Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:maven/org.apache.tomcat/tomcat@8.0.0-RC9
Typemaven
Namespaceorg.apache.tomcat
Nametomcat
Version8.0.0-RC9
Qualifiers
Subpath
Is_vulnerabletrue
Next_non_vulnerable_version9.0.117
Latest_non_vulnerable_version11.0.21
Affected_by_vulnerabilities
0
url VCID-w82a-7kk2-p3f1
vulnerability_id VCID-w82a-7kk2-p3f1
summary Apache Tomcat before 6.0.39, 7.x before 7.0.50, and 8.x before 8.0.0-RC10 allows attackers to obtain "Tomcat internals" information by leveraging the presence of an untrusted web application with a context.xml, web.xml, *.jspx, *.tagx, or *.tld XML document containing an external entity declaration in conjunction with an entity reference, related to an XML External Entity (XXE) issue.
references
0
reference_url http://advisories.mageia.org/MGASA-2014-0148.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://advisories.mageia.org/MGASA-2014-0148.html
1
reference_url http://marc.info/?l=bugtraq&m=144498216801440&w=2
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://marc.info/?l=bugtraq&m=144498216801440&w=2
2
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-4590.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-4590.json
3
reference_url https://api.first.org/data/v1/epss?cve=CVE-2013-4590
reference_id
reference_type
scores
0
value 0.00922
scoring_system epss
scoring_elements 0.75925
published_at 2026-04-01T12:55:00Z
1
value 0.00922
scoring_system epss
scoring_elements 0.76009
published_at 2026-04-21T12:55:00Z
2
value 0.00922
scoring_system epss
scoring_elements 0.76025
published_at 2026-04-18T12:55:00Z
3
value 0.00922
scoring_system epss
scoring_elements 0.76022
published_at 2026-04-16T12:55:00Z
4
value 0.00922
scoring_system epss
scoring_elements 0.75982
published_at 2026-04-13T12:55:00Z
5
value 0.00922
scoring_system epss
scoring_elements 0.75989
published_at 2026-04-12T12:55:00Z
6
value 0.00922
scoring_system epss
scoring_elements 0.76012
published_at 2026-04-11T12:55:00Z
7
value 0.00922
scoring_system epss
scoring_elements 0.75987
published_at 2026-04-09T12:55:00Z
8
value 0.00922
scoring_system epss
scoring_elements 0.75973
published_at 2026-04-08T12:55:00Z
9
value 0.00922
scoring_system epss
scoring_elements 0.75939
published_at 2026-04-07T12:55:00Z
10
value 0.00922
scoring_system epss
scoring_elements 0.75961
published_at 2026-04-04T12:55:00Z
11
value 0.00922
scoring_system epss
scoring_elements 0.75929
published_at 2026-04-02T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2013-4590
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1069911
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://bugzilla.redhat.com/show_bug.cgi?id=1069911
5
reference_url https://github.com/apache/tomcat
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/apache/tomcat
6
reference_url https://github.com/apache/tomcat70/commit/b9e06ead01984483af73f48e7861bc7897f5e84f
reference_id
reference_type
scores
url https://github.com/apache/tomcat70/commit/b9e06ead01984483af73f48e7861bc7897f5e84f
7
reference_url https://github.com/apache/tomcat/commit/05c84ff8304a69a30b251f207a7b93c2c882564d
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/apache/tomcat/commit/05c84ff8304a69a30b251f207a7b93c2c882564d
8
reference_url https://github.com/apache/tomcat/commit/78dd7e6f3d8481bc3bcd71ca5b20296de1283888
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/apache/tomcat/commit/78dd7e6f3d8481bc3bcd71ca5b20296de1283888
9
reference_url https://github.com/apache/tomcat/commit/b9e06ead01984483af73f48e7861bc7897f5e84f
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/apache/tomcat/commit/b9e06ead01984483af73f48e7861bc7897f5e84f
10
reference_url https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04851013
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04851013
11
reference_url https://lists.apache.org/thread.html/37220405a377c0182d2afdbc36461c4783b2930fbeae3a17f1333113@%3Cdev.tomcat.apache.org%3E
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://lists.apache.org/thread.html/37220405a377c0182d2afdbc36461c4783b2930fbeae3a17f1333113@%3Cdev.tomcat.apache.org%3E
12
reference_url https://lists.apache.org/thread.html/39ae1f0bd5867c15755a6f959b271ade1aea04ccdc3b2e639dcd903b@%3Cdev.tomcat.apache.org%3E
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://lists.apache.org/thread.html/39ae1f0bd5867c15755a6f959b271ade1aea04ccdc3b2e639dcd903b@%3Cdev.tomcat.apache.org%3E
13
reference_url https://lists.apache.org/thread.html/b84ad1258a89de5c9c853c7f2d3ad77e5b8b2930be9e132d5cef6b95@%3Cdev.tomcat.apache.org%3E
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://lists.apache.org/thread.html/b84ad1258a89de5c9c853c7f2d3ad77e5b8b2930be9e132d5cef6b95@%3Cdev.tomcat.apache.org%3E
14
reference_url https://lists.apache.org/thread.html/b8a1bf18155b552dcf9a928ba808cbadad84c236d85eab3033662cfb@%3Cdev.tomcat.apache.org%3E
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://lists.apache.org/thread.html/b8a1bf18155b552dcf9a928ba808cbadad84c236d85eab3033662cfb@%3Cdev.tomcat.apache.org%3E
15
reference_url https://lists.apache.org/thread.html/r03c597a64de790ba42c167efacfa23300c3d6c9fe589ab87fe02859c@%3Cdev.tomcat.apache.org%3E
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://lists.apache.org/thread.html/r03c597a64de790ba42c167efacfa23300c3d6c9fe589ab87fe02859c@%3Cdev.tomcat.apache.org%3E
16
reference_url https://lists.apache.org/thread.html/r587e50b86c1a96ee301f751d50294072d142fd6dc08a8987ae9f3a9b@%3Cdev.tomcat.apache.org%3E
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://lists.apache.org/thread.html/r587e50b86c1a96ee301f751d50294072d142fd6dc08a8987ae9f3a9b@%3Cdev.tomcat.apache.org%3E
17
reference_url https://svn.apache.org/viewvc?view=rev&rev=1549528
reference_id
reference_type
scores
url https://svn.apache.org/viewvc?view=rev&rev=1549528
18
reference_url https://svn.apache.org/viewvc?view=rev&rev=1549529
reference_id
reference_type
scores
url https://svn.apache.org/viewvc?view=rev&rev=1549529
19
reference_url https://svn.apache.org/viewvc?view=rev&rev=1558828
reference_id
reference_type
scores
url https://svn.apache.org/viewvc?view=rev&rev=1558828
20
reference_url http://svn.apache.org/viewvc?view=revision&revision=1549528
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://svn.apache.org/viewvc?view=revision&revision=1549528
21
reference_url http://svn.apache.org/viewvc?view=revision&revision=1549529
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://svn.apache.org/viewvc?view=revision&revision=1549529
22
reference_url http://svn.apache.org/viewvc?view=revision&revision=1558828
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://svn.apache.org/viewvc?view=revision&revision=1558828
23
reference_url http://tomcat.apache.org/security-6.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://tomcat.apache.org/security-6.html
24
reference_url http://tomcat.apache.org/security-7.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://tomcat.apache.org/security-7.html
25
reference_url http://tomcat.apache.org/security-8.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://tomcat.apache.org/security-8.html
26
reference_url http://www-01.ibm.com/support/docview.wss?uid=swg21667883
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://www-01.ibm.com/support/docview.wss?uid=swg21667883
27
reference_url http://www-01.ibm.com/support/docview.wss?uid=swg21675886
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://www-01.ibm.com/support/docview.wss?uid=swg21675886
28
reference_url http://www-01.ibm.com/support/docview.wss?uid=swg21677147
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://www-01.ibm.com/support/docview.wss?uid=swg21677147
29
reference_url http://www-01.ibm.com/support/docview.wss?uid=swg21678231
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://www-01.ibm.com/support/docview.wss?uid=swg21678231
30
reference_url http://www.debian.org/security/2016/dsa-3530
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://www.debian.org/security/2016/dsa-3530
31
reference_url http://www.oracle.com/technetwork/security-advisory/cpuoct2016-2881722.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://www.oracle.com/technetwork/security-advisory/cpuoct2016-2881722.html
32
reference_url http://www.oracle.com/technetwork/topics/security/cpuoct2014-1972960.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://www.oracle.com/technetwork/topics/security/cpuoct2014-1972960.html
33
reference_url http://www.vmware.com/security/advisories/VMSA-2014-0008.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://www.vmware.com/security/advisories/VMSA-2014-0008.html
34
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4590
reference_id CVE-2013-4590
reference_type
scores
0
value Low
scoring_system apache_tomcat
scoring_elements
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4590
35
reference_url https://nvd.nist.gov/vuln/detail/CVE-2013-4590
reference_id CVE-2013-4590
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2013-4590
36
reference_url https://github.com/advisories/GHSA-87w9-x2c3-hrjj
reference_id GHSA-87w9-x2c3-hrjj
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-87w9-x2c3-hrjj
37
reference_url https://security.gentoo.org/glsa/201412-29
reference_id GLSA-201412-29
reference_type
scores
url https://security.gentoo.org/glsa/201412-29
38
reference_url https://access.redhat.com/errata/RHSA-2014:1038
reference_id RHSA-2014:1038
reference_type
scores
url https://access.redhat.com/errata/RHSA-2014:1038
39
reference_url https://access.redhat.com/errata/RHSA-2014:1086
reference_id RHSA-2014:1086
reference_type
scores
url https://access.redhat.com/errata/RHSA-2014:1086
40
reference_url https://access.redhat.com/errata/RHSA-2014:1087
reference_id RHSA-2014:1087
reference_type
scores
url https://access.redhat.com/errata/RHSA-2014:1087
41
reference_url https://access.redhat.com/errata/RHSA-2014:1088
reference_id RHSA-2014:1088
reference_type
scores
url https://access.redhat.com/errata/RHSA-2014:1088
fixed_packages
0
url pkg:maven/org.apache.tomcat/tomcat@8.0.0-RC10
purl pkg:maven/org.apache.tomcat/tomcat@8.0.0-RC10
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3r3s-q21j-c3au
1
vulnerability VCID-e7kd-kk57-mkd6
2
vulnerability VCID-gv12-4ruf-kfhq
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@8.0.0-RC10
aliases CVE-2013-4590, GHSA-87w9-x2c3-hrjj
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-w82a-7kk2-p3f1
Fixing_vulnerabilities
Risk_score3.1
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@8.0.0-RC9