Vulnerability Instance
Lookup for vulnerabilities affecting packages.
GET /api/vulnerabilities/30331?format=api
{ "url": "http://public2.vulnerablecode.io/api/vulnerabilities/30331?format=api", "vulnerability_id": "VCID-e9dg-8439-nucb", "summary": "", "aliases": [ { "alias": "CVE-2011-3375" }, { "alias": "GHSA-rp8h-vr48-4j8p" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1060?format=api", "purl": "pkg:apache/tomcat@6.0.35", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-74c9-hu6z-8kg4" }, { "vulnerability": "VCID-a4k2-q92y-7khb" }, { "vulnerability": "VCID-fje8-2ajy-kyb4" }, { "vulnerability": "VCID-r94g-m96h-k3e6" }, { "vulnerability": "VCID-y97x-xaq8-h3bu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@6.0.35" }, { "url": "http://public2.vulnerablecode.io/api/packages/996?format=api", "purl": "pkg:apache/tomcat@7.0.22", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-mbz3-479y-ruey" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@7.0.22" }, { "url": "http://public2.vulnerablecode.io/api/packages/1437?format=api", "purl": "pkg:ebuild/www-servers/tomcat@7.0.23", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/www-servers/tomcat@7.0.23" } ], "affected_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1062?format=api", "purl": "pkg:apache/tomcat@6.0.30", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-8av4-cm9e-4kh9" }, { "vulnerability": "VCID-e9dg-8439-nucb" }, { "vulnerability": "VCID-f6dc-5wps-z3ax" }, { "vulnerability": "VCID-r94g-m96h-k3e6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@6.0.30" }, { "url": "http://public2.vulnerablecode.io/api/packages/1054?format=api", "purl": "pkg:apache/tomcat@6.0.33", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-a4yd-d7cp-yfgn" }, { "vulnerability": "VCID-e9dg-8439-nucb" }, { "vulnerability": "VCID-mbz3-479y-ruey" }, { "vulnerability": "VCID-va9j-s3bx-nycu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@6.0.33" }, { "url": "http://public2.vulnerablecode.io/api/packages/876?format=api", "purl": "pkg:apache/tomcat@7.0.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1f31-et57-5qbx" }, { "vulnerability": "VCID-1xhq-fftg-ufd2" }, { "vulnerability": "VCID-3cvx-fuuh-ybf9" }, { "vulnerability": "VCID-3p2v-jj5g-qbbp" }, { "vulnerability": "VCID-4c8y-tn9d-v3d5" }, { "vulnerability": "VCID-4tdx-52h3-bkfj" }, { "vulnerability": "VCID-5hp9-mbcu-2bdt" }, { "vulnerability": "VCID-5nu4-5ude-4yhc" }, { "vulnerability": "VCID-5uvn-j8na-kuf7" }, { "vulnerability": "VCID-62hn-sj8p-9fgs" }, { "vulnerability": "VCID-65td-2enz-63hf" }, { "vulnerability": "VCID-6tzd-v653-9bdq" }, { "vulnerability": "VCID-74c9-hu6z-8kg4" }, { "vulnerability": "VCID-824z-m36f-87ea" }, { "vulnerability": "VCID-8aty-dfqt-ufe1" }, { "vulnerability": "VCID-8av4-cm9e-4kh9" }, { "vulnerability": "VCID-9a2q-ujcy-u3dx" }, { "vulnerability": "VCID-9gs9-4vzf-uqbu" }, { "vulnerability": "VCID-a4k2-q92y-7khb" }, { "vulnerability": "VCID-b25a-4gka-5yhr" }, { "vulnerability": "VCID-b2j2-rqat-3yhq" }, { "vulnerability": "VCID-bwn2-ebxb-xqbm" }, { "vulnerability": "VCID-cpun-p57h-2fc7" }, { "vulnerability": "VCID-dt1c-w14g-2fbd" }, { "vulnerability": "VCID-e9dg-8439-nucb" }, { "vulnerability": "VCID-f6dc-5wps-z3ax" }, { "vulnerability": "VCID-fje8-2ajy-kyb4" }, { "vulnerability": "VCID-fp1r-r3sv-wbfp" }, { "vulnerability": "VCID-fwgq-vmfm-j7bh" }, { "vulnerability": "VCID-fy3t-qn64-bkhn" }, { "vulnerability": "VCID-g2x3-6kx1-x7bg" }, { "vulnerability": "VCID-k7n8-grbj-dbbr" }, { "vulnerability": "VCID-kfs5-k8h6-afa6" }, { "vulnerability": "VCID-kv5j-8eqv-7bhy" }, { "vulnerability": "VCID-m7b3-kxzn-t7hj" }, { "vulnerability": "VCID-mbz3-479y-ruey" }, { "vulnerability": "VCID-mu17-2uxr-4kd5" }, { "vulnerability": "VCID-n5t6-xtd3-hfa7" }, { "vulnerability": "VCID-ncxb-rxhz-u3eu" }, { "vulnerability": "VCID-nz4k-nfug-tufw" }, { "vulnerability": "VCID-q1pv-h34q-7ufy" }, { "vulnerability": "VCID-q8sq-kpxp-3bb4" }, { "vulnerability": "VCID-qe1e-a1yz-wubq" }, { "vulnerability": "VCID-qvgx-r4rr-xugp" }, { "vulnerability": "VCID-qxbw-zvw5-ckdp" }, { "vulnerability": "VCID-qxfb-yg6b-nfda" }, { "vulnerability": "VCID-r94g-m96h-k3e6" }, { "vulnerability": "VCID-rfbc-9e8h-gfhr" }, { "vulnerability": "VCID-rrb9-d3a6-q3bz" }, { "vulnerability": "VCID-rwqs-mabh-17c9" }, { "vulnerability": "VCID-rxdf-fjd8-6yhk" }, { "vulnerability": "VCID-s3gw-mg9k-mfg2" }, { "vulnerability": "VCID-s4fd-atmc-qkcz" }, { "vulnerability": "VCID-snut-ece8-sbfv" }, { "vulnerability": "VCID-swxs-3ua6-3yfn" }, { "vulnerability": "VCID-t7xw-r7rz-u3g5" }, { "vulnerability": "VCID-t9tx-g25k-wfe9" }, { "vulnerability": "VCID-va9j-s3bx-nycu" }, { "vulnerability": "VCID-vfh6-rc99-e3bf" }, { "vulnerability": "VCID-vyf9-rzw1-sffy" }, { "vulnerability": "VCID-wkxm-2pd8-vqg9" }, { "vulnerability": "VCID-wu55-n9ff-sbbf" }, { "vulnerability": "VCID-x6m9-ka8g-sbdc" }, { "vulnerability": "VCID-xjen-b9ss-33by" }, { "vulnerability": "VCID-y97x-xaq8-h3bu" }, { "vulnerability": "VCID-yqd8-3j9e-cken" }, { "vulnerability": "VCID-zby8-fvjf-afde" }, { "vulnerability": "VCID-znw1-bajd-7yfp" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@7.0.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/998?format=api", "purl": "pkg:apache/tomcat@7.0.21", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-e9dg-8439-nucb" }, { "vulnerability": "VCID-qe1e-a1yz-wubq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@7.0.21" }, { "url": "http://public2.vulnerablecode.io/api/packages/1063?format=api", "purl": "pkg:maven/org.apache.tomcat/tomcat@6.0.30", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-8av4-cm9e-4kh9" }, { "vulnerability": "VCID-e9dg-8439-nucb" }, { "vulnerability": "VCID-f6dc-5wps-z3ax" }, { "vulnerability": "VCID-r94g-m96h-k3e6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@6.0.30" }, { "url": "http://public2.vulnerablecode.io/api/packages/1055?format=api", "purl": "pkg:maven/org.apache.tomcat/tomcat@6.0.33", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-a4yd-d7cp-yfgn" }, { "vulnerability": "VCID-e9dg-8439-nucb" }, { "vulnerability": "VCID-mbz3-479y-ruey" }, { "vulnerability": "VCID-va9j-s3bx-nycu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@6.0.33" }, { "url": "http://public2.vulnerablecode.io/api/packages/21322?format=api", "purl": "pkg:maven/org.apache.tomcat/tomcat@7.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-bet5-4798-2kcq" }, { "vulnerability": "VCID-e9dg-8439-nucb" }, { "vulnerability": "VCID-x6m9-ka8g-sbdc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@7.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/879?format=api", "purl": "pkg:maven/org.apache.tomcat/tomcat@7.0.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1f31-et57-5qbx" }, { "vulnerability": "VCID-1xhq-fftg-ufd2" }, { "vulnerability": "VCID-3cvx-fuuh-ybf9" }, { "vulnerability": "VCID-3p2v-jj5g-qbbp" }, { "vulnerability": "VCID-3urp-gu8z-fke3" }, { "vulnerability": "VCID-46g2-sepj-guhe" }, { "vulnerability": "VCID-4c8y-tn9d-v3d5" }, { "vulnerability": "VCID-4tdx-52h3-bkfj" }, { "vulnerability": "VCID-5hp9-mbcu-2bdt" }, { "vulnerability": "VCID-5nu4-5ude-4yhc" }, { "vulnerability": "VCID-5uvn-j8na-kuf7" }, { "vulnerability": "VCID-62hn-sj8p-9fgs" }, { "vulnerability": "VCID-65td-2enz-63hf" }, { "vulnerability": "VCID-6tzd-v653-9bdq" }, { "vulnerability": "VCID-74c9-hu6z-8kg4" }, { "vulnerability": "VCID-824z-m36f-87ea" }, { "vulnerability": "VCID-8aty-dfqt-ufe1" }, { "vulnerability": "VCID-8av4-cm9e-4kh9" }, { "vulnerability": "VCID-8q8c-3e7u-qbc5" }, { "vulnerability": "VCID-9a2q-ujcy-u3dx" }, { "vulnerability": "VCID-9gs9-4vzf-uqbu" }, { "vulnerability": "VCID-a4k2-q92y-7khb" }, { "vulnerability": "VCID-b25a-4gka-5yhr" }, { "vulnerability": "VCID-b2j2-rqat-3yhq" }, { "vulnerability": "VCID-bwn2-ebxb-xqbm" }, { "vulnerability": "VCID-c3qy-96ka-pucw" }, { "vulnerability": "VCID-cpun-p57h-2fc7" }, { "vulnerability": "VCID-dt1c-w14g-2fbd" }, { "vulnerability": "VCID-e9dg-8439-nucb" }, { "vulnerability": "VCID-f6dc-5wps-z3ax" }, { "vulnerability": "VCID-fje8-2ajy-kyb4" }, { "vulnerability": "VCID-fp1r-r3sv-wbfp" }, { "vulnerability": "VCID-fwgq-vmfm-j7bh" }, { "vulnerability": "VCID-fy3t-qn64-bkhn" }, { "vulnerability": "VCID-g2x3-6kx1-x7bg" }, { "vulnerability": "VCID-hn9b-5btp-v3fn" }, { "vulnerability": "VCID-j5g2-s3ps-eqem" }, { "vulnerability": "VCID-jvtf-mg1j-a3ab" }, { "vulnerability": "VCID-k7n8-grbj-dbbr" }, { "vulnerability": "VCID-kfs5-k8h6-afa6" }, { "vulnerability": "VCID-kv5j-8eqv-7bhy" }, { "vulnerability": "VCID-m7b3-kxzn-t7hj" }, { "vulnerability": "VCID-mbz3-479y-ruey" }, { "vulnerability": "VCID-mdsb-pema-d3ds" }, { "vulnerability": "VCID-mu17-2uxr-4kd5" }, { "vulnerability": "VCID-n5t6-xtd3-hfa7" }, { "vulnerability": "VCID-ncxb-rxhz-u3eu" }, { "vulnerability": "VCID-nz4k-nfug-tufw" }, { "vulnerability": "VCID-ptqm-vybp-xbdc" }, { "vulnerability": "VCID-q1pv-h34q-7ufy" }, { "vulnerability": "VCID-q8sq-kpxp-3bb4" }, { "vulnerability": "VCID-qe1e-a1yz-wubq" }, { "vulnerability": "VCID-qvgx-r4rr-xugp" }, { "vulnerability": "VCID-qxbw-zvw5-ckdp" }, { "vulnerability": "VCID-qxfb-yg6b-nfda" }, { "vulnerability": "VCID-r94g-m96h-k3e6" }, { "vulnerability": "VCID-rfbc-9e8h-gfhr" }, { "vulnerability": "VCID-rrb9-d3a6-q3bz" }, { "vulnerability": "VCID-rwqs-mabh-17c9" }, { "vulnerability": "VCID-rxdf-fjd8-6yhk" }, { "vulnerability": "VCID-s3gw-mg9k-mfg2" }, { "vulnerability": "VCID-s4fd-atmc-qkcz" }, { "vulnerability": "VCID-snut-ece8-sbfv" }, { "vulnerability": "VCID-swxs-3ua6-3yfn" }, { "vulnerability": "VCID-t7xw-r7rz-u3g5" }, { "vulnerability": "VCID-t8tc-zb3w-57gv" }, { "vulnerability": "VCID-t9tx-g25k-wfe9" }, { "vulnerability": "VCID-va9j-s3bx-nycu" }, { "vulnerability": "VCID-vfh6-rc99-e3bf" }, { "vulnerability": "VCID-vvzb-u4yd-fueg" }, { "vulnerability": "VCID-vyf9-rzw1-sffy" }, { "vulnerability": "VCID-wkxm-2pd8-vqg9" }, { "vulnerability": "VCID-wu55-n9ff-sbbf" }, { "vulnerability": "VCID-x6m9-ka8g-sbdc" }, { "vulnerability": "VCID-xjen-b9ss-33by" }, { "vulnerability": "VCID-y97x-xaq8-h3bu" }, { "vulnerability": "VCID-yqd8-3j9e-cken" }, { "vulnerability": "VCID-zby8-fvjf-afde" }, { "vulnerability": "VCID-znw1-bajd-7yfp" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@7.0.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/999?format=api", "purl": "pkg:maven/org.apache.tomcat/tomcat@7.0.21", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-e9dg-8439-nucb" }, { "vulnerability": "VCID-qe1e-a1yz-wubq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@7.0.21" }, { "url": "http://public2.vulnerablecode.io/api/packages/367026?format=api", "purl": "pkg:rpm/redhat/tomcat6@6.0.32-24_patch_07.ep5?arch=el6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3urp-gu8z-fke3" }, { "vulnerability": "VCID-46g2-sepj-guhe" }, { "vulnerability": "VCID-8q8c-3e7u-qbc5" }, { "vulnerability": "VCID-e9dg-8439-nucb" }, { "vulnerability": "VCID-hn9b-5btp-v3fn" }, { "vulnerability": "VCID-mbz3-479y-ruey" }, { "vulnerability": "VCID-mu17-2uxr-4kd5" }, { "vulnerability": "VCID-rrb9-d3a6-q3bz" }, { "vulnerability": "VCID-va9j-s3bx-nycu" }, { "vulnerability": "VCID-zby8-fvjf-afde" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/tomcat6@6.0.32-24_patch_07.ep5%3Farch=el6" }, { "url": "http://public2.vulnerablecode.io/api/packages/367027?format=api", "purl": "pkg:rpm/redhat/tomcat6@6.0.32-24_patch_07.ep5?arch=el5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3urp-gu8z-fke3" }, { "vulnerability": "VCID-46g2-sepj-guhe" }, { "vulnerability": "VCID-8q8c-3e7u-qbc5" }, { "vulnerability": "VCID-e9dg-8439-nucb" }, { "vulnerability": "VCID-hn9b-5btp-v3fn" }, { "vulnerability": "VCID-mbz3-479y-ruey" }, { "vulnerability": "VCID-mu17-2uxr-4kd5" }, { "vulnerability": "VCID-rrb9-d3a6-q3bz" }, { "vulnerability": "VCID-va9j-s3bx-nycu" }, { "vulnerability": "VCID-zby8-fvjf-afde" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/tomcat6@6.0.32-24_patch_07.ep5%3Farch=el5" } ], "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-3375.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-3375.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2011-3375", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.02015", "scoring_system": "epss", "scoring_elements": "0.84164", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.02015", "scoring_system": "epss", "scoring_elements": "0.84107", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.02015", "scoring_system": "epss", "scoring_elements": "0.84167", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.02015", "scoring_system": "epss", "scoring_elements": "0.84172", "published_at": "2026-06-13T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2011-3375" }, { "reference_url": "https://github.com/apache/tomcat", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/apache/tomcat" }, { "reference_url": "https://github.com/apache/tomcat70/commit/9eae334e9492f55a841e6eb7ab302ff11d03ab21", "reference_id": "", "reference_type": "", "scores": [], "url": "https://github.com/apache/tomcat70/commit/9eae334e9492f55a841e6eb7ab302ff11d03ab21" }, { "reference_url": "https://github.com/apache/tomcat/commit/9eae334e9492f55a841e6eb7ab302ff11d03ab21", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/apache/tomcat/commit/9eae334e9492f55a841e6eb7ab302ff11d03ab21" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2011-3375", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-3375" }, { "reference_url": "https://svn.apache.org/viewvc?view=rev&rev=1176592", "reference_id": "", "reference_type": "", "scores": [], "url": "https://svn.apache.org/viewvc?view=rev&rev=1176592" }, { "reference_url": "https://svn.apache.org/viewvc?view=rev&rev=1185998", "reference_id": "", "reference_type": "", "scores": [], "url": "https://svn.apache.org/viewvc?view=rev&rev=1185998" }, { "reference_url": "http://www.debian.org/security/2012/dsa-2401", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://www.debian.org/security/2012/dsa-2401" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=782624", "reference_id": "782624", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=782624" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3375", "reference_id": "CVE-2011-3375", "reference_type": "", "scores": [ { "value": "Important", "scoring_system": "apache_tomcat", "scoring_elements": "" } ], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3375" }, { "reference_url": "https://github.com/advisories/GHSA-rp8h-vr48-4j8p", "reference_id": "GHSA-rp8h-vr48-4j8p", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-rp8h-vr48-4j8p" }, { "reference_url": "https://security.gentoo.org/glsa/201206-24", "reference_id": "GLSA-201206-24", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201206-24" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2012:0681", "reference_id": "RHSA-2012:0681", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2012:0681" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2012:0682", "reference_id": "RHSA-2012:0682", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2012:0682" }, { "reference_url": "https://usn.ubuntu.com/1359-1/", "reference_id": "USN-1359-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/1359-1/" } ], "weaknesses": [ { "cwe_id": 200, "name": "Exposure of Sensitive Information to an Unauthorized Actor", "description": "The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information." }, { "cwe_id": 1035, "name": "OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities", "description": "Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2017." }, { "cwe_id": 937, "name": "OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities", "description": "Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2013." } ], "exploits": [], "severity_range_score": "4.0 - 8.9", "exploitability": "0.5", "weighted_severity": "8.0", "risk_score": 4.0, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-e9dg-8439-nucb" }