Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:apache/tomcat@3.0.0
Typeapache
Namespace
Nametomcat
Version3.0.0
Qualifiers
Subpath
Is_vulnerabletrue
Next_non_vulnerable_version4.1.3
Latest_non_vulnerable_version11.0.22
Affected_by_vulnerabilities
0
url VCID-5efr-bxfc-mbde
vulnerability_id VCID-5efr-bxfc-mbde
summary 
Apache Tomcat allows webmasters to insert xss into error messages
A cross-site scripting vulnerability in Apache Tomcat 3.2.1 allows a malicious webmaster to embed Javascript in a request for a .JSP file, which causes the Javascript to be inserted into an error message.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2001-0829
reference_id
reference_type
scores
0
value 0.00991
scoring_system epss
scoring_elements 0.77237
published_at 2026-06-04T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2001-0829
1
reference_url https://web.archive.org/web/20021108153830/http://online.securityfocus.com/bid/2982
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://web.archive.org/web/20021108153830/http://online.securityfocus.com/bid/2982
2
reference_url https://web.archive.org/web/20021201182720/http://jakarta.apache.org/tomcat/tomcat-3.2-doc/readme
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://web.archive.org/web/20021201182720/http://jakarta.apache.org/tomcat/tomcat-3.2-doc/readme
3
reference_url https://web.archive.org/web/20061208015126/http://archive.cert.uni-stuttgart.de/archive/bugtraq/2001/07/msg00021.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://web.archive.org/web/20061208015126/http://archive.cert.uni-stuttgart.de/archive/bugtraq/2001/07/msg00021.html
4
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2001-0829
reference_id CVE-2001-0829
reference_type
scores
0
value Moderate
scoring_system apache_tomcat
scoring_elements
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2001-0829
5
reference_url https://nvd.nist.gov/vuln/detail/CVE-2001-0829
reference_id CVE-2001-0829
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2001-0829
6
reference_url https://github.com/advisories/GHSA-58hj-575g-5j25
reference_id GHSA-58hj-575g-5j25
reference_type
scores
url https://github.com/advisories/GHSA-58hj-575g-5j25
fixed_packages
0
url pkg:apache/tomcat@3.2.2
purl pkg:apache/tomcat@3.2.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-uass-dm1n-5ye1
resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@3.2.2
aliases CVE-2001-0829, GHSA-58hj-575g-5j25
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-5efr-bxfc-mbde
1
url VCID-9wav-vv7v-vqgg
vulnerability_id VCID-9wav-vv7v-vqgg
summary 
Jakarta Tomcat Denial of Service vulnerability
Jakarta Tomcat before 3.3.1a on certain Windows systems may allow remote attackers to cause a denial of service (thread hang and resource consumption) via a request for a JSP page containing an MS-DOS device name, such as aux.jsp.
references
0
reference_url http://jakarta.apache.org/builds/jakarta-tomcat/release/v3.3.1a/RELEASE-NOTES-3.3.1a.txt
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://jakarta.apache.org/builds/jakarta-tomcat/release/v3.3.1a/RELEASE-NOTES-3.3.1a.txt
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2003-0045
reference_id
reference_type
scores
0
value 0.01508
scoring_system epss
scoring_elements 0.81512
published_at 2026-06-04T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2003-0045
2
reference_url https://exchange.xforce.ibmcloud.com/vulnerabilities/12102
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://exchange.xforce.ibmcloud.com/vulnerabilities/12102
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2003-0045
reference_id CVE-2003-0045
reference_type
scores
0
value Important
scoring_system apache_tomcat
scoring_elements
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2003-0045
4
reference_url https://nvd.nist.gov/vuln/detail/CVE-2003-0045
reference_id CVE-2003-0045
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2003-0045
5
reference_url https://github.com/advisories/GHSA-w97x-xfxf-f9xj
reference_id GHSA-w97x-xfxf-f9xj
reference_type
scores
url https://github.com/advisories/GHSA-w97x-xfxf-f9xj
fixed_packages
0
url pkg:apache/tomcat@3.3.1
purl pkg:apache/tomcat@3.3.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-d348-wmg8-xfc8
1
vulnerability VCID-sn4j-5r9j-dyad
resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@3.3.1
aliases CVE-2003-0045, GHSA-w97x-xfxf-f9xj
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-9wav-vv7v-vqgg
2
url VCID-ax2u-tqd6-t3an
vulnerability_id VCID-ax2u-tqd6-t3an
summary
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2005-0808
reference_id
reference_type
scores
0
value 0.1863
scoring_system epss
scoring_elements 0.9539
published_at 2026-06-04T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2005-0808
1
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-0808
reference_id CVE-2005-0808
reference_type
scores
0
value Important
scoring_system apache_tomcat
scoring_elements
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-0808
fixed_packages
aliases CVE-2005-0808
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ax2u-tqd6-t3an
3
url VCID-cp39-ahr6-e7dx
vulnerability_id VCID-cp39-ahr6-e7dx
summary 
Apache Tomcat Directory Traversal
Directory traversal vulnerability in source.jsp of Apache Tomcat before 3.1 allows remote attackers to read arbitrary files via a `..` (dot dot) in the argument to source.jsp.
references
0
reference_url http://marc.info/?l=bugtraq&m=95371672300045&w=2
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://marc.info/?l=bugtraq&m=95371672300045&w=2
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2000-1210
reference_id
reference_type
scores
0
value 0.03687
scoring_system epss
scoring_elements 0.88141
published_at 2026-06-04T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2000-1210
2
reference_url https://web.archive.org/web/20020818015647/http://www.iss.net/security_center/static/4205.php
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://web.archive.org/web/20020818015647/http://www.iss.net/security_center/static/4205.php
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2000-1210
reference_id CVE-2000-1210
reference_type
scores
0
value Important
scoring_system apache_tomcat
scoring_elements
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2000-1210
4
reference_url https://nvd.nist.gov/vuln/detail/CVE-2000-1210
reference_id CVE-2000-1210
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2000-1210
5
reference_url https://github.com/advisories/GHSA-4gr9-99j3-vqxv
reference_id GHSA-4gr9-99j3-vqxv
reference_type
scores
url https://github.com/advisories/GHSA-4gr9-99j3-vqxv
fixed_packages
0
url pkg:apache/tomcat@3.1.0
purl pkg:apache/tomcat@3.1.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-5efr-bxfc-mbde
1
vulnerability VCID-5gdg-c6sm-dugk
2
vulnerability VCID-634c-ymju-ayd4
3
vulnerability VCID-9wav-vv7v-vqgg
4
vulnerability VCID-ax2u-tqd6-t3an
5
vulnerability VCID-d348-wmg8-xfc8
6
vulnerability VCID-pq4f-81v3-zkee
7
vulnerability VCID-sn4j-5r9j-dyad
8
vulnerability VCID-t1u3-h2qw-kyb4
9
vulnerability VCID-w9cc-qjyx-v7b3
10
vulnerability VCID-wpnp-3yad-ybcj
resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@3.1.0
aliases CVE-2000-1210, GHSA-4gr9-99j3-vqxv
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-cp39-ahr6-e7dx
4
url VCID-d348-wmg8-xfc8
vulnerability_id VCID-d348-wmg8-xfc8
summary 
Tomcat uses trusted privileges when processing web.xml file
Jakarta Tomcat before 3.3.1a, when used with JDK 1.3.1 or earlier, uses trusted privileges when processing the web.xml file, which could allow remote attackers to read portions of some files through the web.xml file.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2003-0043
reference_id
reference_type
scores
0
value 0.03204
scoring_system epss
scoring_elements 0.87245
published_at 2026-06-04T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2003-0043
1
reference_url https://exchange.xforce.ibmcloud.com/vulnerabilities/11195
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://exchange.xforce.ibmcloud.com/vulnerabilities/11195
2
reference_url https://github.com/apache/tomcat
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/apache/tomcat
3
reference_url https://web.archive.org/web/20030804165204/http://jakarta.apache.org/builds/jakarta-tomcat/release/v3.3.1a/RELEASE-NOTES-3.3.1a.txt
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://web.archive.org/web/20030804165204/http://jakarta.apache.org/builds/jakarta-tomcat/release/v3.3.1a/RELEASE-NOTES-3.3.1a.txt
4
reference_url https://web.archive.org/web/20030810045410/http://jakarta.apache.org/builds/jakarta-tomcat/release/v3.3.1a
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://web.archive.org/web/20030810045410/http://jakarta.apache.org/builds/jakarta-tomcat/release/v3.3.1a
5
reference_url https://web.archive.org/web/20030819144200/http://www.ciac.org/ciac/bulletins/n-060.shtml
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://web.archive.org/web/20030819144200/http://www.ciac.org/ciac/bulletins/n-060.shtml
6
reference_url https://web.archive.org/web/20131213024606/http://www.securityfocus.com/bid/6722
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://web.archive.org/web/20131213024606/http://www.securityfocus.com/bid/6722
7
reference_url https://web.archive.org/web/20140627151430/http://www.securityfocus.com/advisories/5111
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://web.archive.org/web/20140627151430/http://www.securityfocus.com/advisories/5111
8
reference_url http://www.debian.org/security/2003/dsa-246
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://www.debian.org/security/2003/dsa-246
9
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2003-0043
reference_id CVE-2003-0043
reference_type
scores
0
value Important
scoring_system apache_tomcat
scoring_elements
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2003-0043
10
reference_url https://nvd.nist.gov/vuln/detail/CVE-2003-0043
reference_id CVE-2003-0043
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2003-0043
11
reference_url https://github.com/advisories/GHSA-cvx5-7vc7-rg77
reference_id GHSA-cvx5-7vc7-rg77
reference_type
scores
url https://github.com/advisories/GHSA-cvx5-7vc7-rg77
fixed_packages
0
url pkg:apache/tomcat@3.3.1-a
purl pkg:apache/tomcat@3.3.1-a
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-w9cc-qjyx-v7b3
resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@3.3.1-a
aliases CVE-2003-0043, GHSA-cvx5-7vc7-rg77
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-d348-wmg8-xfc8
5
url VCID-sn4j-5r9j-dyad
vulnerability_id VCID-sn4j-5r9j-dyad
summary 
Jakarta Tomcat Directory Listing vulnerability
Jakarta Tomcat before 3.3.1a, when used with JDK 1.3.1 or earlier, allows remote attackers to list directories even with an index.html or other file present, or obtain unprocessed source code for a JSP file, via a URL containing a null character.
references
0
reference_url http://jakarta.apache.org/builds/jakarta-tomcat/release/v3.3.1a
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://jakarta.apache.org/builds/jakarta-tomcat/release/v3.3.1a
1
reference_url http://jakarta.apache.org/builds/jakarta-tomcat/release/v3.3.1a/
reference_id
reference_type
scores
url http://jakarta.apache.org/builds/jakarta-tomcat/release/v3.3.1a/
2
reference_url http://jakarta.apache.org/builds/jakarta-tomcat/release/v3.3.1a/RELEASE-NOTES-3.3.1a.txt
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://jakarta.apache.org/builds/jakarta-tomcat/release/v3.3.1a/RELEASE-NOTES-3.3.1a.txt
3
reference_url http://marc.info/?l=bugtraq&m=104394568616290&w=2
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://marc.info/?l=bugtraq&m=104394568616290&w=2
4
reference_url https://api.first.org/data/v1/epss?cve=CVE-2003-0042
reference_id
reference_type
scores
0
value 0.55831
scoring_system epss
scoring_elements 0.98133
published_at 2026-06-04T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2003-0042
5
reference_url http://secunia.com/advisories/7972
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://secunia.com/advisories/7972
6
reference_url http://secunia.com/advisories/7977
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://secunia.com/advisories/7977
7
reference_url https://exchange.xforce.ibmcloud.com/vulnerabilities/11194
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://exchange.xforce.ibmcloud.com/vulnerabilities/11194
8
reference_url https://github.com/apache/tomcat
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/apache/tomcat
9
reference_url http://www.ciac.org/ciac/bulletins/n-060.shtml
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://www.ciac.org/ciac/bulletins/n-060.shtml
10
reference_url http://www.debian.org/security/2003/dsa-246
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://www.debian.org/security/2003/dsa-246
11
reference_url http://www.securityfocus.com/advisories/5111
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://www.securityfocus.com/advisories/5111
12
reference_url http://www.securityfocus.com/bid/6721
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://www.securityfocus.com/bid/6721
13
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2003-0042
reference_id CVE-2003-0042
reference_type
scores
0
value Important
scoring_system apache_tomcat
scoring_elements
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2003-0042
14
reference_url https://nvd.nist.gov/vuln/detail/CVE-2003-0042
reference_id CVE-2003-0042
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2003-0042
15
reference_url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/remote/22205.txt
reference_id CVE-2003-0042;OSVDB-12232
reference_type exploit
scores
url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/remote/22205.txt
16
reference_url https://www.securityfocus.com/bid/6721/info
reference_id CVE-2003-0042;OSVDB-12232
reference_type exploit
scores
url https://www.securityfocus.com/bid/6721/info
17
reference_url https://github.com/advisories/GHSA-qfw2-wvrw-mvw4
reference_id GHSA-qfw2-wvrw-mvw4
reference_type
scores
url https://github.com/advisories/GHSA-qfw2-wvrw-mvw4
fixed_packages
0
url pkg:apache/tomcat@3.3.1-a
purl pkg:apache/tomcat@3.3.1-a
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-w9cc-qjyx-v7b3
resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@3.3.1-a
aliases CVE-2003-0042, GHSA-qfw2-wvrw-mvw4
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-sn4j-5r9j-dyad
6
url VCID-t1u3-h2qw-kyb4
vulnerability_id VCID-t1u3-h2qw-kyb4
summary 
Apache Tomcat Allows Source Disclosure
Apache Software Foundation Tomcat Servlet prior to 3.2.2 allows a remote attacker to read the source code to arbitrary 'jsp' files via a malformed URL request which does not end with an HTTP protocol specification (i.e. HTTP/1.0).
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2001-0590
reference_id
reference_type
scores
0
value 0.48298
scoring_system epss
scoring_elements 0.97793
published_at 2026-06-04T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2001-0590
1
reference_url https://exchange.xforce.ibmcloud.com/vulnerabilities/6971
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://exchange.xforce.ibmcloud.com/vulnerabilities/6971
2
reference_url https://web.archive.org/web/20020711002734/http://archives.neohapsis.com/archives/bugtraq/2001-04/0031.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://web.archive.org/web/20020711002734/http://archives.neohapsis.com/archives/bugtraq/2001-04/0031.html
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2001-0590
reference_id CVE-2001-0590
reference_type
scores
0
value Moderate
scoring_system apache_tomcat
scoring_elements
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2001-0590
4
reference_url https://nvd.nist.gov/vuln/detail/CVE-2001-0590
reference_id CVE-2001-0590
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2001-0590
5
reference_url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/remote/20716.txt
reference_id CVE-2001-0590;OSVDB-5580
reference_type exploit
scores
url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/remote/20716.txt
6
reference_url https://www.securityfocus.com/bid/2518/info
reference_id CVE-2001-0590;OSVDB-5580
reference_type exploit
scores
url https://www.securityfocus.com/bid/2518/info
7
reference_url https://github.com/advisories/GHSA-x445-mmpw-7r4f
reference_id GHSA-x445-mmpw-7r4f
reference_type
scores
url https://github.com/advisories/GHSA-x445-mmpw-7r4f
fixed_packages
0
url pkg:apache/tomcat@3.2.2
purl pkg:apache/tomcat@3.2.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-uass-dm1n-5ye1
resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@3.2.2
aliases CVE-2001-0590, GHSA-x445-mmpw-7r4f
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-t1u3-h2qw-kyb4
7
url VCID-w9cc-qjyx-v7b3
vulnerability_id VCID-w9cc-qjyx-v7b3
summary 
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
Multiple cross-site scripting (XSS) vulnerabilities in the (1) examples and (2) ROOT web applications for Jakarta Tomcat 3.x through 3.3.1a allow remote attackers to insert arbitrary web script or HTML.
references
0
reference_url http://jakarta.apache.org/builds/jakarta-tomcat/release/v3.3.1a
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://jakarta.apache.org/builds/jakarta-tomcat/release/v3.3.1a
1
reference_url http://jakarta.apache.org/builds/jakarta-tomcat/release/v3.3.1a/
reference_id
reference_type
scores
url http://jakarta.apache.org/builds/jakarta-tomcat/release/v3.3.1a/
2
reference_url http://jakarta.apache.org/builds/jakarta-tomcat/release/v3.3.1a/RELEASE-NOTES-3.3.1a.txt
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://jakarta.apache.org/builds/jakarta-tomcat/release/v3.3.1a/RELEASE-NOTES-3.3.1a.txt
3
reference_url https://api.first.org/data/v1/epss?cve=CVE-2003-0044
reference_id
reference_type
scores
0
value 0.27285
scoring_system epss
scoring_elements 0.96497
published_at 2026-06-04T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2003-0044
4
reference_url http://secunia.com/advisories/7972
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://secunia.com/advisories/7972
5
reference_url https://exchange.xforce.ibmcloud.com/vulnerabilities/11196
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://exchange.xforce.ibmcloud.com/vulnerabilities/11196
6
reference_url http://www.ciac.org/ciac/bulletins/n-060.shtml
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://www.ciac.org/ciac/bulletins/n-060.shtml
7
reference_url http://www.debian.org/security/2003/dsa-246
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://www.debian.org/security/2003/dsa-246
8
reference_url http://www.osvdb.org/9203
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://www.osvdb.org/9203
9
reference_url http://www.osvdb.org/9204
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://www.osvdb.org/9204
10
reference_url http://www.securityfocus.com/advisories/5111
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://www.securityfocus.com/advisories/5111
11
reference_url http://www.securityfocus.com/bid/6720
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://www.securityfocus.com/bid/6720
12
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2003-0044
reference_id CVE-2003-0044
reference_type
scores
0
value Moderate
scoring_system apache_tomcat
scoring_elements
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2003-0044
13
reference_url https://nvd.nist.gov/vuln/detail/CVE-2003-0044
reference_id CVE-2003-0044
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2003-0044
14
reference_url https://github.com/advisories/GHSA-5hgm-qm5m-5vmw
reference_id GHSA-5hgm-qm5m-5vmw
reference_type
scores
url https://github.com/advisories/GHSA-5hgm-qm5m-5vmw
fixed_packages
0
url pkg:apache/tomcat@3.3.2
purl pkg:apache/tomcat@3.3.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-6d5n-5df2-7fgs
1
vulnerability VCID-ax2u-tqd6-t3an
2
vulnerability VCID-qz87-x4zb-rud7
3
vulnerability VCID-uwuf-vukf-cqck
resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@3.3.2
aliases CVE-2003-0044, GHSA-5hgm-qm5m-5vmw
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-w9cc-qjyx-v7b3
Fixing_vulnerabilities
Risk_score4.0
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:apache/tomcat@3.0.0