat/tomcat@11.0.11

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-z6g3-j67d-87hc

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@11.0.11

aliases CVE-2025-55752, GHSA-wmwf-9ccg-fff5

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-6t1m-v4ym-4uhs

url VCID-8btx-vpre-pugb

vulnerability_id VCID-8btx-vpre-pugb

summary

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2025-66614

reference_id

reference_type

scores

value	0.00051
scoring_system	epss
scoring_elements	0.1634
published_at	2026-05-30T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2025-66614

reference_url	https://github.com/apache/tomcat
reference_id
reference_type
scores
url	https://github.com/apache/tomcat

reference_url	https://github.com/apache/tomcat/commit/021d1f833e38b683a44688f7b28f1f27e8e37c36
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/021d1f833e38b683a44688f7b28f1f27e8e37c36

reference_url	https://github.com/apache/tomcat/commit/152c14885d45f5e0a8b59bd9f93c289cfe20ce30
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/152c14885d45f5e0a8b59bd9f93c289cfe20ce30

reference_url	https://github.com/apache/tomcat/commit/258a591b61f8cf5c22109e21e5a2a38b63454fd2
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/258a591b61f8cf5c22109e21e5a2a38b63454fd2

reference_url	https://github.com/apache/tomcat/commit/4d0615a5c718c260d6d4e0b944a050f09a490c02
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/4d0615a5c718c260d6d4e0b944a050f09a490c02

reference_url	https://github.com/apache/tomcat/commit/5053fa82a1b2b52756810601227984a8b71888a4
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/5053fa82a1b2b52756810601227984a8b71888a4

reference_url	https://github.com/apache/tomcat/commit/9276b5e783c8cd5b3fe2bb716306b65004bdd940
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/9276b5e783c8cd5b3fe2bb716306b65004bdd940

reference_url	https://github.com/apache/tomcat/commit/95f7778248cac46d03e6af04de9c72a598be3a53
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/95f7778248cac46d03e6af04de9c72a598be3a53

reference_url	https://github.com/apache/tomcat/commit/972f9a5e2a07674d92610c478aac1b205d60724e
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/972f9a5e2a07674d92610c478aac1b205d60724e

reference_url	https://github.com/apache/tomcat/commit/a4aa74232e826028cd2f7ba0445caf8a8b52c509
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/a4aa74232e826028cd2f7ba0445caf8a8b52c509

reference_url	https://lists.apache.org/thread/vw6lxtlh2qbqwpb61wd3sv1flm2nttw7
reference_id
reference_type
scores
url	https://lists.apache.org/thread/vw6lxtlh2qbqwpb61wd3sv1flm2nttw7

reference_url	https://tomcat.apache.org/security-10.html
reference_id
reference_type
scores
url	https://tomcat.apache.org/security-10.html

reference_url	https://tomcat.apache.org/security-11.html
reference_id
reference_type
scores
url	https://tomcat.apache.org/security-11.html

reference_url	https://tomcat.apache.org/security-9.html
reference_id
reference_type
scores
url	https://tomcat.apache.org/security-9.html

reference_url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-66614

reference_id

CVE-2025-66614

reference_type

scores

value	Moderate
scoring_system	apache_tomcat
scoring_elements

url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-66614

reference_url	https://nvd.nist.gov/vuln/detail/CVE-2025-66614
reference_id	CVE-2025-66614
reference_type
scores
url	https://nvd.nist.gov/vuln/detail/CVE-2025-66614

reference_url

https://github.com/advisories/GHSA-fpj8-gq4v-p354

reference_id

GHSA-fpj8-gq4v-p354

reference_type

scores

value	MODERATE
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-fpj8-gq4v-p354

fixed_packages

url pkg:maven/org.apache.tomcat/tomcat@10.1.50

purl pkg:maven/org.apache.tomcat/tomcat@10.1.50

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-8btx-vpre-pugb

vulnerability	VCID-keyp-7fnn-cbh8

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@10.1.50

url pkg:maven/org.apache.tomcat/tomcat@10.1.53

purl pkg:maven/org.apache.tomcat/tomcat@10.1.53

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1mms-9rqw-xqhq

vulnerability	VCID-3e3b-6dse-s3gf

vulnerability	VCID-aug4-yyp5-37f8

vulnerability	VCID-jz35-ynpa-sqfq

vulnerability	VCID-up1n-hunu-rkak

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@10.1.53

url pkg:maven/org.apache.tomcat/tomcat@11.0.15

purl pkg:maven/org.apache.tomcat/tomcat@11.0.15

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-8btx-vpre-pugb

vulnerability	VCID-keyp-7fnn-cbh8

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@11.0.15

url pkg:maven/org.apache.tomcat/tomcat@11.0.20

purl pkg:maven/org.apache.tomcat/tomcat@11.0.20

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1mms-9rqw-xqhq

vulnerability	VCID-3e3b-6dse-s3gf

vulnerability	VCID-aug4-yyp5-37f8

vulnerability	VCID-jz35-ynpa-sqfq

vulnerability	VCID-up1n-hunu-rkak

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@11.0.20

aliases CVE-2025-66614, GHSA-fpj8-gq4v-p354

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-8btx-vpre-pugb

url VCID-9248-b5q8-2bc7

vulnerability_id VCID-9248-b5q8-2bc7

summary

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2024-24549

reference_id

reference_type

scores

value	0.64877
scoring_system	epss
scoring_elements	0.98488
published_at	2026-05-30T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2024-24549

reference_url	https://github.com/apache/tomcat
reference_id
reference_type
scores
url	https://github.com/apache/tomcat

reference_url	https://github.com/apache/tomcat/commit/0cac540a882220231ba7a82330483cbd5f6b1f96
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/0cac540a882220231ba7a82330483cbd5f6b1f96

reference_url	https://github.com/apache/tomcat/commit/810f49d5ff6d64b704af85d5b8d0aab9ec3c83f5
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/810f49d5ff6d64b704af85d5b8d0aab9ec3c83f5

reference_url	https://github.com/apache/tomcat/commit/8e03be9f2698f2da9027d40b9e9c0c9429b74dc0
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/8e03be9f2698f2da9027d40b9e9c0c9429b74dc0

reference_url	https://github.com/apache/tomcat/commit/d07c82194edb69d99b438828fe2cbfadbb207843
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/d07c82194edb69d99b438828fe2cbfadbb207843

reference_url	https://lists.apache.org/thread/4c50rmomhbbsdgfjsgwlb51xdwfjdcvg
reference_id
reference_type
scores
url	https://lists.apache.org/thread/4c50rmomhbbsdgfjsgwlb51xdwfjdcvg

reference_url	https://lists.debian.org/debian-lts-announce/2024/04/msg00001.html
reference_id
reference_type
scores
url	https://lists.debian.org/debian-lts-announce/2024/04/msg00001.html

reference_url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/3UWIS5MMGYDZBLJYT674ZI5AWFHDZ46B
reference_id
reference_type
scores
url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/3UWIS5MMGYDZBLJYT674ZI5AWFHDZ46B

reference_url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/736G4GPZWS2DSQO5WKXO3G6OMZKFEK55
reference_id
reference_type
scores
url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/736G4GPZWS2DSQO5WKXO3G6OMZKFEK55

reference_url	https://security.netapp.com/advisory/ntap-20240402-0002
reference_id
reference_type
scores
url	https://security.netapp.com/advisory/ntap-20240402-0002

reference_url	http://www.openwall.com/lists/oss-security/2024/03/13/3
reference_id
reference_type
scores
url	http://www.openwall.com/lists/oss-security/2024/03/13/3

reference_url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-24549

reference_id

CVE-2024-24549

reference_type

scores

value	Important
scoring_system	apache_tomcat
scoring_elements

url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-24549

reference_url	https://nvd.nist.gov/vuln/detail/CVE-2024-24549
reference_id	CVE-2024-24549
reference_type
scores
url	https://nvd.nist.gov/vuln/detail/CVE-2024-24549

reference_url

https://github.com/advisories/GHSA-7w75-32cg-r6g2

reference_id

GHSA-7w75-32cg-r6g2

reference_type

scores

value	MODERATE
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-7w75-32cg-r6g2

fixed_packages

url	pkg:maven/org.apache.tomcat/tomcat@10.1.19
purl	pkg:maven/org.apache.tomcat/tomcat@10.1.19
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@10.1.19

url	pkg:maven/org.apache.tomcat/tomcat@11.0.0-M17
purl	pkg:maven/org.apache.tomcat/tomcat@11.0.0-M17
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@11.0.0-M17

aliases CVE-2024-24549, GHSA-7w75-32cg-r6g2

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-9248-b5q8-2bc7

url VCID-9g9v-wsbr-hkde

vulnerability_id VCID-9g9v-wsbr-hkde

summary

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2022-34305

reference_id

reference_type

scores

value	0.17371
scoring_system	epss
scoring_elements	0.95176
published_at	2026-05-30T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2022-34305

reference_url	https://github.com/apache/tomcat/commit/1a7e95d9c3ef18c4efb5eb997fd1553a71dc6c80
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/1a7e95d9c3ef18c4efb5eb997fd1553a71dc6c80

reference_url	https://github.com/apache/tomcat/commit/5f6c88b054b0e4fbccff8b7f15974ed55d59a9f7
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/5f6c88b054b0e4fbccff8b7f15974ed55d59a9f7

reference_url	https://github.com/apache/tomcat/commit/8b60af90b99945379c2d1003277e0cabc6776bac
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/8b60af90b99945379c2d1003277e0cabc6776bac

reference_url	https://github.com/apache/tomcat/commit/d6251d1cfb683f1bdd00ed022ac8e9b9a7e7792c
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/d6251d1cfb683f1bdd00ed022ac8e9b9a7e7792c

reference_url	https://lists.apache.org/thread/k04zk0nq6w57m72w5gb0r6z9ryhmvr4k
reference_id
reference_type
scores
url	https://lists.apache.org/thread/k04zk0nq6w57m72w5gb0r6z9ryhmvr4k

reference_url	https://security.gentoo.org/glsa/202208-34
reference_id
reference_type
scores
url	https://security.gentoo.org/glsa/202208-34

reference_url	https://security.netapp.com/advisory/ntap-20220729-0006/
reference_id
reference_type
scores
url	https://security.netapp.com/advisory/ntap-20220729-0006/

reference_url	http://www.openwall.com/lists/oss-security/2022/06/23/1
reference_id
reference_type
scores
url	http://www.openwall.com/lists/oss-security/2022/06/23/1

reference_url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34305

reference_id

CVE-2022-34305

reference_type

scores

value	Low
scoring_system	apache_tomcat
scoring_elements

url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34305

reference_url	https://nvd.nist.gov/vuln/detail/CVE-2022-34305
reference_id	CVE-2022-34305
reference_type
scores
url	https://nvd.nist.gov/vuln/detail/CVE-2022-34305

reference_url

https://github.com/advisories/GHSA-6j88-6whg-x687

reference_id

GHSA-6j88-6whg-x687

reference_type

scores

value	MODERATE
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-6j88-6whg-x687

fixed_packages

url	pkg:maven/org.apache.tomcat/tomcat@10.1.0-M17
purl	pkg:maven/org.apache.tomcat/tomcat@10.1.0-M17
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@10.1.0-M17

aliases CVE-2022-34305, GHSA-6j88-6whg-x687

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-9g9v-wsbr-hkde

url VCID-9ptv-guzs-kyg1

vulnerability_id VCID-9ptv-guzs-kyg1

summary

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2026-43513

reference_id

reference_type

scores

value	0.00082
scoring_system	epss
scoring_elements	0.24043
published_at	2026-05-30T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2026-43513

reference_url	https://github.com/apache/tomcat/commit/4a90d3fa93988c447cd5bb7482f76ff70d7f15c2
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/4a90d3fa93988c447cd5bb7482f76ff70d7f15c2

reference_url	https://github.com/apache/tomcat/commit/6dd75beb55bd42fc5f78e929596b25018cd17717
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/6dd75beb55bd42fc5f78e929596b25018cd17717

reference_url	https://github.com/apache/tomcat/commit/83f3e51df7b87f5f6e626951c575ded1a512e8ef
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/83f3e51df7b87f5f6e626951c575ded1a512e8ef

reference_url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-43513

reference_id

CVE-2026-43513

reference_type

scores

value	Low
scoring_system	apache_tomcat
scoring_elements

url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-43513

fixed_packages

url	pkg:maven/org.apache.tomcat/tomcat@10.1.55
purl	pkg:maven/org.apache.tomcat/tomcat@10.1.55
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@10.1.55

url	pkg:maven/org.apache.tomcat/tomcat@11.0.22
purl	pkg:maven/org.apache.tomcat/tomcat@11.0.22
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@11.0.22

aliases CVE-2026-43513

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-9ptv-guzs-kyg1

url VCID-9w58-wv96-dfhb

vulnerability_id VCID-9w58-wv96-dfhb

summary

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2025-55668

reference_id

reference_type

scores

value	0.00019
scoring_system	epss
scoring_elements	0.05486
published_at	2026-05-30T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2025-55668

reference_url	https://github.com/apache/tomcat/commit/8621e4c6ba2c916a41eb34cb0f781171ead33fb6
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/8621e4c6ba2c916a41eb34cb0f781171ead33fb6

reference_url	https://github.com/apache/tomcat/commit/90306d971bb8b8393336d893644124fb2ca11d21
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/90306d971bb8b8393336d893644124fb2ca11d21

reference_url	https://github.com/apache/tomcat/commit/9c3673ba04009377cb0c81ccb6cf5078aec1aa95
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/9c3673ba04009377cb0c81ccb6cf5078aec1aa95

reference_url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-55668

reference_id

CVE-2025-55668

reference_type

scores

value	Moderate
scoring_system	apache_tomcat
scoring_elements

url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-55668

fixed_packages

url pkg:maven/org.apache.tomcat/tomcat@10.1.42

purl pkg:maven/org.apache.tomcat/tomcat@10.1.42

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-p7x2-ejss-ffd1

vulnerability	VCID-s6p4-xq69-6fb4

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@10.1.42

url pkg:maven/org.apache.tomcat/tomcat@11.0.8

purl pkg:maven/org.apache.tomcat/tomcat@11.0.8

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-p7x2-ejss-ffd1

vulnerability	VCID-s6p4-xq69-6fb4

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@11.0.8

aliases CVE-2025-55668

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-9w58-wv96-dfhb

url VCID-a8x5-hzkb-vuf4

vulnerability_id VCID-a8x5-hzkb-vuf4

summary

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2022-45143

reference_id

reference_type

scores

value	0.00889
scoring_system	epss
scoring_elements	0.75851
published_at	2026-05-30T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2022-45143

reference_url	https://github.com/apache/tomcat/commit/0cab3a56bd89f70e7481bb0d68395dc7e130dbbf
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/0cab3a56bd89f70e7481bb0d68395dc7e130dbbf

reference_url	https://github.com/apache/tomcat/commit/6a0ac6a438cbbb66b6e9c5223842f53bf0cb50aa
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/6a0ac6a438cbbb66b6e9c5223842f53bf0cb50aa

reference_url	https://github.com/apache/tomcat/commit/b336f4e58893ea35114f1e4a415657f723b1298e
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/b336f4e58893ea35114f1e4a415657f723b1298e

reference_url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-45143

reference_id

CVE-2022-45143

reference_type

scores

value	Low
scoring_system	apache_tomcat
scoring_elements

url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-45143

fixed_packages

url	pkg:maven/org.apache.tomcat/tomcat@10.1.2
purl	pkg:maven/org.apache.tomcat/tomcat@10.1.2
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@10.1.2

aliases CVE-2022-45143

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-a8x5-hzkb-vuf4

url VCID-b9hb-uzqm-wbcp

vulnerability_id VCID-b9hb-uzqm-wbcp

summary

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2024-56337

reference_id

reference_type

scores

value	0.1316
scoring_system	epss
scoring_elements	0.94243
published_at	2026-05-30T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2024-56337

reference_url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-56337

reference_id

CVE-2024-56337

reference_type

scores

value	Important
scoring_system	apache_tomcat
scoring_elements

url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-56337

fixed_packages

url pkg:maven/org.apache.tomcat/tomcat@10.1.34

purl pkg:maven/org.apache.tomcat/tomcat@10.1.34

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-kq3c-qp43-dqgg

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@10.1.34

url pkg:maven/org.apache.tomcat/tomcat@11.0.2

purl pkg:maven/org.apache.tomcat/tomcat@11.0.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-kq3c-qp43-dqgg

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@11.0.2

aliases CVE-2024-56337

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-b9hb-uzqm-wbcp

url VCID-bqkn-zvm1-4kd6

vulnerability_id VCID-bqkn-zvm1-4kd6

summary

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2026-24880

reference_id

reference_type

scores

value	0.0024
scoring_system	epss
scoring_elements	0.47205
published_at	2026-05-30T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2026-24880

reference_url	https://github.com/apache/tomcat/commit/1b586d6aa8ae65726da5fa8799427b5d4718478a
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/1b586d6aa8ae65726da5fa8799427b5d4718478a

reference_url	https://github.com/apache/tomcat/commit/1e71441a15972f56e661b0b549fb9e5d838b83bb
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/1e71441a15972f56e661b0b549fb9e5d838b83bb

reference_url	https://github.com/apache/tomcat/commit/2cb06c34f661ca42f7570bbcc21e99806184bcc5
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/2cb06c34f661ca42f7570bbcc21e99806184bcc5

reference_url	https://github.com/apache/tomcat/commit/6d478dbe18b7c4bb671c30fedf130309b0dab77c
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/6d478dbe18b7c4bb671c30fedf130309b0dab77c

reference_url	https://github.com/apache/tomcat/commit/f07df938d00f7419b40fa65aa912966d0efac522
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/f07df938d00f7419b40fa65aa912966d0efac522

reference_url	https://github.com/apache/tomcat/commit/fde1a8235fb73125217bd41e162aa0a113f33552
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/fde1a8235fb73125217bd41e162aa0a113f33552

reference_url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-24880

reference_id

CVE-2026-24880

reference_type

scores

value	Low
scoring_system	apache_tomcat
scoring_elements

url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-24880

fixed_packages

url pkg:maven/org.apache.tomcat/tomcat@10.1.53

purl pkg:maven/org.apache.tomcat/tomcat@10.1.53

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1mms-9rqw-xqhq

vulnerability	VCID-3e3b-6dse-s3gf

vulnerability	VCID-aug4-yyp5-37f8

vulnerability	VCID-jz35-ynpa-sqfq

vulnerability	VCID-up1n-hunu-rkak

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@10.1.53

url pkg:maven/org.apache.tomcat/tomcat@11.0.20

purl pkg:maven/org.apache.tomcat/tomcat@11.0.20

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1mms-9rqw-xqhq

vulnerability	VCID-3e3b-6dse-s3gf

vulnerability	VCID-aug4-yyp5-37f8

vulnerability	VCID-jz35-ynpa-sqfq

vulnerability	VCID-up1n-hunu-rkak

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@11.0.20

aliases CVE-2026-24880

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-bqkn-zvm1-4kd6

url VCID-c8b5-23zz-cudd

vulnerability_id VCID-c8b5-23zz-cudd

summary

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2026-41284

reference_id

reference_type

scores

value	0.00051
scoring_system	epss
scoring_elements	0.16367
published_at	2026-05-30T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2026-41284

reference_url	https://github.com/apache/tomcat/commit/17dacd9aa48628da2eba37a9ab743c0b6c71685c
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/17dacd9aa48628da2eba37a9ab743c0b6c71685c

reference_url	https://github.com/apache/tomcat/commit/a96fffd18487a29c0a30d36f00cb2b2d91f6d42c
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/a96fffd18487a29c0a30d36f00cb2b2d91f6d42c

reference_url	https://github.com/apache/tomcat/commit/b3d1c1c239142e806be0b7329d304b94a58913ed
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/b3d1c1c239142e806be0b7329d304b94a58913ed

reference_url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-41284

reference_id

CVE-2026-41284

reference_type

scores

value	Low
scoring_system	apache_tomcat
scoring_elements

url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-41284

fixed_packages

url	pkg:maven/org.apache.tomcat/tomcat@10.1.55
purl	pkg:maven/org.apache.tomcat/tomcat@10.1.55
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@10.1.55

url	pkg:maven/org.apache.tomcat/tomcat@11.0.22
purl	pkg:maven/org.apache.tomcat/tomcat@11.0.22
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@11.0.22

aliases CVE-2026-41284

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-c8b5-23zz-cudd

url VCID-dk5d-3ebq-yfbn

vulnerability_id VCID-dk5d-3ebq-yfbn

summary

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2026-41293

reference_id

reference_type

scores

value	0.00253
scoring_system	epss
scoring_elements	0.48789
published_at	2026-05-30T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2026-41293

reference_url	https://github.com/apache/tomcat/commit/19f17a257797e8d139b33ff9c88d362a273be148
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/19f17a257797e8d139b33ff9c88d362a273be148

reference_url	https://github.com/apache/tomcat/commit/1c70480466572c9192ed412ebefcd43fc63137fd
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/1c70480466572c9192ed412ebefcd43fc63137fd

reference_url	https://github.com/apache/tomcat/commit/2a2476460e823789f530a22207873ea8cd6eff3b
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/2a2476460e823789f530a22207873ea8cd6eff3b

reference_url	https://github.com/apache/tomcat/commit/3915fd27e6810b14ccd21e3d900bd8faef44d3df
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/3915fd27e6810b14ccd21e3d900bd8faef44d3df

reference_url	https://github.com/apache/tomcat/commit/57c2b3bfd62792631e1df24cf4237b990a0b36fa
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/57c2b3bfd62792631e1df24cf4237b990a0b36fa

reference_url	https://github.com/apache/tomcat/commit/c2925554c677da57390f940d856871e18daaacab
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/c2925554c677da57390f940d856871e18daaacab

reference_url	https://github.com/apache/tomcat/commit/cf9452443bcbf3b1a4b435ef7d624364f1b65ca3
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/cf9452443bcbf3b1a4b435ef7d624364f1b65ca3

reference_url	https://github.com/apache/tomcat/commit/e5cef9618c3f4fd31bd6fb1e83f0f18022280dac
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/e5cef9618c3f4fd31bd6fb1e83f0f18022280dac

reference_url	https://github.com/apache/tomcat/commit/f72a6174ab1f0f5a053435f80448b4f6837fe6d7
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/f72a6174ab1f0f5a053435f80448b4f6837fe6d7

reference_url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-41293

reference_id

CVE-2026-41293

reference_type

scores

value	Low
scoring_system	apache_tomcat
scoring_elements

url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-41293

fixed_packages

url	pkg:maven/org.apache.tomcat/tomcat@10.1.55
purl	pkg:maven/org.apache.tomcat/tomcat@10.1.55
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@10.1.55

url	pkg:maven/org.apache.tomcat/tomcat@11.0.22
purl	pkg:maven/org.apache.tomcat/tomcat@11.0.22
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@11.0.22

aliases CVE-2026-41293

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-dk5d-3ebq-yfbn

url VCID-eehy-pgzv-vudx

vulnerability_id VCID-eehy-pgzv-vudx

summary multiple issues

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2025-48976

reference_id

reference_type

scores

value	0.01278
scoring_system	epss
scoring_elements	0.79876
published_at	2026-05-30T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2025-48976

reference_url	https://github.com/apache/tomcat/commit/667ddd76e2a0e762f3a784d86f0d25e7fd7cdb86
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/667ddd76e2a0e762f3a784d86f0d25e7fd7cdb86

reference_url	https://github.com/apache/tomcat/commit/74f69ffaf61e54c727603e7e831fe20f0ac5d2a7
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/74f69ffaf61e54c727603e7e831fe20f0ac5d2a7

reference_url	https://github.com/apache/tomcat/commit/97790a35a27d236fa053e660676c3f8196284d93
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/97790a35a27d236fa053e660676c3f8196284d93

reference_url

https://security.archlinux.org/AVG-2888

reference_id

AVG-2888

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-2888

reference_url

https://security.archlinux.org/AVG-2889

reference_id

AVG-2889

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-2889

reference_url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-48976

reference_id

CVE-2025-48976

reference_type

scores

value	Important
scoring_system	apache_tomcat
scoring_elements

url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-48976

fixed_packages

url pkg:maven/org.apache.tomcat/tomcat@10.1.42

purl pkg:maven/org.apache.tomcat/tomcat@10.1.42

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-p7x2-ejss-ffd1

vulnerability	VCID-s6p4-xq69-6fb4

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@10.1.42

url pkg:maven/org.apache.tomcat/tomcat@11.0.8

purl pkg:maven/org.apache.tomcat/tomcat@11.0.8

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-p7x2-ejss-ffd1

vulnerability	VCID-s6p4-xq69-6fb4

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@11.0.8

aliases CVE-2025-48976

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-eehy-pgzv-vudx

url VCID-ffqg-mkqf-xqgh

vulnerability_id VCID-ffqg-mkqf-xqgh

summary multiple issues

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2025-48988

reference_id

reference_type

scores

value	0.00759
scoring_system	epss
scoring_elements	0.73624
published_at	2026-05-30T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2025-48988

reference_url	https://github.com/apache/tomcat/commit/2b0ab14fb55d4edc896e5f1817f2ab76f714ae5e
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/2b0ab14fb55d4edc896e5f1817f2ab76f714ae5e

reference_url	https://github.com/apache/tomcat/commit/cdde8e655bc1c5c60a07efd216251d77c52fd7f6
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/cdde8e655bc1c5c60a07efd216251d77c52fd7f6

reference_url	https://github.com/apache/tomcat/commit/ee8042ffce4cb9324dfd79efda5984f37bbb6910
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/ee8042ffce4cb9324dfd79efda5984f37bbb6910

reference_url

https://security.archlinux.org/AVG-2888

reference_id

AVG-2888

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-2888

reference_url

https://security.archlinux.org/AVG-2889

reference_id

AVG-2889

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-2889

reference_url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-48988

reference_id

CVE-2025-48988

reference_type

scores

value	Important
scoring_system	apache_tomcat
scoring_elements

url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-48988

fixed_packages

url pkg:maven/org.apache.tomcat/tomcat@10.1.42

purl pkg:maven/org.apache.tomcat/tomcat@10.1.42

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-p7x2-ejss-ffd1

vulnerability	VCID-s6p4-xq69-6fb4

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@10.1.42

url pkg:maven/org.apache.tomcat/tomcat@11.0.8

purl pkg:maven/org.apache.tomcat/tomcat@11.0.8

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-p7x2-ejss-ffd1

vulnerability	VCID-s6p4-xq69-6fb4

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@11.0.8

aliases CVE-2025-48988

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ffqg-mkqf-xqgh

url VCID-g9rk-me3p-1fey

vulnerability_id VCID-g9rk-me3p-1fey

summary

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2023-45648

reference_id

reference_type

scores

value	0.62748
scoring_system	epss
scoring_elements	0.98403
published_at	2026-05-30T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2023-45648

reference_url	https://github.com/apache/tomcat
reference_id
reference_type
scores
url	https://github.com/apache/tomcat

reference_url	https://github.com/apache/tomcat/commit/59583245639d8c42ae0009f4a4a70464d3ea70a0
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/59583245639d8c42ae0009f4a4a70464d3ea70a0

reference_url	https://github.com/apache/tomcat/commit/8ecff306507be8e4fd3adee1ae5de1ea6661a8f4
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/8ecff306507be8e4fd3adee1ae5de1ea6661a8f4

reference_url	https://github.com/apache/tomcat/commit/c83fe47725f7ae9ae213568d9039171124fb7ec6
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/c83fe47725f7ae9ae213568d9039171124fb7ec6

reference_url	https://github.com/apache/tomcat/commit/eb5c094e5560764cda436362254997511a3ca1f6
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/eb5c094e5560764cda436362254997511a3ca1f6

reference_url	https://lists.apache.org/thread/2pv8yz1pyp088tsxfb7ogltk9msk0jdp
reference_id
reference_type
scores
url	https://lists.apache.org/thread/2pv8yz1pyp088tsxfb7ogltk9msk0jdp

reference_url	https://lists.debian.org/debian-lts-announce/2023/10/msg00020.html
reference_id
reference_type
scores
url	https://lists.debian.org/debian-lts-announce/2023/10/msg00020.html

reference_url	https://security.netapp.com/advisory/ntap-20231103-0007
reference_id
reference_type
scores
url	https://security.netapp.com/advisory/ntap-20231103-0007

reference_url	https://www.debian.org/security/2023/dsa-5521
reference_id
reference_type
scores
url	https://www.debian.org/security/2023/dsa-5521

reference_url	https://www.debian.org/security/2023/dsa-5522
reference_id
reference_type
scores
url	https://www.debian.org/security/2023/dsa-5522

reference_url	http://www.openwall.com/lists/oss-security/2023/10/10/10
reference_id
reference_type
scores
url	http://www.openwall.com/lists/oss-security/2023/10/10/10

reference_url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-45648

reference_id

CVE-2023-45648

reference_type

scores

value	Important
scoring_system	apache_tomcat
scoring_elements

url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-45648

reference_url	https://nvd.nist.gov/vuln/detail/CVE-2023-45648
reference_id	CVE-2023-45648
reference_type
scores
url	https://nvd.nist.gov/vuln/detail/CVE-2023-45648

reference_url	https://github.com/advisories/GHSA-r6j3-px5g-cq3x
reference_id	GHSA-r6j3-px5g-cq3x
reference_type
scores
url	https://github.com/advisories/GHSA-r6j3-px5g-cq3x

fixed_packages

url	pkg:maven/org.apache.tomcat/tomcat@10.1.14
purl	pkg:maven/org.apache.tomcat/tomcat@10.1.14
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@10.1.14

url	pkg:maven/org.apache.tomcat/tomcat@11.0.0-M12
purl	pkg:maven/org.apache.tomcat/tomcat@11.0.0-M12
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@11.0.0-M12

aliases CVE-2023-45648, GHSA-r6j3-px5g-cq3x

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-g9rk-me3p-1fey

url VCID-h11m-szkg-p7c5

vulnerability_id VCID-h11m-szkg-p7c5

summary

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2025-55754

reference_id

reference_type

scores

value	0.00135
scoring_system	epss
scoring_elements	0.33121
published_at	2026-05-30T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2025-55754

reference_url	https://cert-portal.siemens.com/productcert/html/ssa-032379.html
reference_id
reference_type
scores
url	https://cert-portal.siemens.com/productcert/html/ssa-032379.html

reference_url	https://github.com/apache/tomcat/commit/138d7f5cfaae683078948303333c080e6faa75d2
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/138d7f5cfaae683078948303333c080e6faa75d2

reference_url	https://github.com/apache/tomcat/commit/5a3db092982c0c58d4855304167ee757fe5e79bb
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/5a3db092982c0c58d4855304167ee757fe5e79bb

reference_url	https://github.com/apache/tomcat/commit/a03cabf3a36a42d27d8d997ed31f034f50ba6cd5
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/a03cabf3a36a42d27d8d997ed31f034f50ba6cd5

reference_url	https://lists.apache.org/thread/j7w54hqbkfcn0xb9xy0wnx8w5nymcbqd
reference_id
reference_type
scores
url	https://lists.apache.org/thread/j7w54hqbkfcn0xb9xy0wnx8w5nymcbqd

reference_url	https://tomcat.apache.org/security-10.html#Fixed_in_Apache_Tomcat_10.1.45
reference_id
reference_type
scores
url	https://tomcat.apache.org/security-10.html#Fixed_in_Apache_Tomcat_10.1.45

reference_url	https://tomcat.apache.org/security-11.html#Fixed_in_Apache_Tomcat_11.0.11
reference_id
reference_type
scores
url	https://tomcat.apache.org/security-11.html#Fixed_in_Apache_Tomcat_11.0.11

reference_url	https://tomcat.apache.org/security-9.html#Fixed_in_Apache_Tomcat_9.0.109
reference_id
reference_type
scores
url	https://tomcat.apache.org/security-9.html#Fixed_in_Apache_Tomcat_9.0.109

reference_url	http://www.openwall.com/lists/oss-security/2025/10/27/5
reference_id
reference_type
scores
url	http://www.openwall.com/lists/oss-security/2025/10/27/5

reference_url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-55754

reference_id

CVE-2025-55754

reference_type

scores

value	Low
scoring_system	apache_tomcat
scoring_elements

url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-55754

reference_url	https://nvd.nist.gov/vuln/detail/CVE-2025-55754
reference_id	CVE-2025-55754
reference_type
scores
url	https://nvd.nist.gov/vuln/detail/CVE-2025-55754

reference_url

https://github.com/advisories/GHSA-vfww-5hm6-hx2j

reference_id

GHSA-vfww-5hm6-hx2j

reference_type

scores

value	LOW
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-vfww-5hm6-hx2j

fixed_packages

url	pkg:maven/org.apache.tomcat/tomcat@10.1.45
purl	pkg:maven/org.apache.tomcat/tomcat@10.1.45
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@10.1.45

url pkg:maven/org.apache.tomcat/tomcat@11.0.11

purl pkg:maven/org.apache.tomcat/tomcat@11.0.11

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-z6g3-j67d-87hc

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@11.0.11

aliases CVE-2025-55754, GHSA-vfww-5hm6-hx2j

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-h11m-szkg-p7c5

url VCID-hdnj-g415-2bbw

vulnerability_id VCID-hdnj-g415-2bbw

summary

references

reference_url	https://akka.io/security/akka-http-cve-2023-44487.html
reference_id
reference_type
scores
url	https://akka.io/security/akka-http-cve-2023-44487.html

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2023-44487

reference_id

reference_type

scores

value	0.944
scoring_system	epss
scoring_elements	0.99976
published_at	2026-05-30T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2023-44487

reference_url	https://arstechnica.com/security/2023/10/how-ddosers-used-the-http-2-protocol-to-deliver-attacks-of-unprecedented-size
reference_id
reference_type
scores
url	https://arstechnica.com/security/2023/10/how-ddosers-used-the-http-2-protocol-to-deliver-attacks-of-unprecedented-size

reference_url	https://arstechnica.com/security/2023/10/how-ddosers-used-the-http-2-protocol-to-deliver-attacks-of-unprecedented-size/
reference_id
reference_type
scores
url	https://arstechnica.com/security/2023/10/how-ddosers-used-the-http-2-protocol-to-deliver-attacks-of-unprecedented-size/

reference_url	https://aws.amazon.com/security/security-bulletins/AWS-2023-011
reference_id
reference_type
scores
url	https://aws.amazon.com/security/security-bulletins/AWS-2023-011

reference_url	https://aws.amazon.com/security/security-bulletins/AWS-2023-011/
reference_id
reference_type
scores
url	https://aws.amazon.com/security/security-bulletins/AWS-2023-011/

reference_url	https://blog.cloudflare.com/technical-breakdown-http2-rapid-reset-ddos-attack
reference_id
reference_type
scores
url	https://blog.cloudflare.com/technical-breakdown-http2-rapid-reset-ddos-attack

reference_url	https://blog.cloudflare.com/technical-breakdown-http2-rapid-reset-ddos-attack/
reference_id
reference_type
scores
url	https://blog.cloudflare.com/technical-breakdown-http2-rapid-reset-ddos-attack/

reference_url	https://blog.cloudflare.com/zero-day-rapid-reset-http2-record-breaking-ddos-attack
reference_id
reference_type
scores
url	https://blog.cloudflare.com/zero-day-rapid-reset-http2-record-breaking-ddos-attack

reference_url	https://blog.cloudflare.com/zero-day-rapid-reset-http2-record-breaking-ddos-attack/
reference_id
reference_type
scores
url	https://blog.cloudflare.com/zero-day-rapid-reset-http2-record-breaking-ddos-attack/

reference_url	https://blog.litespeedtech.com/2023/10/11/rapid-reset-http-2-vulnerablilty
reference_id
reference_type
scores
url	https://blog.litespeedtech.com/2023/10/11/rapid-reset-http-2-vulnerablilty

reference_url	https://blog.litespeedtech.com/2023/10/11/rapid-reset-http-2-vulnerablilty/
reference_id
reference_type
scores
url	https://blog.litespeedtech.com/2023/10/11/rapid-reset-http-2-vulnerablilty/

reference_url	https://bugzilla.proxmox.com/show_bug.cgi?id=4988
reference_id
reference_type
scores
url	https://bugzilla.proxmox.com/show_bug.cgi?id=4988

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2242803
reference_id
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2242803

reference_url	https://bugzilla.suse.com/show_bug.cgi?id=1216123
reference_id
reference_type
scores
url	https://bugzilla.suse.com/show_bug.cgi?id=1216123

reference_url	https://cert-portal.siemens.com/productcert/html/ssa-082556.html
reference_id
reference_type
scores
url	https://cert-portal.siemens.com/productcert/html/ssa-082556.html

reference_url	https://cert-portal.siemens.com/productcert/html/ssa-341067.html
reference_id
reference_type
scores
url	https://cert-portal.siemens.com/productcert/html/ssa-341067.html

reference_url	https://cert-portal.siemens.com/productcert/html/ssa-784301.html
reference_id
reference_type
scores
url	https://cert-portal.siemens.com/productcert/html/ssa-784301.html

reference_url	https://cert-portal.siemens.com/productcert/html/ssa-832273.html
reference_id
reference_type
scores
url	https://cert-portal.siemens.com/productcert/html/ssa-832273.html

reference_url	https://cert-portal.siemens.com/productcert/html/ssa-915275.html
reference_id
reference_type
scores
url	https://cert-portal.siemens.com/productcert/html/ssa-915275.html

reference_url	https://cgit.freebsd.org/ports/commit/?id=c64c329c2c1752f46b73e3e6ce9f4329be6629f9
reference_id
reference_type
scores
url	https://cgit.freebsd.org/ports/commit/?id=c64c329c2c1752f46b73e3e6ce9f4329be6629f9

reference_url	https://chaos.social/@icing/111210915918780532
reference_id
reference_type
scores
url	https://chaos.social/@icing/111210915918780532

reference_url	https://cloud.google.com/blog/products/identity-security/google-cloud-mitigated-largest-ddos-attack-peaking-above-398-million-rps
reference_id
reference_type
scores
url	https://cloud.google.com/blog/products/identity-security/google-cloud-mitigated-largest-ddos-attack-peaking-above-398-million-rps

reference_url	https://cloud.google.com/blog/products/identity-security/google-cloud-mitigated-largest-ddos-attack-peaking-above-398-million-rps/
reference_id
reference_type
scores
url	https://cloud.google.com/blog/products/identity-security/google-cloud-mitigated-largest-ddos-attack-peaking-above-398-million-rps/

reference_url	https://cloud.google.com/blog/products/identity-security/how-it-works-the-novel-http2-rapid-reset-ddos-attack
reference_id
reference_type
scores
url	https://cloud.google.com/blog/products/identity-security/how-it-works-the-novel-http2-rapid-reset-ddos-attack

reference_url	https://community.traefik.io/t/is-traefik-vulnerable-to-cve-2023-44487/20125
reference_id
reference_type
scores
url	https://community.traefik.io/t/is-traefik-vulnerable-to-cve-2023-44487/20125

reference_url	https://discuss.hashicorp.com/t/hcsec-2023-32-vault-consul-and-boundary-affected-by-http-2-rapid-reset-denial-of-service-vulnerability-cve-2023-44487/59715
reference_id
reference_type
scores
url	https://discuss.hashicorp.com/t/hcsec-2023-32-vault-consul-and-boundary-affected-by-http-2-rapid-reset-denial-of-service-vulnerability-cve-2023-44487/59715

reference_url	https://edg.io/lp/blog/resets-leaks-ddos-and-the-tale-of-a-hidden-cve
reference_id
reference_type
scores
url	https://edg.io/lp/blog/resets-leaks-ddos-and-the-tale-of-a-hidden-cve

reference_url	https://forums.swift.org/t/swift-nio-http2-security-update-cve-2023-44487-http-2-dos/67764
reference_id
reference_type
scores
url	https://forums.swift.org/t/swift-nio-http2-security-update-cve-2023-44487-http-2-dos/67764

reference_url	https://gist.github.com/adulau/7c2bfb8e9cdbe4b35a5e131c66a0c088
reference_id
reference_type
scores
url	https://gist.github.com/adulau/7c2bfb8e9cdbe4b35a5e131c66a0c088

reference_url	https://github.com/akka/akka-http/issues/4323
reference_id
reference_type
scores
url	https://github.com/akka/akka-http/issues/4323

reference_url	https://github.com/akka/akka-http/pull/4324
reference_id
reference_type
scores
url	https://github.com/akka/akka-http/pull/4324

reference_url	https://github.com/akka/akka-http/pull/4325
reference_id
reference_type
scores
url	https://github.com/akka/akka-http/pull/4325

reference_url	https://github.com/alibaba/tengine/issues/1872
reference_id
reference_type
scores
url	https://github.com/alibaba/tengine/issues/1872

reference_url	https://github.com/apache/apisix/issues/10320
reference_id
reference_type
scores
url	https://github.com/apache/apisix/issues/10320

reference_url	https://github.com/apache/httpd/blob/afcdbeebbff4b0c50ea26cdd16e178c0d1f24152/modules/http2/h2_mplx.c#L1101-L1113
reference_id
reference_type
scores
url	https://github.com/apache/httpd/blob/afcdbeebbff4b0c50ea26cdd16e178c0d1f24152/modules/http2/h2_mplx.c#L1101-L1113

reference_url	https://github.com/apache/httpd-site/pull/10
reference_id
reference_type
scores
url	https://github.com/apache/httpd-site/pull/10

reference_url	https://github.com/apache/tomcat/commit/6d1a9fd6642387969e4410b9989c85856b74917a
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/6d1a9fd6642387969e4410b9989c85856b74917a

reference_url	https://github.com/apache/tomcat/commit/76bb4bfbfeae827dce896f650655bbf6e251ed49
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/76bb4bfbfeae827dce896f650655bbf6e251ed49

reference_url	https://github.com/apache/tomcat/commit/944332bb15bd2f3bf76ec2caeb1ff0a58a3bc628
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/944332bb15bd2f3bf76ec2caeb1ff0a58a3bc628

reference_url	https://github.com/apache/tomcat/commit/9cdfe25bad707f34b3e5da2994f3f1952a163c3e
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/9cdfe25bad707f34b3e5da2994f3f1952a163c3e

reference_url	https://github.com/apache/tomcat/tree/main/java/org/apache/coyote/http2
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/tree/main/java/org/apache/coyote/http2

reference_url	https://github.com/apache/trafficserver/pull/10564
reference_id
reference_type
scores
url	https://github.com/apache/trafficserver/pull/10564

reference_url	https://github.com/Azure/AKS/issues/3947
reference_id
reference_type
scores
url	https://github.com/Azure/AKS/issues/3947

reference_url	https://github.com/caddyserver/caddy/issues/5877
reference_id
reference_type
scores
url	https://github.com/caddyserver/caddy/issues/5877

reference_url	https://github.com/caddyserver/caddy/releases/tag/v2.7.5
reference_id
reference_type
scores
url	https://github.com/caddyserver/caddy/releases/tag/v2.7.5

reference_url	https://github.com/dotnet/announcements/issues/277
reference_id
reference_type
scores
url	https://github.com/dotnet/announcements/issues/277

reference_url	https://github.com/dotnet/core/blob/e4613450ea0da7fd2fc6b61dfb2c1c1dec1ce9ec/release-notes/6.0/6.0.23/6.0.23.md?plain=1#L73
reference_id
reference_type
scores
url	https://github.com/dotnet/core/blob/e4613450ea0da7fd2fc6b61dfb2c1c1dec1ce9ec/release-notes/6.0/6.0.23/6.0.23.md?plain=1#L73

reference_url	https://github.com/eclipse/jetty.project/issues/10679
reference_id
reference_type
scores
url	https://github.com/eclipse/jetty.project/issues/10679

reference_url	https://github.com/envoyproxy/envoy/pull/30055
reference_id
reference_type
scores
url	https://github.com/envoyproxy/envoy/pull/30055

reference_url	https://github.com/etcd-io/etcd/issues/16740
reference_id
reference_type
scores
url	https://github.com/etcd-io/etcd/issues/16740

reference_url	https://github.com/facebook/proxygen/pull/466
reference_id
reference_type
scores
url	https://github.com/facebook/proxygen/pull/466

reference_url	https://github.com/golang/go/issues/63417
reference_id
reference_type
scores
url	https://github.com/golang/go/issues/63417

reference_url	https://github.com/grpc/grpc-go/pull/6703
reference_id
reference_type
scores
url	https://github.com/grpc/grpc-go/pull/6703

reference_url	https://github.com/grpc/grpc-go/releases
reference_id
reference_type
scores
url	https://github.com/grpc/grpc-go/releases

reference_url	https://github.com/grpc/grpc/releases/tag/v1.59.2
reference_id
reference_type
scores
url	https://github.com/grpc/grpc/releases/tag/v1.59.2

reference_url	https://github.com/h2o/h2o/pull/3291
reference_id
reference_type
scores
url	https://github.com/h2o/h2o/pull/3291

reference_url	https://github.com/haproxy/haproxy/issues/2312
reference_id
reference_type
scores
url	https://github.com/haproxy/haproxy/issues/2312

reference_url	https://github.com/hyperium/hyper/issues/3337
reference_id
reference_type
scores
url	https://github.com/hyperium/hyper/issues/3337

reference_url	https://github.com/icing/mod_h2/blob/0a864782af0a942aa2ad4ed960a6b32cd35bcf0a/mod_http2/README.md?plain=1#L239-L244
reference_id
reference_type
scores
url	https://github.com/icing/mod_h2/blob/0a864782af0a942aa2ad4ed960a6b32cd35bcf0a/mod_http2/README.md?plain=1#L239-L244

reference_url	https://github.com/junkurihara/rust-rpxy/issues/97
reference_id
reference_type
scores
url	https://github.com/junkurihara/rust-rpxy/issues/97

reference_url	https://github.com/kazu-yamamoto/http2/commit/f61d41a502bd0f60eb24e1ce14edc7b6df6722a1
reference_id
reference_type
scores
url	https://github.com/kazu-yamamoto/http2/commit/f61d41a502bd0f60eb24e1ce14edc7b6df6722a1

reference_url	https://github.com/kazu-yamamoto/http2/issues/93
reference_id
reference_type
scores
url	https://github.com/kazu-yamamoto/http2/issues/93

reference_url	https://github.com/Kong/kong/discussions/11741
reference_id
reference_type
scores
url	https://github.com/Kong/kong/discussions/11741

reference_url	https://github.com/kubernetes/kubernetes/pull/121120
reference_id
reference_type
scores
url	https://github.com/kubernetes/kubernetes/pull/121120

reference_url	https://github.com/line/armeria/pull/5232
reference_id
reference_type
scores
url	https://github.com/line/armeria/pull/5232

reference_url	https://github.com/linkerd/website/pull/1695/commits/4b9c6836471bc8270ab48aae6fd2181bc73fd632
reference_id
reference_type
scores
url	https://github.com/linkerd/website/pull/1695/commits/4b9c6836471bc8270ab48aae6fd2181bc73fd632

reference_url	https://github.com/micrictor/http2-rst-stream
reference_id
reference_type
scores
url	https://github.com/micrictor/http2-rst-stream

reference_url	https://github.com/microsoft/CBL-Mariner/pull/6381
reference_id
reference_type
scores
url	https://github.com/microsoft/CBL-Mariner/pull/6381

reference_url	https://github.com/netty/netty/commit/58f75f665aa81a8cbcf6ffa74820042a285c5e61
reference_id
reference_type
scores
url	https://github.com/netty/netty/commit/58f75f665aa81a8cbcf6ffa74820042a285c5e61

reference_url	https://github.com/nghttp2/nghttp2/pull/1961
reference_id
reference_type
scores
url	https://github.com/nghttp2/nghttp2/pull/1961

reference_url	https://github.com/nghttp2/nghttp2/releases/tag/v1.57.0
reference_id
reference_type
scores
url	https://github.com/nghttp2/nghttp2/releases/tag/v1.57.0

reference_url	https://github.com/ninenines/cowboy/issues/1615
reference_id
reference_type
scores
url	https://github.com/ninenines/cowboy/issues/1615

reference_url	https://github.com/nodejs/node/pull/50121
reference_id
reference_type
scores
url	https://github.com/nodejs/node/pull/50121

reference_url	https://github.com/openresty/openresty/issues/930
reference_id
reference_type
scores
url	https://github.com/openresty/openresty/issues/930

reference_url	https://github.com/opensearch-project/data-prepper/issues/3474
reference_id
reference_type
scores
url	https://github.com/opensearch-project/data-prepper/issues/3474

reference_url	https://github.com/oqtane/oqtane.framework/discussions/3367
reference_id
reference_type
scores
url	https://github.com/oqtane/oqtane.framework/discussions/3367

reference_url	https://github.com/projectcontour/contour/pull/5826
reference_id
reference_type
scores
url	https://github.com/projectcontour/contour/pull/5826

reference_url	https://github.com/tempesta-tech/tempesta/issues/1986
reference_id
reference_type
scores
url	https://github.com/tempesta-tech/tempesta/issues/1986

reference_url	https://github.com/varnishcache/varnish-cache/issues/3996
reference_id
reference_type
scores
url	https://github.com/varnishcache/varnish-cache/issues/3996

reference_url	https://go.dev/cl/534215
reference_id
reference_type
scores
url	https://go.dev/cl/534215

reference_url	https://go.dev/cl/534235
reference_id
reference_type
scores
url	https://go.dev/cl/534235

reference_url	https://go.dev/issue/63417
reference_id
reference_type
scores
url	https://go.dev/issue/63417

reference_url	https://groups.google.com/g/golang-announce/c/iNNxDTCjZvo
reference_id
reference_type
scores
url	https://groups.google.com/g/golang-announce/c/iNNxDTCjZvo

reference_url	https://groups.google.com/g/golang-announce/c/iNNxDTCjZvo/m/UDd7VKQuAAAJ
reference_id
reference_type
scores
url	https://groups.google.com/g/golang-announce/c/iNNxDTCjZvo/m/UDd7VKQuAAAJ

reference_url	https://istio.io/latest/news/security/istio-security-2023-004
reference_id
reference_type
scores
url	https://istio.io/latest/news/security/istio-security-2023-004

reference_url	https://istio.io/latest/news/security/istio-security-2023-004/
reference_id
reference_type
scores
url	https://istio.io/latest/news/security/istio-security-2023-004/

reference_url	https://linkerd.io/2023/10/12/linkerd-cve-2023-44487
reference_id
reference_type
scores
url	https://linkerd.io/2023/10/12/linkerd-cve-2023-44487

reference_url	https://linkerd.io/2023/10/12/linkerd-cve-2023-44487/
reference_id
reference_type
scores
url	https://linkerd.io/2023/10/12/linkerd-cve-2023-44487/

reference_url	https://lists.apache.org/thread/5py8h42mxfsn8l1wy6o41xwhsjlsd87q
reference_id
reference_type
scores
url	https://lists.apache.org/thread/5py8h42mxfsn8l1wy6o41xwhsjlsd87q

reference_url	https://lists.debian.org/debian-lts-announce/2023/10/msg00020.html
reference_id
reference_type
scores
url	https://lists.debian.org/debian-lts-announce/2023/10/msg00020.html

reference_url	https://lists.debian.org/debian-lts-announce/2023/10/msg00023.html
reference_id
reference_type
scores
url	https://lists.debian.org/debian-lts-announce/2023/10/msg00023.html

reference_url	https://lists.debian.org/debian-lts-announce/2023/10/msg00024.html
reference_id
reference_type
scores
url	https://lists.debian.org/debian-lts-announce/2023/10/msg00024.html

reference_url	https://lists.debian.org/debian-lts-announce/2023/10/msg00045.html
reference_id
reference_type
scores
url	https://lists.debian.org/debian-lts-announce/2023/10/msg00045.html

reference_url	https://lists.debian.org/debian-lts-announce/2023/10/msg00047.html
reference_id
reference_type
scores
url	https://lists.debian.org/debian-lts-announce/2023/10/msg00047.html

reference_url	https://lists.debian.org/debian-lts-announce/2023/11/msg00001.html
reference_id
reference_type
scores
url	https://lists.debian.org/debian-lts-announce/2023/11/msg00001.html

reference_url	https://lists.debian.org/debian-lts-announce/2023/11/msg00012.html
reference_id
reference_type
scores
url	https://lists.debian.org/debian-lts-announce/2023/11/msg00012.html

reference_url	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2MBEPPC36UBVOZZNAXFHKLFGSLCMN5LI
reference_id
reference_type
scores
url	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2MBEPPC36UBVOZZNAXFHKLFGSLCMN5LI

reference_url	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2MBEPPC36UBVOZZNAXFHKLFGSLCMN5LI/
reference_id
reference_type
scores
url	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2MBEPPC36UBVOZZNAXFHKLFGSLCMN5LI/

reference_url	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3N4NJ7FR4X4FPZUGNTQAPSTVB2HB2Y4A
reference_id
reference_type
scores
url	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3N4NJ7FR4X4FPZUGNTQAPSTVB2HB2Y4A

100

reference_url	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3N4NJ7FR4X4FPZUGNTQAPSTVB2HB2Y4A/
reference_id
reference_type
scores
url	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3N4NJ7FR4X4FPZUGNTQAPSTVB2HB2Y4A/

101

reference_url	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BFQD3KUEMFBHPAPBGLWQC34L4OWL5HAZ
reference_id
reference_type
scores
url	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BFQD3KUEMFBHPAPBGLWQC34L4OWL5HAZ

102

reference_url	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BFQD3KUEMFBHPAPBGLWQC34L4OWL5HAZ/
reference_id
reference_type
scores
url	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BFQD3KUEMFBHPAPBGLWQC34L4OWL5HAZ/

103

reference_url	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CLB4TW7KALB3EEQWNWCN7OUIWWVWWCG2
reference_id
reference_type
scores
url	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CLB4TW7KALB3EEQWNWCN7OUIWWVWWCG2

104

reference_url	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CLB4TW7KALB3EEQWNWCN7OUIWWVWWCG2/
reference_id
reference_type
scores
url	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CLB4TW7KALB3EEQWNWCN7OUIWWVWWCG2/

105

reference_url	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/E72T67UPDRXHIDLO3OROR25YAMN4GGW5
reference_id
reference_type
scores
url	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/E72T67UPDRXHIDLO3OROR25YAMN4GGW5

106

reference_url	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/E72T67UPDRXHIDLO3OROR25YAMN4GGW5/
reference_id
reference_type
scores
url	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/E72T67UPDRXHIDLO3OROR25YAMN4GGW5/

107

reference_url	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FNA62Q767CFAFHBCDKYNPBMZWB7TWYVU
reference_id
reference_type
scores
url	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FNA62Q767CFAFHBCDKYNPBMZWB7TWYVU

108

reference_url	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FNA62Q767CFAFHBCDKYNPBMZWB7TWYVU/
reference_id
reference_type
scores
url	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FNA62Q767CFAFHBCDKYNPBMZWB7TWYVU/

109

reference_url	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HT7T2R4MQKLIF4ODV4BDLPARWFPCJ5CZ
reference_id
reference_type
scores
url	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HT7T2R4MQKLIF4ODV4BDLPARWFPCJ5CZ

110

reference_url	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HT7T2R4MQKLIF4ODV4BDLPARWFPCJ5CZ/
reference_id
reference_type
scores
url	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HT7T2R4MQKLIF4ODV4BDLPARWFPCJ5CZ/

111

reference_url	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JIZSEFC3YKCGABA2BZW6ZJRMDZJMB7PJ
reference_id
reference_type
scores
url	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JIZSEFC3YKCGABA2BZW6ZJRMDZJMB7PJ

112

reference_url	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JIZSEFC3YKCGABA2BZW6ZJRMDZJMB7PJ/
reference_id
reference_type
scores
url	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JIZSEFC3YKCGABA2BZW6ZJRMDZJMB7PJ/

113

reference_url	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JMEXY22BFG5Q64HQCM5CK2Q7KDKVV4TY
reference_id
reference_type
scores
url	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JMEXY22BFG5Q64HQCM5CK2Q7KDKVV4TY

114

reference_url	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JMEXY22BFG5Q64HQCM5CK2Q7KDKVV4TY/
reference_id
reference_type
scores
url	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JMEXY22BFG5Q64HQCM5CK2Q7KDKVV4TY/

115

reference_url	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KSEGD2IWKNUO3DWY4KQGUQM5BISRWHQE
reference_id
reference_type
scores
url	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KSEGD2IWKNUO3DWY4KQGUQM5BISRWHQE

116

reference_url	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KSEGD2IWKNUO3DWY4KQGUQM5BISRWHQE/
reference_id
reference_type
scores
url	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KSEGD2IWKNUO3DWY4KQGUQM5BISRWHQE/

117

reference_url	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LKYHSZQFDNR7RSA7LHVLLIAQMVYCUGBG
reference_id
reference_type
scores
url	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LKYHSZQFDNR7RSA7LHVLLIAQMVYCUGBG

118

reference_url	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LKYHSZQFDNR7RSA7LHVLLIAQMVYCUGBG/
reference_id
reference_type
scores
url	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LKYHSZQFDNR7RSA7LHVLLIAQMVYCUGBG/

119

reference_url	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LNMZJCDHGLJJLXO4OXWJMTVQRNWOC7UL
reference_id
reference_type
scores
url	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LNMZJCDHGLJJLXO4OXWJMTVQRNWOC7UL

120

reference_url	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LNMZJCDHGLJJLXO4OXWJMTVQRNWOC7UL/
reference_id
reference_type
scores
url	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LNMZJCDHGLJJLXO4OXWJMTVQRNWOC7UL/

121

reference_url	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VHUHTSXLXGXS7JYKBXTA3VINUPHTNGVU
reference_id
reference_type
scores
url	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VHUHTSXLXGXS7JYKBXTA3VINUPHTNGVU

122

reference_url	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VHUHTSXLXGXS7JYKBXTA3VINUPHTNGVU/
reference_id
reference_type
scores
url	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VHUHTSXLXGXS7JYKBXTA3VINUPHTNGVU/

123

reference_url	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VSRDIV77HNKUSM7SJC5BKE5JSHLHU2NK
reference_id
reference_type
scores
url	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VSRDIV77HNKUSM7SJC5BKE5JSHLHU2NK

124

reference_url	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VSRDIV77HNKUSM7SJC5BKE5JSHLHU2NK/
reference_id
reference_type
scores
url	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VSRDIV77HNKUSM7SJC5BKE5JSHLHU2NK/

125

reference_url	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WE2I52RHNNU42PX6NZ2RBUHSFFJ2LVZX
reference_id
reference_type
scores
url	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WE2I52RHNNU42PX6NZ2RBUHSFFJ2LVZX

126

reference_url	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WE2I52RHNNU42PX6NZ2RBUHSFFJ2LVZX/
reference_id
reference_type
scores
url	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WE2I52RHNNU42PX6NZ2RBUHSFFJ2LVZX/

127

reference_url	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WLPRQ5TWUQQXYWBJM7ECYDAIL2YVKIUH
reference_id
reference_type
scores
url	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WLPRQ5TWUQQXYWBJM7ECYDAIL2YVKIUH

128

reference_url	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WLPRQ5TWUQQXYWBJM7ECYDAIL2YVKIUH/
reference_id
reference_type
scores
url	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WLPRQ5TWUQQXYWBJM7ECYDAIL2YVKIUH/

129

reference_url	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/X6QXN4ORIVF6XBW4WWFE7VNPVC74S45Y
reference_id
reference_type
scores
url	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/X6QXN4ORIVF6XBW4WWFE7VNPVC74S45Y

130

reference_url	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/X6QXN4ORIVF6XBW4WWFE7VNPVC74S45Y/
reference_id
reference_type
scores
url	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/X6QXN4ORIVF6XBW4WWFE7VNPVC74S45Y/

131

reference_url	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XFOIBB4YFICHDM7IBOP7PWXW3FX4HLL2
reference_id
reference_type
scores
url	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XFOIBB4YFICHDM7IBOP7PWXW3FX4HLL2

132

reference_url	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XFOIBB4YFICHDM7IBOP7PWXW3FX4HLL2/
reference_id
reference_type
scores
url	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XFOIBB4YFICHDM7IBOP7PWXW3FX4HLL2/

133

reference_url	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZB43REMKRQR62NJEI7I5NQ4FSXNLBKRT
reference_id
reference_type
scores
url	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZB43REMKRQR62NJEI7I5NQ4FSXNLBKRT

134

reference_url	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZB43REMKRQR62NJEI7I5NQ4FSXNLBKRT/
reference_id
reference_type
scores
url	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZB43REMKRQR62NJEI7I5NQ4FSXNLBKRT/

135

reference_url	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZKQSIKIAT5TJ3WSLU3RDBQ35YX4GY4V3
reference_id
reference_type
scores
url	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZKQSIKIAT5TJ3WSLU3RDBQ35YX4GY4V3

136

reference_url	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZKQSIKIAT5TJ3WSLU3RDBQ35YX4GY4V3/
reference_id
reference_type
scores
url	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZKQSIKIAT5TJ3WSLU3RDBQ35YX4GY4V3/

137

reference_url	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZLU6U2R2IC2K64NDPNMV55AUAO65MAF4
reference_id
reference_type
scores
url	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZLU6U2R2IC2K64NDPNMV55AUAO65MAF4

138

reference_url	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZLU6U2R2IC2K64NDPNMV55AUAO65MAF4/
reference_id
reference_type
scores
url	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZLU6U2R2IC2K64NDPNMV55AUAO65MAF4/

139

reference_url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/2MBEPPC36UBVOZZNAXFHKLFGSLCMN5LI
reference_id
reference_type
scores
url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/2MBEPPC36UBVOZZNAXFHKLFGSLCMN5LI

140

reference_url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/3N4NJ7FR4X4FPZUGNTQAPSTVB2HB2Y4A
reference_id
reference_type
scores
url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/3N4NJ7FR4X4FPZUGNTQAPSTVB2HB2Y4A

141

reference_url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/BFQD3KUEMFBHPAPBGLWQC34L4OWL5HAZ
reference_id
reference_type
scores
url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/BFQD3KUEMFBHPAPBGLWQC34L4OWL5HAZ

142

reference_url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CLB4TW7KALB3EEQWNWCN7OUIWWVWWCG2
reference_id
reference_type
scores
url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CLB4TW7KALB3EEQWNWCN7OUIWWVWWCG2

143

reference_url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/E72T67UPDRXHIDLO3OROR25YAMN4GGW5
reference_id
reference_type
scores
url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/E72T67UPDRXHIDLO3OROR25YAMN4GGW5

144

reference_url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/FNA62Q767CFAFHBCDKYNPBMZWB7TWYVU
reference_id
reference_type
scores
url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/FNA62Q767CFAFHBCDKYNPBMZWB7TWYVU

145

reference_url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/HT7T2R4MQKLIF4ODV4BDLPARWFPCJ5CZ
reference_id
reference_type
scores
url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/HT7T2R4MQKLIF4ODV4BDLPARWFPCJ5CZ

146

reference_url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/JIZSEFC3YKCGABA2BZW6ZJRMDZJMB7PJ
reference_id
reference_type
scores
url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/JIZSEFC3YKCGABA2BZW6ZJRMDZJMB7PJ

147

reference_url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/JIZSEFC3YKCGABA2BZW6ZJRMDZJMB7PJ/
reference_id
reference_type
scores
url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/JIZSEFC3YKCGABA2BZW6ZJRMDZJMB7PJ/

148

reference_url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/JMEXY22BFG5Q64HQCM5CK2Q7KDKVV4TY
reference_id
reference_type
scores
url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/JMEXY22BFG5Q64HQCM5CK2Q7KDKVV4TY

149

reference_url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/JMEXY22BFG5Q64HQCM5CK2Q7KDKVV4TY/
reference_id
reference_type
scores
url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/JMEXY22BFG5Q64HQCM5CK2Q7KDKVV4TY/

150

reference_url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KSEGD2IWKNUO3DWY4KQGUQM5BISRWHQE
reference_id
reference_type
scores
url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KSEGD2IWKNUO3DWY4KQGUQM5BISRWHQE

151

reference_url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/LKYHSZQFDNR7RSA7LHVLLIAQMVYCUGBG
reference_id
reference_type
scores
url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/LKYHSZQFDNR7RSA7LHVLLIAQMVYCUGBG

152

reference_url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/LNMZJCDHGLJJLXO4OXWJMTVQRNWOC7UL
reference_id
reference_type
scores
url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/LNMZJCDHGLJJLXO4OXWJMTVQRNWOC7UL

153

reference_url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VHUHTSXLXGXS7JYKBXTA3VINUPHTNGVU
reference_id
reference_type
scores
url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VHUHTSXLXGXS7JYKBXTA3VINUPHTNGVU

154

reference_url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VSRDIV77HNKUSM7SJC5BKE5JSHLHU2NK
reference_id
reference_type
scores
url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VSRDIV77HNKUSM7SJC5BKE5JSHLHU2NK

155

reference_url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WE2I52RHNNU42PX6NZ2RBUHSFFJ2LVZX
reference_id
reference_type
scores
url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WE2I52RHNNU42PX6NZ2RBUHSFFJ2LVZX

156

reference_url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WLPRQ5TWUQQXYWBJM7ECYDAIL2YVKIUH
reference_id
reference_type
scores
url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WLPRQ5TWUQQXYWBJM7ECYDAIL2YVKIUH

157

reference_url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/X6QXN4ORIVF6XBW4WWFE7VNPVC74S45Y
reference_id
reference_type
scores
url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/X6QXN4ORIVF6XBW4WWFE7VNPVC74S45Y

158

reference_url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/XFOIBB4YFICHDM7IBOP7PWXW3FX4HLL2
reference_id
reference_type
scores
url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/XFOIBB4YFICHDM7IBOP7PWXW3FX4HLL2

159

reference_url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZB43REMKRQR62NJEI7I5NQ4FSXNLBKRT
reference_id
reference_type
scores
url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZB43REMKRQR62NJEI7I5NQ4FSXNLBKRT

160

reference_url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZKQSIKIAT5TJ3WSLU3RDBQ35YX4GY4V3
reference_id
reference_type
scores
url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZKQSIKIAT5TJ3WSLU3RDBQ35YX4GY4V3

161

reference_url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZKQSIKIAT5TJ3WSLU3RDBQ35YX4GY4V3/
reference_id
reference_type
scores
url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZKQSIKIAT5TJ3WSLU3RDBQ35YX4GY4V3/

162

reference_url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZLU6U2R2IC2K64NDPNMV55AUAO65MAF4
reference_id
reference_type
scores
url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZLU6U2R2IC2K64NDPNMV55AUAO65MAF4

163

reference_url	https://lists.w3.org/Archives/Public/ietf-http-wg/2023OctDec/0025.html
reference_id
reference_type
scores
url	https://lists.w3.org/Archives/Public/ietf-http-wg/2023OctDec/0025.html

164

reference_url	https://mailman.nginx.org/pipermail/nginx-devel/2023-October/S36Q5HBXR7CAIMPLLPRSSSYR4PCMWILK.html
reference_id
reference_type
scores
url	https://mailman.nginx.org/pipermail/nginx-devel/2023-October/S36Q5HBXR7CAIMPLLPRSSSYR4PCMWILK.html

165

reference_url	https://martinthomson.github.io/h2-stream-limits/draft-thomson-httpbis-h2-stream-limits.html
reference_id
reference_type
scores
url	https://martinthomson.github.io/h2-stream-limits/draft-thomson-httpbis-h2-stream-limits.html

166

reference_url	https://msrc.microsoft.com/blog/2023/10/microsoft-response-to-distributed-denial-of-service-ddos-attacks-against-http/2
reference_id
reference_type
scores
url	https://msrc.microsoft.com/blog/2023/10/microsoft-response-to-distributed-denial-of-service-ddos-attacks-against-http/2

167

reference_url	https://msrc.microsoft.com/blog/2023/10/microsoft-response-to-distributed-denial-of-service-ddos-attacks-against-http/2/
reference_id
reference_type
scores
url	https://msrc.microsoft.com/blog/2023/10/microsoft-response-to-distributed-denial-of-service-ddos-attacks-against-http/2/

168

reference_url	https://my.f5.com/manage/s/article/K000137106
reference_id
reference_type
scores
url	https://my.f5.com/manage/s/article/K000137106

169

reference_url	https://netty.io/news/2023/10/10/4-1-100-Final.html
reference_id
reference_type
scores
url	https://netty.io/news/2023/10/10/4-1-100-Final.html

170

reference_url	https://news.ycombinator.com/item?id=37830987
reference_id
reference_type
scores
url	https://news.ycombinator.com/item?id=37830987

171

reference_url	https://news.ycombinator.com/item?id=37830998
reference_id
reference_type
scores
url	https://news.ycombinator.com/item?id=37830998

172

reference_url	https://news.ycombinator.com/item?id=37831062
reference_id
reference_type
scores
url	https://news.ycombinator.com/item?id=37831062

173

reference_url	https://news.ycombinator.com/item?id=37837043
reference_id
reference_type
scores
url	https://news.ycombinator.com/item?id=37837043

174

reference_url	https://openssf.org/blog/2023/10/10/http-2-rapid-reset-vulnerability-highlights-need-for-rapid-response
reference_id
reference_type
scores
url	https://openssf.org/blog/2023/10/10/http-2-rapid-reset-vulnerability-highlights-need-for-rapid-response

175

reference_url	https://openssf.org/blog/2023/10/10/http-2-rapid-reset-vulnerability-highlights-need-for-rapid-response/
reference_id
reference_type
scores
url	https://openssf.org/blog/2023/10/10/http-2-rapid-reset-vulnerability-highlights-need-for-rapid-response/

176

reference_url	https://seanmonstar.com/post/730794151136935936/hyper-http2-rapid-reset-unaffected
reference_id
reference_type
scores
url	https://seanmonstar.com/post/730794151136935936/hyper-http2-rapid-reset-unaffected

177

reference_url	https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-http2-reset-d8Kf32vZ
reference_id
reference_type
scores
url	https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-http2-reset-d8Kf32vZ

178

reference_url	https://security.gentoo.org/glsa/202311-09
reference_id
reference_type
scores
url	https://security.gentoo.org/glsa/202311-09

179

reference_url	https://security.netapp.com/advisory/ntap-20231016-0001
reference_id
reference_type
scores
url	https://security.netapp.com/advisory/ntap-20231016-0001

180

reference_url	https://security.netapp.com/advisory/ntap-20231016-0001/
reference_id
reference_type
scores
url	https://security.netapp.com/advisory/ntap-20231016-0001/

181

reference_url	https://security.netapp.com/advisory/ntap-20240426-0007
reference_id
reference_type
scores
url	https://security.netapp.com/advisory/ntap-20240426-0007

182

reference_url	https://security.netapp.com/advisory/ntap-20240621-0006
reference_id
reference_type
scores
url	https://security.netapp.com/advisory/ntap-20240621-0006

183

reference_url	https://security.netapp.com/advisory/ntap-20240621-0007
reference_id
reference_type
scores
url	https://security.netapp.com/advisory/ntap-20240621-0007

184

reference_url	https://tomcat.apache.org/security-10.html#Fixed_in_Apache_Tomcat_10.1.14
reference_id
reference_type
scores
url	https://tomcat.apache.org/security-10.html#Fixed_in_Apache_Tomcat_10.1.14

185

reference_url	https://tomcat.apache.org/security-11.html#Fixed_in_Apache_Tomcat_11.0.0-M12
reference_id
reference_type
scores
url	https://tomcat.apache.org/security-11.html#Fixed_in_Apache_Tomcat_11.0.0-M12

186

reference_url	https://tomcat.apache.org/security-8.html#Fixed_in_Apache_Tomcat_8.5.94
reference_id
reference_type
scores
url	https://tomcat.apache.org/security-8.html#Fixed_in_Apache_Tomcat_8.5.94

187

reference_url	https://tomcat.apache.org/security-9.html#Fixed_in_Apache_Tomcat_9.0.81
reference_id
reference_type
scores
url	https://tomcat.apache.org/security-9.html#Fixed_in_Apache_Tomcat_9.0.81

188

reference_url	https://www.bleepingcomputer.com/news/security/new-http-2-rapid-reset-zero-day-attack-breaks-ddos-records
reference_id
reference_type
scores
url	https://www.bleepingcomputer.com/news/security/new-http-2-rapid-reset-zero-day-attack-breaks-ddos-records

189

reference_url	https://www.bleepingcomputer.com/news/security/new-http-2-rapid-reset-zero-day-attack-breaks-ddos-records/
reference_id
reference_type
scores
url	https://www.bleepingcomputer.com/news/security/new-http-2-rapid-reset-zero-day-attack-breaks-ddos-records/

190

reference_url	https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2023-44487
reference_id
reference_type
scores
url	https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2023-44487

191

reference_url	https://www.cisa.gov/news-events/alerts/2023/10/10/http2-rapid-reset-vulnerability-cve-2023-44487
reference_id
reference_type
scores
url	https://www.cisa.gov/news-events/alerts/2023/10/10/http2-rapid-reset-vulnerability-cve-2023-44487

192

reference_url	https://www.darkreading.com/cloud/internet-wide-zero-day-bug-fuels-largest-ever-ddos-event
reference_id
reference_type
scores
url	https://www.darkreading.com/cloud/internet-wide-zero-day-bug-fuels-largest-ever-ddos-event

193

reference_url	https://www.debian.org/security/2023/dsa-5521
reference_id
reference_type
scores
url	https://www.debian.org/security/2023/dsa-5521

194

reference_url	https://www.debian.org/security/2023/dsa-5522
reference_id
reference_type
scores
url	https://www.debian.org/security/2023/dsa-5522

195

reference_url	https://www.debian.org/security/2023/dsa-5540
reference_id
reference_type
scores
url	https://www.debian.org/security/2023/dsa-5540

196

reference_url	https://www.debian.org/security/2023/dsa-5549
reference_id
reference_type
scores
url	https://www.debian.org/security/2023/dsa-5549

197

reference_url	https://www.debian.org/security/2023/dsa-5558
reference_id
reference_type
scores
url	https://www.debian.org/security/2023/dsa-5558

198

reference_url	https://www.debian.org/security/2023/dsa-5570
reference_id
reference_type
scores
url	https://www.debian.org/security/2023/dsa-5570

199

reference_url	https://www.eclipse.org/lists/jetty-announce/msg00181.html
reference_id
reference_type
scores
url	https://www.eclipse.org/lists/jetty-announce/msg00181.html

200

reference_url	https://www.haproxy.com/blog/haproxy-is-not-affected-by-the-http-2-rapid-reset-attack-cve-2023-44487
reference_id
reference_type
scores
url	https://www.haproxy.com/blog/haproxy-is-not-affected-by-the-http-2-rapid-reset-attack-cve-2023-44487

201

reference_url	https://www.netlify.com/blog/netlify-successfully-mitigates-cve-2023-44487
reference_id
reference_type
scores
url	https://www.netlify.com/blog/netlify-successfully-mitigates-cve-2023-44487

202

reference_url	https://www.netlify.com/blog/netlify-successfully-mitigates-cve-2023-44487/
reference_id
reference_type
scores
url	https://www.netlify.com/blog/netlify-successfully-mitigates-cve-2023-44487/

203

reference_url	https://www.nginx.com/blog/http-2-rapid-reset-attack-impacting-f5-nginx-products
reference_id
reference_type
scores
url	https://www.nginx.com/blog/http-2-rapid-reset-attack-impacting-f5-nginx-products

204

reference_url	https://www.nginx.com/blog/http-2-rapid-reset-attack-impacting-f5-nginx-products/
reference_id
reference_type
scores
url	https://www.nginx.com/blog/http-2-rapid-reset-attack-impacting-f5-nginx-products/

205

reference_url	https://www.openwall.com/lists/oss-security/2023/10/10/6
reference_id
reference_type
scores
url	https://www.openwall.com/lists/oss-security/2023/10/10/6

206

reference_url	https://www.phoronix.com/news/HTTP2-Rapid-Reset-Attack
reference_id
reference_type
scores
url	https://www.phoronix.com/news/HTTP2-Rapid-Reset-Attack

207

reference_url	https://www.theregister.com/2023/10/10/http2_rapid_reset_zeroday
reference_id
reference_type
scores
url	https://www.theregister.com/2023/10/10/http2_rapid_reset_zeroday

208

reference_url	https://www.theregister.com/2023/10/10/http2_rapid_reset_zeroday/
reference_id
reference_type
scores
url	https://www.theregister.com/2023/10/10/http2_rapid_reset_zeroday/

209

reference_url	https://www.vicarius.io/vsociety/posts/rapid-reset-cve-2023-44487-dos-in-http2-understanding-the-root-cause
reference_id
reference_type
scores
url	https://www.vicarius.io/vsociety/posts/rapid-reset-cve-2023-44487-dos-in-http2-understanding-the-root-cause

210

reference_url	http://www.openwall.com/lists/oss-security/2023/10/13/4
reference_id
reference_type
scores
url	http://www.openwall.com/lists/oss-security/2023/10/13/4

211

reference_url	http://www.openwall.com/lists/oss-security/2023/10/13/9
reference_id
reference_type
scores
url	http://www.openwall.com/lists/oss-security/2023/10/13/9

212

reference_url	http://www.openwall.com/lists/oss-security/2023/10/18/4
reference_id
reference_type
scores
url	http://www.openwall.com/lists/oss-security/2023/10/18/4

213

reference_url	http://www.openwall.com/lists/oss-security/2023/10/18/8
reference_id
reference_type
scores
url	http://www.openwall.com/lists/oss-security/2023/10/18/8

214

reference_url	http://www.openwall.com/lists/oss-security/2023/10/19/6
reference_id
reference_type
scores
url	http://www.openwall.com/lists/oss-security/2023/10/19/6

215

reference_url	http://www.openwall.com/lists/oss-security/2023/10/20/8
reference_id
reference_type
scores
url	http://www.openwall.com/lists/oss-security/2023/10/20/8

216

reference_url	https://access.redhat.com/security/cve/cve-2023-44487
reference_id	CVE-2023-44487
reference_type
scores
url	https://access.redhat.com/security/cve/cve-2023-44487

217

reference_url	https://blog.vespa.ai/cve-2023-44487
reference_id	CVE-2023-44487
reference_type
scores
url	https://blog.vespa.ai/cve-2023-44487

218

reference_url	https://blog.vespa.ai/cve-2023-44487/
reference_id	CVE-2023-44487
reference_type
scores
url	https://blog.vespa.ai/cve-2023-44487/

219

reference_url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-44487

reference_id

CVE-2023-44487

reference_type

scores

value	Important
scoring_system	apache_tomcat
scoring_elements

url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-44487

220

reference_url	https://github.com/arkrwn/PoC/tree/main/CVE-2023-44487
reference_id	CVE-2023-44487
reference_type
scores
url	https://github.com/arkrwn/PoC/tree/main/CVE-2023-44487

221

reference_url	https://github.com/bcdannyboy/CVE-2023-44487
reference_id	CVE-2023-44487
reference_type
scores
url	https://github.com/bcdannyboy/CVE-2023-44487

222

reference_url	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-44487
reference_id	CVE-2023-44487
reference_type
scores
url	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-44487

223

reference_url	https://nvd.nist.gov/vuln/detail/CVE-2023-44487
reference_id	CVE-2023-44487
reference_type
scores
url	https://nvd.nist.gov/vuln/detail/CVE-2023-44487

224

reference_url	https://security.paloaltonetworks.com/CVE-2023-44487
reference_id	CVE-2023-44487
reference_type
scores
url	https://security.paloaltonetworks.com/CVE-2023-44487

225

reference_url	https://ubuntu.com/security/CVE-2023-44487
reference_id	CVE-2023-44487
reference_type
scores
url	https://ubuntu.com/security/CVE-2023-44487

226

reference_url	https://blog.qualys.com/vulnerabilities-threat-research/2023/10/10/cve-2023-44487-http-2-rapid-reset-attack
reference_id	CVE-2023-44487-HTTP-2-RAPID-RESET-ATTACK
reference_type
scores
url	https://blog.qualys.com/vulnerabilities-threat-research/2023/10/10/cve-2023-44487-http-2-rapid-reset-attack

227

reference_url	https://github.com/h2o/h2o/security/advisories/GHSA-2m7v-gc89-fjqf
reference_id	GHSA-2m7v-gc89-fjqf
reference_type
scores
url	https://github.com/h2o/h2o/security/advisories/GHSA-2m7v-gc89-fjqf

228

reference_url	https://github.com/advisories/GHSA-qppj-fm5r-hxr3
reference_id	GHSA-qppj-fm5r-hxr3
reference_type
scores
url	https://github.com/advisories/GHSA-qppj-fm5r-hxr3

229

reference_url	https://github.com/apple/swift-nio-http2/security/advisories/GHSA-qppj-fm5r-hxr3
reference_id	GHSA-qppj-fm5r-hxr3
reference_type
scores
url	https://github.com/apple/swift-nio-http2/security/advisories/GHSA-qppj-fm5r-hxr3

230

reference_url	https://github.com/advisories/GHSA-vx74-f528-fxqg
reference_id	GHSA-vx74-f528-fxqg
reference_type
scores
url	https://github.com/advisories/GHSA-vx74-f528-fxqg

231

reference_url	https://github.com/advisories/GHSA-xpw8-rcwv-8f8p
reference_id	GHSA-xpw8-rcwv-8f8p
reference_type
scores
url	https://github.com/advisories/GHSA-xpw8-rcwv-8f8p

232

reference_url	https://github.com/netty/netty/security/advisories/GHSA-xpw8-rcwv-8f8p
reference_id	GHSA-xpw8-rcwv-8f8p
reference_type
scores
url	https://github.com/netty/netty/security/advisories/GHSA-xpw8-rcwv-8f8p

fixed_packages

url	pkg:maven/org.apache.tomcat/tomcat@10.1.14
purl	pkg:maven/org.apache.tomcat/tomcat@10.1.14
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@10.1.14

url	pkg:maven/org.apache.tomcat/tomcat@11.0.0-M12
purl	pkg:maven/org.apache.tomcat/tomcat@11.0.0-M12
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@11.0.0-M12

aliases CVE-2023-44487, GHSA-2m7v-gc89-fjqf, GHSA-qppj-fm5r-hxr3, GHSA-vx74-f528-fxqg, GHSA-xpw8-rcwv-8f8p, GMS-2023-3377

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-hdnj-g415-2bbw

url VCID-j4ut-s3e4-qqh7

vulnerability_id VCID-j4ut-s3e4-qqh7

summary denial of service

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2023-24998

reference_id

reference_type

scores

value	0.339
scoring_system	epss
scoring_elements	0.97041
published_at	2026-05-30T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2023-24998

reference_url	https://commons.apache.org/proper/commons-fileupload/security-reports.html
reference_id
reference_type
scores
url	https://commons.apache.org/proper/commons-fileupload/security-reports.html

reference_url	https://github.com/apache/commons-fileupload
reference_id
reference_type
scores
url	https://github.com/apache/commons-fileupload

reference_url	https://github.com/apache/commons-fileupload/commit/e20c04990f7420ca917e96a84cec58b13a1b3d17
reference_id
reference_type
scores
url	https://github.com/apache/commons-fileupload/commit/e20c04990f7420ca917e96a84cec58b13a1b3d17

reference_url	https://github.com/apache/tomcat/commit/063e2e81ede50c287f737cc8e2915ce7217e886e
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/063e2e81ede50c287f737cc8e2915ce7217e886e

reference_url	https://github.com/apache/tomcat/commit/8a2285f13affa961cc65595aad999db5efae45ce
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/8a2285f13affa961cc65595aad999db5efae45ce

reference_url	https://github.com/apache/tomcat/commit/9ca96c8c1eba86c0aaa2e6be581ba2a7d4d4ae6e
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/9ca96c8c1eba86c0aaa2e6be581ba2a7d4d4ae6e

reference_url	https://github.com/apache/tomcat/commit/cf77cc545de0488fb89e24294151504a7432df74
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/cf77cc545de0488fb89e24294151504a7432df74

reference_url	https://github.com/apache/tomcat/commit/d53d8e7f77042cc32a3b98f589496a1ef5088e38
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/d53d8e7f77042cc32a3b98f589496a1ef5088e38

reference_url	https://github.com/search?q=repo%3Aapache%2Ftomcat+util.http+path%3A%2F%5Eres%5C%2Fbnd%5C%2F%2F&type=code
reference_id
reference_type
scores
url	https://github.com/search?q=repo%3Aapache%2Ftomcat+util.http+path%3A%2F%5Eres%5C%2Fbnd%5C%2F%2F&type=code

reference_url	https://lists.apache.org/thread/4xl4l09mhwg4vgsk7dxqogcjrobrrdoy
reference_id
reference_type
scores
url	https://lists.apache.org/thread/4xl4l09mhwg4vgsk7dxqogcjrobrrdoy

reference_url	https://lists.debian.org/debian-lts-announce/2023/10/msg00020.html
reference_id
reference_type
scores
url	https://lists.debian.org/debian-lts-announce/2023/10/msg00020.html

reference_url	https://lists.debian.org/debian-lts-announce/2025/07/msg00008.html
reference_id
reference_type
scores
url	https://lists.debian.org/debian-lts-announce/2025/07/msg00008.html

reference_url	https://security.gentoo.org/glsa/202305-37
reference_id
reference_type
scores
url	https://security.gentoo.org/glsa/202305-37

reference_url	https://security.netapp.com/advisory/ntap-20230302-0013
reference_id
reference_type
scores
url	https://security.netapp.com/advisory/ntap-20230302-0013

reference_url	https://security.netapp.com/advisory/ntap-20241108-0002
reference_id
reference_type
scores
url	https://security.netapp.com/advisory/ntap-20241108-0002

reference_url	https://tomcat.apache.org/security-10.html
reference_id
reference_type
scores
url	https://tomcat.apache.org/security-10.html

reference_url	https://tomcat.apache.org/security-11.html
reference_id
reference_type
scores
url	https://tomcat.apache.org/security-11.html

reference_url	https://tomcat.apache.org/security-8.html
reference_id
reference_type
scores
url	https://tomcat.apache.org/security-8.html

reference_url	https://tomcat.apache.org/security-9.html
reference_id
reference_type
scores
url	https://tomcat.apache.org/security-9.html

reference_url	https://www.debian.org/security/2023/dsa-5522
reference_id
reference_type
scores
url	https://www.debian.org/security/2023/dsa-5522

reference_url

https://security.archlinux.org/AVG-2829

reference_id

AVG-2829

reference_type

scores

value	Medium
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-2829

reference_url

https://security.archlinux.org/AVG-2830

reference_id

AVG-2830

reference_type

scores

value	Medium
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-2830

reference_url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-24998

reference_id

CVE-2023-24998

reference_type

scores

value	Important
scoring_system	apache_tomcat
scoring_elements

url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-24998

reference_url	https://nvd.nist.gov/vuln/detail/CVE-2023-24998
reference_id	CVE-2023-24998
reference_type
scores
url	https://nvd.nist.gov/vuln/detail/CVE-2023-24998

reference_url	https://github.com/advisories/GHSA-hfrx-6qgj-fp6c
reference_id	GHSA-hfrx-6qgj-fp6c
reference_type
scores
url	https://github.com/advisories/GHSA-hfrx-6qgj-fp6c

fixed_packages

url pkg:maven/org.apache.tomcat/tomcat@10.1.5

purl pkg:maven/org.apache.tomcat/tomcat@10.1.5

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-64r1-zcg6-qfb8

vulnerability	VCID-gted-g7jd-nqcf

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@10.1.5

url	pkg:maven/org.apache.tomcat/tomcat@11.0.0-M3
purl	pkg:maven/org.apache.tomcat/tomcat@11.0.0-M3
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@11.0.0-M3

aliases CVE-2023-24998, GHSA-hfrx-6qgj-fp6c

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-j4ut-s3e4-qqh7

url VCID-jz35-ynpa-sqfq

vulnerability_id VCID-jz35-ynpa-sqfq

summary

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2026-34487

reference_id

reference_type

scores

value	0.00091
scoring_system	epss
scoring_elements	0.25733
published_at	2026-05-30T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2026-34487

reference_url	https://github.com/apache/tomcat/commit/301bc6efbf72feb14dacfdfa3f50372182736150
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/301bc6efbf72feb14dacfdfa3f50372182736150

reference_url	https://github.com/apache/tomcat/commit/5eff2a773b8b728083e5195b3183df1b9e12a03d
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/5eff2a773b8b728083e5195b3183df1b9e12a03d

reference_url	https://github.com/apache/tomcat/commit/f593292a082e5ef9336a8db2b4b522f7f3e36976
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/f593292a082e5ef9336a8db2b4b522f7f3e36976

reference_url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-34487

reference_id

CVE-2026-34487

reference_type

scores

value	Low
scoring_system	apache_tomcat
scoring_elements

url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-34487

fixed_packages

url pkg:maven/org.apache.tomcat/tomcat@10.1.54

purl pkg:maven/org.apache.tomcat/tomcat@10.1.54

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4qzp-up1c-2kfq

vulnerability	VCID-5j78-np3z-rfda

vulnerability	VCID-9ptv-guzs-kyg1

vulnerability	VCID-c8b5-23zz-cudd

vulnerability	VCID-dk5d-3ebq-yfbn

vulnerability	VCID-kxvn-6xbg-4fep

vulnerability	VCID-pmx1-hkph-4qhd

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@10.1.54

url pkg:maven/org.apache.tomcat/tomcat@11.0.21

purl pkg:maven/org.apache.tomcat/tomcat@11.0.21

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4qzp-up1c-2kfq

vulnerability	VCID-5j78-np3z-rfda

vulnerability	VCID-9ptv-guzs-kyg1

vulnerability	VCID-c8b5-23zz-cudd

vulnerability	VCID-dk5d-3ebq-yfbn

vulnerability	VCID-kxvn-6xbg-4fep

vulnerability	VCID-pmx1-hkph-4qhd

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@11.0.21

aliases CVE-2026-34487

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-jz35-ynpa-sqfq

url VCID-kdhy-vpg2-nqgh

vulnerability_id VCID-kdhy-vpg2-nqgh

summary

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2024-23672

reference_id

reference_type

scores

value	0.01435
scoring_system	epss
scoring_elements	0.81005
published_at	2026-05-30T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2024-23672

reference_url	https://github.com/apache/tomcat
reference_id
reference_type
scores
url	https://github.com/apache/tomcat

reference_url	https://github.com/apache/tomcat/commit/0052b374684b613b0c849899b325ebe334ac6501
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/0052b374684b613b0c849899b325ebe334ac6501

reference_url	https://github.com/apache/tomcat/commit/3631adb1342d8bbd8598802a12b63ad02c37d591
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/3631adb1342d8bbd8598802a12b63ad02c37d591

reference_url	https://github.com/apache/tomcat/commit/52d6650e062d880704898d7d8c1b2b7a3efe8068
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/52d6650e062d880704898d7d8c1b2b7a3efe8068

reference_url	https://github.com/apache/tomcat/commit/b0e3b1bd78de270d53e319d7cb79eb282aa53cb9
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/b0e3b1bd78de270d53e319d7cb79eb282aa53cb9

reference_url	https://lists.apache.org/thread/cmpswfx6tj4s7x0nxxosvfqs11lvdx2f
reference_id
reference_type
scores
url	https://lists.apache.org/thread/cmpswfx6tj4s7x0nxxosvfqs11lvdx2f

reference_url	https://lists.debian.org/debian-lts-announce/2024/04/msg00001.html
reference_id
reference_type
scores
url	https://lists.debian.org/debian-lts-announce/2024/04/msg00001.html

reference_url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/3UWIS5MMGYDZBLJYT674ZI5AWFHDZ46B
reference_id
reference_type
scores
url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/3UWIS5MMGYDZBLJYT674ZI5AWFHDZ46B

reference_url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/736G4GPZWS2DSQO5WKXO3G6OMZKFEK55
reference_id
reference_type
scores
url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/736G4GPZWS2DSQO5WKXO3G6OMZKFEK55

reference_url	https://security.netapp.com/advisory/ntap-20240402-0002
reference_id
reference_type
scores
url	https://security.netapp.com/advisory/ntap-20240402-0002

reference_url	http://www.openwall.com/lists/oss-security/2024/03/13/4
reference_id
reference_type
scores
url	http://www.openwall.com/lists/oss-security/2024/03/13/4

reference_url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-23672

reference_id

CVE-2024-23672

reference_type

scores

value	Important
scoring_system	apache_tomcat
scoring_elements

url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-23672

reference_url	https://nvd.nist.gov/vuln/detail/CVE-2024-23672
reference_id	CVE-2024-23672
reference_type
scores
url	https://nvd.nist.gov/vuln/detail/CVE-2024-23672

reference_url

https://github.com/advisories/GHSA-v682-8vv8-vpwr

reference_id

GHSA-v682-8vv8-vpwr

reference_type

scores

value	MODERATE
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-v682-8vv8-vpwr

fixed_packages

url	pkg:maven/org.apache.tomcat/tomcat@10.1.19
purl	pkg:maven/org.apache.tomcat/tomcat@10.1.19
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@10.1.19

url	pkg:maven/org.apache.tomcat/tomcat@11.0.0-M17
purl	pkg:maven/org.apache.tomcat/tomcat@11.0.0-M17
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@11.0.0-M17

aliases CVE-2024-23672, GHSA-v682-8vv8-vpwr

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-kdhy-vpg2-nqgh

url VCID-kq3c-qp43-dqgg

vulnerability_id VCID-kq3c-qp43-dqgg

summary

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2025-24813

reference_id

reference_type

scores

value	0.9413
scoring_system	epss
scoring_elements	0.99917
published_at	2026-05-30T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2025-24813

reference_url	https://github.com/apache/tomcat/commit/0a668e0c27f2b7ca0cc7c6eea32253b9b5ecb29c
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/0a668e0c27f2b7ca0cc7c6eea32253b9b5ecb29c

reference_url	https://github.com/apache/tomcat/commit/eb61aade8f8daccaecabf07d428b877975622f72
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/eb61aade8f8daccaecabf07d428b877975622f72

reference_url	https://github.com/apache/tomcat/commit/f6c01d6577cf9a1e06792be47e623d36acc3b5dc
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/f6c01d6577cf9a1e06792be47e623d36acc3b5dc

reference_url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-24813

reference_id

CVE-2025-24813

reference_type

scores

value	Important
scoring_system	apache_tomcat
scoring_elements

url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-24813

fixed_packages

url	pkg:maven/org.apache.tomcat/tomcat@10.1.35
purl	pkg:maven/org.apache.tomcat/tomcat@10.1.35
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@10.1.35

url	pkg:maven/org.apache.tomcat/tomcat@11.0.3
purl	pkg:maven/org.apache.tomcat/tomcat@11.0.3
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@11.0.3

aliases CVE-2025-24813

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-kq3c-qp43-dqgg

url VCID-kxvn-6xbg-4fep

vulnerability_id VCID-kxvn-6xbg-4fep

summary

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2026-43515

reference_id

reference_type

scores

value	0.00095
scoring_system	epss
scoring_elements	0.2641
published_at	2026-05-30T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2026-43515

reference_url	https://github.com/apache/tomcat/commit/0659748659ec75253fea5aac72cab6f94e79c419
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/0659748659ec75253fea5aac72cab6f94e79c419

reference_url	https://github.com/apache/tomcat/commit/276087d9c7abbcecc6c4fb4e4b08cf64780c6e36
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/276087d9c7abbcecc6c4fb4e4b08cf64780c6e36

reference_url	https://github.com/apache/tomcat/commit/c621317382682206fb58ab92ebd3e1b6fdd10ce9
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/c621317382682206fb58ab92ebd3e1b6fdd10ce9

reference_url	https://github.com/apache/tomcat/commit/db919ff9912b4d61d1b702a1342b8bde39270031
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/db919ff9912b4d61d1b702a1342b8bde39270031

reference_url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-43515

reference_id

CVE-2026-43515

reference_type

scores

value	Moderate
scoring_system	apache_tomcat
scoring_elements

url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-43515

fixed_packages

url	pkg:maven/org.apache.tomcat/tomcat@10.1.55
purl	pkg:maven/org.apache.tomcat/tomcat@10.1.55
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@10.1.55

url	pkg:maven/org.apache.tomcat/tomcat@11.0.22
purl	pkg:maven/org.apache.tomcat/tomcat@11.0.22
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@11.0.22

aliases CVE-2026-43515

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-kxvn-6xbg-4fep

url VCID-mvgq-kb92-dqf8

vulnerability_id VCID-mvgq-kb92-dqf8

summary

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2024-38286

reference_id

reference_type

scores

value	0.00413
scoring_system	epss
scoring_elements	0.61765
published_at	2026-05-30T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2024-38286

reference_url	https://github.com/apache/tomcat/commit/3197862639732e16ec1164557bcd289ebc116c93
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/3197862639732e16ec1164557bcd289ebc116c93

reference_url	https://github.com/apache/tomcat/commit/3344c17cef094da4bb616f4186ed32039627b543
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/3344c17cef094da4bb616f4186ed32039627b543

reference_url	https://github.com/apache/tomcat/commit/76c5cce6f0bcef14b0c21c38910371ca7d322d13
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/76c5cce6f0bcef14b0c21c38910371ca7d322d13

reference_url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-38286

reference_id

CVE-2024-38286

reference_type

scores

value	Important
scoring_system	apache_tomcat
scoring_elements

url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-38286

fixed_packages

url	pkg:maven/org.apache.tomcat/tomcat@10.1.25
purl	pkg:maven/org.apache.tomcat/tomcat@10.1.25
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@10.1.25

url	pkg:maven/org.apache.tomcat/tomcat@11.0.0-M21
purl	pkg:maven/org.apache.tomcat/tomcat@11.0.0-M21
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@11.0.0-M21

aliases CVE-2024-38286

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-mvgq-kb92-dqf8

url VCID-nafh-ss66-efc1

vulnerability_id VCID-nafh-ss66-efc1

summary

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2024-52316

reference_id

reference_type

scores

value	0.02487
scoring_system	epss
scoring_elements	0.85559
published_at	2026-05-30T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2024-52316

reference_url	https://github.com/apache/tomcat/commit/6d097a66746635df6880fe7662a792156b0eca14
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/6d097a66746635df6880fe7662a792156b0eca14

reference_url	https://github.com/apache/tomcat/commit/7532f9dc4a8c37ec958f79dc82c4924a6c539223
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/7532f9dc4a8c37ec958f79dc82c4924a6c539223

reference_url	https://github.com/apache/tomcat/commit/acc2f01395f895980f5d8a64573fcc1bade13369
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/acc2f01395f895980f5d8a64573fcc1bade13369

reference_url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-52316

reference_id

CVE-2024-52316

reference_type

scores

value	Low
scoring_system	apache_tomcat
scoring_elements

url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-52316

fixed_packages

url pkg:maven/org.apache.tomcat/tomcat@10.1.31

purl pkg:maven/org.apache.tomcat/tomcat@10.1.31

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-58hq-8nzw-7bfw

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@10.1.31

url pkg:maven/org.apache.tomcat/tomcat@11.0.0

purl pkg:maven/org.apache.tomcat/tomcat@11.0.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-58hq-8nzw-7bfw

vulnerability	VCID-bapg-6hhe-nfhj

vulnerability	VCID-gted-g7jd-nqcf

vulnerability	VCID-j4ut-s3e4-qqh7

vulnerability	VCID-ryjx-b2fp-5bbc

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@11.0.0

aliases CVE-2024-52316

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-nafh-ss66-efc1

url VCID-p7x2-ejss-ffd1

vulnerability_id VCID-p7x2-ejss-ffd1

summary

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2025-53506

reference_id

reference_type

scores

value	0.01247
scoring_system	epss
scoring_elements	0.79619
published_at	2026-05-30T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2025-53506

reference_url	https://github.com/apache/tomcat/commit/2aa6261276ebe50b99276953591e3a2be7898bdb
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/2aa6261276ebe50b99276953591e3a2be7898bdb

reference_url	https://github.com/apache/tomcat/commit/434772930f362145516dd60681134e7f0cf8115b
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/434772930f362145516dd60681134e7f0cf8115b

reference_url	https://github.com/apache/tomcat/commit/be8f330f83ceddaf3baeed57522e571572b6b99b
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/be8f330f83ceddaf3baeed57522e571572b6b99b

reference_url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-53506

reference_id

CVE-2025-53506

reference_type

scores

value	Important
scoring_system	apache_tomcat
scoring_elements

url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-53506

fixed_packages

url pkg:maven/org.apache.tomcat/tomcat@10.1.43

purl pkg:maven/org.apache.tomcat/tomcat@10.1.43

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-61p6-f9vu-7fca

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@10.1.43

url pkg:maven/org.apache.tomcat/tomcat@11.0.9

purl pkg:maven/org.apache.tomcat/tomcat@11.0.9

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-61p6-f9vu-7fca

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@11.0.9

aliases CVE-2025-53506

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-p7x2-ejss-ffd1

url VCID-pmx1-hkph-4qhd

vulnerability_id VCID-pmx1-hkph-4qhd

summary

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2026-43514

reference_id

reference_type

scores

value	0.001
scoring_system	epss
scoring_elements	0.27363
published_at	2026-05-30T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2026-43514

reference_url	https://github.com/apache/tomcat/commit/2e676264ce27448a4d4841e42c1238bd10ca3755
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/2e676264ce27448a4d4841e42c1238bd10ca3755

reference_url	https://github.com/apache/tomcat/commit/933dcdbf2515972280002929e7e597dead2e9ffa
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/933dcdbf2515972280002929e7e597dead2e9ffa

reference_url	https://github.com/apache/tomcat/commit/a102a2a157868ca51d83eaf5a119ccd9976a113e
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/a102a2a157868ca51d83eaf5a119ccd9976a113e

reference_url	https://github.com/apache/tomcat/commit/a90c358400c133b6173c6b26591923bf814a8508
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/a90c358400c133b6173c6b26591923bf814a8508

reference_url	https://github.com/apache/tomcat/commit/d35d9d23263c8e4af561f615c960c91697ff200e
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/d35d9d23263c8e4af561f615c960c91697ff200e

reference_url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-43514

reference_id

CVE-2026-43514

reference_type

scores

value	Low
scoring_system	apache_tomcat
scoring_elements

url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-43514

fixed_packages

url	pkg:maven/org.apache.tomcat/tomcat@10.1.55
purl	pkg:maven/org.apache.tomcat/tomcat@10.1.55
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@10.1.55

url	pkg:maven/org.apache.tomcat/tomcat@11.0.22
purl	pkg:maven/org.apache.tomcat/tomcat@11.0.22
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@11.0.22

aliases CVE-2026-43514

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-pmx1-hkph-4qhd

url VCID-rx6f-x5cc-6bef

vulnerability_id VCID-rx6f-x5cc-6bef

summary

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2026-25854

reference_id

reference_type

scores

value	0.00033
scoring_system	epss
scoring_elements	0.10247
published_at	2026-05-30T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2026-25854

reference_url	https://github.com/apache/tomcat/commit/4c5d306001b780c9316aea5ff6502c524fb20695
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/4c5d306001b780c9316aea5ff6502c524fb20695

reference_url	https://github.com/apache/tomcat/commit/5fb910f9a9dafa37a0c0965a1bd62a21dcf437f2
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/5fb910f9a9dafa37a0c0965a1bd62a21dcf437f2

reference_url	https://github.com/apache/tomcat/commit/c5a45ae68d07f7a07be2a875e5b6772d66c4e5d0
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/c5a45ae68d07f7a07be2a875e5b6772d66c4e5d0

reference_url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-25854

reference_id

CVE-2026-25854

reference_type

scores

value	Low
scoring_system	apache_tomcat
scoring_elements

url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-25854

fixed_packages

url pkg:maven/org.apache.tomcat/tomcat@10.1.53

purl pkg:maven/org.apache.tomcat/tomcat@10.1.53

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1mms-9rqw-xqhq

vulnerability	VCID-3e3b-6dse-s3gf

vulnerability	VCID-aug4-yyp5-37f8

vulnerability	VCID-jz35-ynpa-sqfq

vulnerability	VCID-up1n-hunu-rkak

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@10.1.53

url pkg:maven/org.apache.tomcat/tomcat@11.0.20

purl pkg:maven/org.apache.tomcat/tomcat@11.0.20

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1mms-9rqw-xqhq

vulnerability	VCID-3e3b-6dse-s3gf

vulnerability	VCID-aug4-yyp5-37f8

vulnerability	VCID-jz35-ynpa-sqfq

vulnerability	VCID-up1n-hunu-rkak

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@11.0.20

aliases CVE-2026-25854

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-rx6f-x5cc-6bef

url VCID-ryjx-b2fp-5bbc

vulnerability_id VCID-ryjx-b2fp-5bbc

summary

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2023-46589

reference_id

reference_type

scores

value	0.53735
scoring_system	epss
scoring_elements	0.9804
published_at	2026-05-30T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2023-46589

reference_url	https://github.com/apache/tomcat
reference_id
reference_type
scores
url	https://github.com/apache/tomcat

reference_url	https://github.com/apache/tomcat/commit/6f181e1062a472bc5f0234980f66cbde42c1041b
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/6f181e1062a472bc5f0234980f66cbde42c1041b

reference_url	https://github.com/apache/tomcat/commit/7a2d8818fcea0b51747a67af9510ce7977245ebd
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/7a2d8818fcea0b51747a67af9510ce7977245ebd

reference_url	https://github.com/apache/tomcat/commit/aa92971e879a519384c517febc39fd04c48d4642
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/aa92971e879a519384c517febc39fd04c48d4642

reference_url	https://github.com/apache/tomcat/commit/b5776d769bffeade865061bc8ecbeb2b56167b08
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/b5776d769bffeade865061bc8ecbeb2b56167b08

reference_url	https://lists.apache.org/thread/0rqq6ktozqc42ro8hhxdmmdjm1k1tpxr
reference_id
reference_type
scores
url	https://lists.apache.org/thread/0rqq6ktozqc42ro8hhxdmmdjm1k1tpxr

reference_url	https://lists.debian.org/debian-lts-announce/2024/01/msg00001.html
reference_id
reference_type
scores
url	https://lists.debian.org/debian-lts-announce/2024/01/msg00001.html

reference_url	https://security.netapp.com/advisory/ntap-20231214-0009
reference_id
reference_type
scores
url	https://security.netapp.com/advisory/ntap-20231214-0009

reference_url	https://tomcat.apache.org/security-10.html
reference_id
reference_type
scores
url	https://tomcat.apache.org/security-10.html

reference_url	https://tomcat.apache.org/security-11.html
reference_id
reference_type
scores
url	https://tomcat.apache.org/security-11.html

reference_url	https://tomcat.apache.org/security-8.html
reference_id
reference_type
scores
url	https://tomcat.apache.org/security-8.html

reference_url	https://tomcat.apache.org/security-9.html
reference_id
reference_type
scores
url	https://tomcat.apache.org/security-9.html

reference_url	https://www.openwall.com/lists/oss-security/2023/11/28/2
reference_id
reference_type
scores
url	https://www.openwall.com/lists/oss-security/2023/11/28/2

reference_url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-46589

reference_id

CVE-2023-46589

reference_type

scores

value	Important
scoring_system	apache_tomcat
scoring_elements

url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-46589

reference_url	https://nvd.nist.gov/vuln/detail/CVE-2023-46589
reference_id	CVE-2023-46589
reference_type
scores
url	https://nvd.nist.gov/vuln/detail/CVE-2023-46589

reference_url	https://github.com/advisories/GHSA-fccv-jmmp-qg76
reference_id	GHSA-fccv-jmmp-qg76
reference_type
scores
url	https://github.com/advisories/GHSA-fccv-jmmp-qg76

fixed_packages

url	pkg:maven/org.apache.tomcat/tomcat@10.1.16
purl	pkg:maven/org.apache.tomcat/tomcat@10.1.16
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@10.1.16

url pkg:maven/org.apache.tomcat/tomcat@11.0.0-M11

purl pkg:maven/org.apache.tomcat/tomcat@11.0.0-M11

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-35fm-apgj-jqd3

vulnerability	VCID-g9rk-me3p-1fey

vulnerability	VCID-hdnj-g415-2bbw

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@11.0.0-M11

aliases CVE-2023-46589, GHSA-fccv-jmmp-qg76

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ryjx-b2fp-5bbc

url VCID-s6p4-xq69-6fb4

vulnerability_id VCID-s6p4-xq69-6fb4

summary

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2025-52520

reference_id

reference_type

scores

value	0.00683
scoring_system	epss
scoring_elements	0.71984
published_at	2026-05-30T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2025-52520

reference_url	https://github.com/apache/tomcat/commit/927d66fbc294cb65242102b817a45fd80834e040
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/927d66fbc294cb65242102b817a45fd80834e040

reference_url	https://github.com/apache/tomcat/commit/a51e4bedccfafd35b7cdd0ee3e22267dee9f90db
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/a51e4bedccfafd35b7cdd0ee3e22267dee9f90db

reference_url	https://github.com/apache/tomcat/commit/fc42bbccb9041fafd194fbfdf3eab1d44cb5c45c
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/fc42bbccb9041fafd194fbfdf3eab1d44cb5c45c

reference_url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-52520

reference_id

CVE-2025-52520

reference_type

scores

value	Low
scoring_system	apache_tomcat
scoring_elements

url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-52520

fixed_packages

url pkg:maven/org.apache.tomcat/tomcat@10.1.43

purl pkg:maven/org.apache.tomcat/tomcat@10.1.43

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-61p6-f9vu-7fca

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@10.1.43

url pkg:maven/org.apache.tomcat/tomcat@11.0.9

purl pkg:maven/org.apache.tomcat/tomcat@11.0.9

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-61p6-f9vu-7fca

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@11.0.9

aliases CVE-2025-52520

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-s6p4-xq69-6fb4

url VCID-twp1-3h1f-r3de

vulnerability_id VCID-twp1-3h1f-r3de

summary multiple issues

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2025-46701

reference_id

reference_type

scores

value	0.00132
scoring_system	epss
scoring_elements	0.3237
published_at	2026-05-30T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2025-46701

reference_url	https://github.com/apache/tomcat/commit/0f01966eb60015d975525019e12a087f05ebf01a
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/0f01966eb60015d975525019e12a087f05ebf01a

reference_url	https://github.com/apache/tomcat/commit/238d2aa54b99f91d1111467e2237d2244c64e558
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/238d2aa54b99f91d1111467e2237d2244c64e558

reference_url	https://github.com/apache/tomcat/commit/2c6800111e7d8d8d5403c07978ea9bff3db5a5a5
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/2c6800111e7d8d8d5403c07978ea9bff3db5a5a5

reference_url	https://github.com/apache/tomcat/commit/8cb95ff03221067c511b3fa66d4f745bc4b0a605
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/8cb95ff03221067c511b3fa66d4f745bc4b0a605

reference_url	https://github.com/apache/tomcat/commit/8df00018a252baa9497615d6420fb6c10466fa74
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/8df00018a252baa9497615d6420fb6c10466fa74

reference_url	https://github.com/apache/tomcat/commit/fab7247d2f0e3a29d5daef565f829f383e10e5e2
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/fab7247d2f0e3a29d5daef565f829f383e10e5e2

reference_url

https://security.archlinux.org/AVG-2888

reference_id

AVG-2888

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-2888

reference_url

https://security.archlinux.org/AVG-2889

reference_id

AVG-2889

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-2889

reference_url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-46701

reference_id

CVE-2025-46701

reference_type

scores

value	Low
scoring_system	apache_tomcat
scoring_elements

url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-46701

fixed_packages

url pkg:maven/org.apache.tomcat/tomcat@10.1.41

purl pkg:maven/org.apache.tomcat/tomcat@10.1.41

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-9w58-wv96-dfhb

vulnerability	VCID-b4g7-nvey-5bh3

vulnerability	VCID-eehy-pgzv-vudx

vulnerability	VCID-ffqg-mkqf-xqgh

vulnerability	VCID-y5je-ud4g-ufdc

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@10.1.41

url pkg:maven/org.apache.tomcat/tomcat@11.0.7

purl pkg:maven/org.apache.tomcat/tomcat@11.0.7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-9w58-wv96-dfhb

vulnerability	VCID-b4g7-nvey-5bh3

vulnerability	VCID-eehy-pgzv-vudx

vulnerability	VCID-ffqg-mkqf-xqgh

vulnerability	VCID-y5je-ud4g-ufdc

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@11.0.7

aliases CVE-2025-46701

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-twp1-3h1f-r3de

url VCID-wpew-vv5h-r7c5

vulnerability_id VCID-wpew-vv5h-r7c5

summary

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2024-50379

reference_id

reference_type

scores

value	0.84776
scoring_system	epss
scoring_elements	0.99355
published_at	2026-05-30T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2024-50379

reference_url	https://github.com/apache/tomcat/commit/05ddeeaa54df1e2dc427d0164bedd6b79f78d81f
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/05ddeeaa54df1e2dc427d0164bedd6b79f78d81f

reference_url	https://github.com/apache/tomcat/commit/43b507ebac9d268b1ea3d908e296cc6e46795c00
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/43b507ebac9d268b1ea3d908e296cc6e46795c00

reference_url	https://github.com/apache/tomcat/commit/631500b0c9b2a2a2abb707e3de2e10a5936e5d41
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/631500b0c9b2a2a2abb707e3de2e10a5936e5d41

reference_url	https://github.com/apache/tomcat/commit/684247ae85fa633b9197b32391de59fc54703842
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/684247ae85fa633b9197b32391de59fc54703842

reference_url	https://github.com/apache/tomcat/commit/8554f6b1722b33a2ce8b0a3fad37825f3a75f2d2
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/8554f6b1722b33a2ce8b0a3fad37825f3a75f2d2

reference_url	https://github.com/apache/tomcat/commit/cc7a98b57c6dc1df21979fcff94a36e068f4456c
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/cc7a98b57c6dc1df21979fcff94a36e068f4456c

reference_url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-50379

reference_id

CVE-2024-50379

reference_type

scores

value	Important
scoring_system	apache_tomcat
scoring_elements

url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-50379

fixed_packages

url pkg:maven/org.apache.tomcat/tomcat@10.1.34

purl pkg:maven/org.apache.tomcat/tomcat@10.1.34

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-kq3c-qp43-dqgg

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@10.1.34

url pkg:maven/org.apache.tomcat/tomcat@11.0.2

purl pkg:maven/org.apache.tomcat/tomcat@11.0.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-kq3c-qp43-dqgg

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@11.0.2

aliases CVE-2024-50379

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-wpew-vv5h-r7c5

url VCID-wtt7-38dy-gbec

vulnerability_id VCID-wtt7-38dy-gbec

summary

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2022-42252

reference_id

reference_type

scores

value	0.0029
scoring_system	epss
scoring_elements	0.52618
published_at	2026-05-30T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2022-42252

reference_url	https://github.com/apache/tomcat/commit/0d089a15047faf9cb3c82f80f4d28febd4798920
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/0d089a15047faf9cb3c82f80f4d28febd4798920

reference_url	https://github.com/apache/tomcat/commit/4c7f4fd09d2cc1692112ef70b8ee23a7a037ae77
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/4c7f4fd09d2cc1692112ef70b8ee23a7a037ae77

reference_url	https://github.com/apache/tomcat/commit/a1c07906d8dcaf7957e5cc97f5cdbac7d18a205a
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/a1c07906d8dcaf7957e5cc97f5cdbac7d18a205a

reference_url	https://github.com/apache/tomcat/commit/c9fe754e5d17e262dfbd3eab2a03ca96ff372dc3
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/c9fe754e5d17e262dfbd3eab2a03ca96ff372dc3

reference_url	https://lists.apache.org/thread/zzcxzvqfdqn515zfs3dxb7n8gty589sq
reference_id
reference_type
scores
url	https://lists.apache.org/thread/zzcxzvqfdqn515zfs3dxb7n8gty589sq

reference_url	https://security.gentoo.org/glsa/202305-37
reference_id
reference_type
scores
url	https://security.gentoo.org/glsa/202305-37

reference_url	https://tomcat.apache.org/security-10.html
reference_id
reference_type
scores
url	https://tomcat.apache.org/security-10.html

reference_url	https://tomcat.apache.org/security-8.html
reference_id
reference_type
scores
url	https://tomcat.apache.org/security-8.html

reference_url	https://tomcat.apache.org/security-9.html
reference_id
reference_type
scores
url	https://tomcat.apache.org/security-9.html

reference_url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42252

reference_id

CVE-2022-42252

reference_type

scores

value	Low
scoring_system	apache_tomcat
scoring_elements

url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42252

reference_url	https://nvd.nist.gov/vuln/detail/CVE-2022-42252
reference_id	CVE-2022-42252
reference_type
scores
url	https://nvd.nist.gov/vuln/detail/CVE-2022-42252

reference_url

https://github.com/advisories/GHSA-p22x-g9px-3945

reference_id

GHSA-p22x-g9px-3945

reference_type

scores

value	HIGH
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-p22x-g9px-3945

fixed_packages

url pkg:maven/org.apache.tomcat/tomcat@10.1.1

purl pkg:maven/org.apache.tomcat/tomcat@10.1.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-a8x5-hzkb-vuf4

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@10.1.1

aliases CVE-2022-42252, GHSA-p22x-g9px-3945

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-wtt7-38dy-gbec

url VCID-xdgh-k9su-4bes

vulnerability_id VCID-xdgh-k9su-4bes

summary

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2025-31651

reference_id

reference_type

scores

value	0.00199
scoring_system	epss
scoring_elements	0.41847
published_at	2026-05-30T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2025-31651

reference_url	https://github.com/apache/tomcat/commit/066bf6b6a15a4e7e0941d4acf096841165b97098
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/066bf6b6a15a4e7e0941d4acf096841165b97098

reference_url	https://github.com/apache/tomcat/commit/175dc75fc428930034a6c93fb52f830d955d8e64
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/175dc75fc428930034a6c93fb52f830d955d8e64

reference_url	https://github.com/apache/tomcat/commit/ee3ab548e92345eca0cbd1f01649eb36c6f29454
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/ee3ab548e92345eca0cbd1f01649eb36c6f29454

reference_url	https://github.com/apache/tomcat/commit/fbecc915a10c5a3d634c5e2c6ced4ff479ce9953
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/fbecc915a10c5a3d634c5e2c6ced4ff479ce9953

reference_url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-31651

reference_id

CVE-2025-31651

reference_type

scores

value	Low
scoring_system	apache_tomcat
scoring_elements

url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-31651

fixed_packages

url pkg:maven/org.apache.tomcat/tomcat@10.1.40

purl pkg:maven/org.apache.tomcat/tomcat@10.1.40

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-twp1-3h1f-r3de

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@10.1.40

url pkg:maven/org.apache.tomcat/tomcat@11.0.6

purl pkg:maven/org.apache.tomcat/tomcat@11.0.6

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-twp1-3h1f-r3de

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@11.0.6

aliases CVE-2025-31651

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-xdgh-k9su-4bes

url VCID-xym1-6dp5-t7d7

vulnerability_id VCID-xym1-6dp5-t7d7

summary

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2022-23181

reference_id

reference_type

scores

value	0.00236
scoring_system	epss
scoring_elements	0.46611
published_at	2026-05-30T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2022-23181

reference_url	https://github.com/apache/tomcat/commit/094800b12d6c958d7b4540372c5a95698658ada1
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/094800b12d6c958d7b4540372c5a95698658ada1

reference_url	https://github.com/apache/tomcat/commit/1385c624b4a1e994426e810075c850edc38a700e
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/1385c624b4a1e994426e810075c850edc38a700e

reference_url	https://github.com/apache/tomcat/commit/70da1aaa51e0f9d088438e9d958812a144e12754
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/70da1aaa51e0f9d088438e9d958812a144e12754

reference_url	https://github.com/apache/tomcat/commit/97943959ba721ad5e8e8ba765a68d2b153348530
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/97943959ba721ad5e8e8ba765a68d2b153348530

reference_url	https://lists.apache.org/thread/l8x62p3k19yfcb208jo4zrb83k5mfwg9
reference_id
reference_type
scores
url	https://lists.apache.org/thread/l8x62p3k19yfcb208jo4zrb83k5mfwg9

reference_url	https://lists.debian.org/debian-lts-announce/2022/10/msg00029.html
reference_id
reference_type
scores
url	https://lists.debian.org/debian-lts-announce/2022/10/msg00029.html

reference_url	https://security.netapp.com/advisory/ntap-20220217-0010/
reference_id
reference_type
scores
url	https://security.netapp.com/advisory/ntap-20220217-0010/

reference_url	https://www.debian.org/security/2022/dsa-5265
reference_id
reference_type
scores
url	https://www.debian.org/security/2022/dsa-5265

reference_url	https://www.oracle.com/security-alerts/cpuapr2022.html
reference_id
reference_type
scores
url	https://www.oracle.com/security-alerts/cpuapr2022.html

reference_url	https://www.oracle.com/security-alerts/cpujul2022.html
reference_id
reference_type
scores
url	https://www.oracle.com/security-alerts/cpujul2022.html

reference_url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23181

reference_id

CVE-2022-23181

reference_type

scores

value	Low
scoring_system	apache_tomcat
scoring_elements

url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23181

reference_url	https://nvd.nist.gov/vuln/detail/CVE-2022-23181
reference_id	CVE-2022-23181
reference_type
scores
url	https://nvd.nist.gov/vuln/detail/CVE-2022-23181

reference_url

https://github.com/advisories/GHSA-9f3j-pm6f-9fm5

reference_id

GHSA-9f3j-pm6f-9fm5

reference_type

scores

value	HIGH
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-9f3j-pm6f-9fm5

fixed_packages

url	pkg:maven/org.apache.tomcat/tomcat@10.1.0-M10
purl	pkg:maven/org.apache.tomcat/tomcat@10.1.0-M10
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@10.1.0-M10

aliases CVE-2022-23181, GHSA-9f3j-pm6f-9fm5

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-xym1-6dp5-t7d7

url VCID-y5je-ud4g-ufdc

vulnerability_id VCID-y5je-ud4g-ufdc

summary multiple issues

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2025-49125

reference_id

reference_type

scores

value	0.00189
scoring_system	epss
scoring_elements	0.40564
published_at	2026-05-30T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2025-49125

reference_url	https://github.com/apache/tomcat/commit/7617b9c247bc77ed0444dd69adcd8aa48777886c
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/7617b9c247bc77ed0444dd69adcd8aa48777886c

reference_url	https://github.com/apache/tomcat/commit/9418e3ff9f1f4c006b4661311ae9376c52d162b9
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/9418e3ff9f1f4c006b4661311ae9376c52d162b9

reference_url	https://github.com/apache/tomcat/commit/d94bd36fb7eb32e790dae0339bc249069649a637
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/d94bd36fb7eb32e790dae0339bc249069649a637

reference_url

https://security.archlinux.org/AVG-2888

reference_id

AVG-2888

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-2888

reference_url

https://security.archlinux.org/AVG-2889

reference_id

AVG-2889

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-2889

reference_url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-49125

reference_id

CVE-2025-49125

reference_type

scores

value	Moderate
scoring_system	apache_tomcat
scoring_elements

url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-49125

fixed_packages

url pkg:maven/org.apache.tomcat/tomcat@10.1.42

purl pkg:maven/org.apache.tomcat/tomcat@10.1.42

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-p7x2-ejss-ffd1

vulnerability	VCID-s6p4-xq69-6fb4

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@10.1.42

url pkg:maven/org.apache.tomcat/tomcat@11.0.8

purl pkg:maven/org.apache.tomcat/tomcat@11.0.8

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-p7x2-ejss-ffd1

vulnerability	VCID-s6p4-xq69-6fb4

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@11.0.8

aliases CVE-2025-49125

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-y5je-ud4g-ufdc

url VCID-z1yq-nwk7-1kba

vulnerability_id VCID-z1yq-nwk7-1kba

summary

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2023-41080

reference_id

reference_type

scores

value	0.11586
scoring_system	epss
scoring_elements	0.93765
published_at	2026-05-30T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2023-41080

reference_url	https://github.com/apache/tomcat
reference_id
reference_type
scores
url	https://github.com/apache/tomcat

reference_url	https://github.com/apache/tomcat/commit/4998ad745b67edeadefe541c94ed029b53933d3b
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/4998ad745b67edeadefe541c94ed029b53933d3b

reference_url	https://github.com/apache/tomcat/commit/77c0ce2d169efa248b64b992e547aad549ec906b
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/77c0ce2d169efa248b64b992e547aad549ec906b

reference_url	https://github.com/apache/tomcat/commit/bb4624a9f3e69d495182ebfa68d7983076407a27
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/bb4624a9f3e69d495182ebfa68d7983076407a27

reference_url	https://github.com/apache/tomcat/commit/e3703c9abb8fe0d5602f6ba8a8f11d4b6940815a
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/e3703c9abb8fe0d5602f6ba8a8f11d4b6940815a

reference_url	https://lists.apache.org/thread/71wvwprtx2j2m54fovq9zr7gbm2wow2f
reference_id
reference_type
scores
url	https://lists.apache.org/thread/71wvwprtx2j2m54fovq9zr7gbm2wow2f

reference_url	https://lists.debian.org/debian-lts-announce/2023/10/msg00020.html
reference_id
reference_type
scores
url	https://lists.debian.org/debian-lts-announce/2023/10/msg00020.html

reference_url	https://security.netapp.com/advisory/ntap-20230921-0006
reference_id
reference_type
scores
url	https://security.netapp.com/advisory/ntap-20230921-0006

reference_url	https://www.debian.org/security/2023/dsa-5521
reference_id
reference_type
scores
url	https://www.debian.org/security/2023/dsa-5521

reference_url	https://www.debian.org/security/2023/dsa-5522
reference_id
reference_type
scores
url	https://www.debian.org/security/2023/dsa-5522

reference_url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-41080

reference_id

CVE-2023-41080

reference_type

scores

value	Moderate
scoring_system	apache_tomcat
scoring_elements

url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-41080

reference_url	https://nvd.nist.gov/vuln/detail/CVE-2023-41080
reference_id	CVE-2023-41080
reference_type
scores
url	https://nvd.nist.gov/vuln/detail/CVE-2023-41080

reference_url	https://github.com/advisories/GHSA-q3mw-pvr8-9ggc
reference_id	GHSA-q3mw-pvr8-9ggc
reference_type
scores
url	https://github.com/advisories/GHSA-q3mw-pvr8-9ggc

fixed_packages

url pkg:maven/org.apache.tomcat/tomcat@10.1.13

purl pkg:maven/org.apache.tomcat/tomcat@10.1.13

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-35fm-apgj-jqd3

vulnerability	VCID-g9rk-me3p-1fey

vulnerability	VCID-hdnj-g415-2bbw

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@10.1.13

url pkg:maven/org.apache.tomcat/tomcat@11.0.0-M11

purl pkg:maven/org.apache.tomcat/tomcat@11.0.0-M11

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-35fm-apgj-jqd3

vulnerability	VCID-g9rk-me3p-1fey

vulnerability	VCID-hdnj-g415-2bbw

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@11.0.0-M11

aliases CVE-2023-41080, GHSA-q3mw-pvr8-9ggc

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-z1yq-nwk7-1kba

url VCID-z6g3-j67d-87hc

vulnerability_id VCID-z6g3-j67d-87hc

summary

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2025-61795

reference_id

reference_type

scores

value	0.00129
scoring_system	epss
scoring_elements	0.32028
published_at	2026-05-30T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2025-61795

reference_url	https://cert-portal.siemens.com/productcert/html/ssa-032379.html
reference_id
reference_type
scores
url	https://cert-portal.siemens.com/productcert/html/ssa-032379.html

reference_url	https://github.com/apache/tomcat/commit/1cdf5f730ede75a0759492f179ac21ca4ff68e06
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/1cdf5f730ede75a0759492f179ac21ca4ff68e06

reference_url	https://github.com/apache/tomcat/commit/af6e9181620304c0d818121c29c074e1330610d0
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/af6e9181620304c0d818121c29c074e1330610d0

reference_url	https://github.com/apache/tomcat/commit/afa422bd7ca1eef0f507259c682fd876494d9c3b
reference_id
reference_type
scores
url	https://github.com/apache/tomcat/commit/afa422bd7ca1eef0f507259c682fd876494d9c3b

reference_url	https://lists.apache.org/thread/wm9mx8brmx9g4zpywm06ryrtvd3160pp
reference_id
reference_type
scores
url	https://lists.apache.org/thread/wm9mx8brmx9g4zpywm06ryrtvd3160pp

reference_url	https://tomcat.apache.org/security-10.html#Fixed_in_Apache_Tomcat_10.1.47
reference_id
reference_type
scores
url	https://tomcat.apache.org/security-10.html#Fixed_in_Apache_Tomcat_10.1.47

reference_url	https://tomcat.apache.org/security-11.html#Fixed_in_Apache_Tomcat_11.0.12
reference_id
reference_type
scores
url	https://tomcat.apache.org/security-11.html#Fixed_in_Apache_Tomcat_11.0.12

reference_url	https://tomcat.apache.org/security-9.html#Fixed_in_Apache_Tomcat_9.0.110
reference_id
reference_type
scores
url	https://tomcat.apache.org/security-9.html#Fixed_in_Apache_Tomcat_9.0.110

reference_url	http://www.openwall.com/lists/oss-security/2025/10/27/6
reference_id
reference_type
scores
url	http://www.openwall.com/lists/oss-security/2025/10/27/6

reference_url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-61795

reference_id

CVE-2025-61795

reference_type

scores

value	Low
scoring_system	apache_tomcat
scoring_elements

url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-61795

reference_url	https://nvd.nist.gov/vuln/detail/CVE-2025-61795
reference_id	CVE-2025-61795
reference_type
scores
url	https://nvd.nist.gov/vuln/detail/CVE-2025-61795

reference_url

https://github.com/advisories/GHSA-hgrr-935x-pq79

reference_id

GHSA-hgrr-935x-pq79

reference_type

scores

value	LOW
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-hgrr-935x-pq79

fixed_packages

url	pkg:maven/org.apache.tomcat/tomcat@10.1.47
purl	pkg:maven/org.apache.tomcat/tomcat@10.1.47
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@10.1.47

url	pkg:maven/org.apache.tomcat/tomcat@11.0.12
purl	pkg:maven/org.apache.tomcat/tomcat@11.0.12
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@11.0.12

aliases CVE-2025-61795, GHSA-hgrr-935x-pq79

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-z6g3-j67d-87hc

Fixing_vulnerabilities

Risk_score null

Resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@10.1.0-M1

Package Instance