Vulnerability Instance
Lookup for vulnerabilities affecting packages.
GET /api/vulnerabilities/41199?format=api
{ "url": "http://public2.vulnerablecode.io/api/vulnerabilities/41199?format=api", "vulnerability_id": "VCID-8qze-3eq1-mbf9", "summary": "Improper Handling of Exceptional Conditions\nA vulnerability in Apache Tomcat allows an attacker to remotely trigger a denial of service.", "aliases": [ { "alias": "CVE-2021-30639" }, { "alias": "GHSA-44qp-qhfv-c7f6" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/86978?format=api", "purl": "pkg:apache/tomcat@8.5.65", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-dk58-p9py-rka9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@8.5.65" }, { "url": "http://public2.vulnerablecode.io/api/packages/86877?format=api", "purl": "pkg:apache/tomcat@9.0.45", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-dk58-p9py-rka9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@9.0.45" }, { "url": "http://public2.vulnerablecode.io/api/packages/86767?format=api", "purl": "pkg:apache/tomcat@10.0.5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-dk58-p9py-rka9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@10.0.5" }, { "url": "http://public2.vulnerablecode.io/api/packages/132688?format=api", "purl": "pkg:deb/debian/tomcat9@0?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat9@0%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/132689?format=api", "purl": "pkg:deb/debian/tomcat9@9.0.43-2~deb11u10?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat9@9.0.43-2~deb11u10%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/132687?format=api", "purl": "pkg:deb/debian/tomcat9@9.0.70-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat9@9.0.70-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/132691?format=api", "purl": "pkg:deb/debian/tomcat9@9.0.95-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat9@9.0.95-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/132690?format=api", "purl": "pkg:deb/debian/tomcat9@9.0.118-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat9@9.0.118-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/192524?format=api", "purl": "pkg:ebuild/www-servers/tomcat@8.5.82", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/www-servers/tomcat@8.5.82" }, { "url": "http://public2.vulnerablecode.io/api/packages/192525?format=api", "purl": "pkg:ebuild/www-servers/tomcat@9.0.65", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/www-servers/tomcat@9.0.65" }, { "url": "http://public2.vulnerablecode.io/api/packages/192526?format=api", "purl": "pkg:ebuild/www-servers/tomcat@10.0.23", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/www-servers/tomcat@10.0.23" }, { "url": "http://public2.vulnerablecode.io/api/packages/58696?format=api", "purl": "pkg:maven/org.apache.tomcat/tomcat@8.5.65", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1qsf-yxnk-fqhy" }, { "vulnerability": "VCID-2qhv-x4j1-jqa7" }, { "vulnerability": "VCID-4q7w-adqc-kydu" }, { "vulnerability": "VCID-5udv-rheh-kqfy" }, { "vulnerability": "VCID-9awt-9zjq-yucn" }, { "vulnerability": "VCID-cugj-j48z-jub5" }, { "vulnerability": "VCID-d8re-94xd-nycp" }, { "vulnerability": "VCID-dk58-p9py-rka9" }, { "vulnerability": "VCID-gw94-yyjd-17er" }, { "vulnerability": "VCID-kqng-d1f2-myg5" }, { "vulnerability": "VCID-rk89-9dw5-w3gg" }, { "vulnerability": "VCID-vvqm-vk3g-kuh8" }, { "vulnerability": "VCID-wcnj-bna8-7fh7" }, { "vulnerability": "VCID-zba8-2zc4-9qfh" }, { "vulnerability": "VCID-zq8t-zucq-h3c9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@8.5.65" }, { "url": "http://public2.vulnerablecode.io/api/packages/86878?format=api", "purl": "pkg:maven/org.apache.tomcat/tomcat@9.0.45", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1qsf-yxnk-fqhy" }, { "vulnerability": "VCID-2qhv-x4j1-jqa7" }, { "vulnerability": "VCID-2s6w-bbfa-afb8" }, { "vulnerability": "VCID-4q7w-adqc-kydu" }, { "vulnerability": "VCID-71mw-xrnv-9kec" }, { "vulnerability": "VCID-98rd-f7ys-y7b9" }, { "vulnerability": "VCID-9awt-9zjq-yucn" }, { "vulnerability": "VCID-cugj-j48z-jub5" }, { "vulnerability": "VCID-d8re-94xd-nycp" }, { "vulnerability": "VCID-dk58-p9py-rka9" }, { "vulnerability": "VCID-gw94-yyjd-17er" }, { "vulnerability": "VCID-kqng-d1f2-myg5" }, { "vulnerability": "VCID-nqgv-hbwa-d3en" }, { "vulnerability": "VCID-vvqm-vk3g-kuh8" }, { "vulnerability": "VCID-wcnj-bna8-7fh7" }, { "vulnerability": "VCID-zba8-2zc4-9qfh" }, { "vulnerability": "VCID-zq8t-zucq-h3c9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@9.0.45" }, { "url": "http://public2.vulnerablecode.io/api/packages/58695?format=api", "purl": "pkg:maven/org.apache.tomcat/tomcat@10.0.5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2qhv-x4j1-jqa7" }, { "vulnerability": "VCID-4q7w-adqc-kydu" }, { "vulnerability": "VCID-9awt-9zjq-yucn" }, { "vulnerability": "VCID-dk58-p9py-rka9" }, { "vulnerability": "VCID-vvqm-vk3g-kuh8" }, { "vulnerability": "VCID-zq8t-zucq-h3c9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@10.0.5" }, { "url": "http://public2.vulnerablecode.io/api/packages/58363?format=api", "purl": "pkg:maven/org.apache.tomcat/tomcat-coyote@8.5.65", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2qhv-x4j1-jqa7" }, { "vulnerability": "VCID-4q7w-adqc-kydu" }, { "vulnerability": "VCID-cugj-j48z-jub5" }, { "vulnerability": "VCID-jhm9-cqu3-7yce" }, { "vulnerability": "VCID-urhs-6aus-syb1" }, { "vulnerability": "VCID-y4a2-mamb-yqg6" }, { "vulnerability": "VCID-zba8-2zc4-9qfh" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat-coyote@8.5.65" }, { "url": "http://public2.vulnerablecode.io/api/packages/58364?format=api", "purl": "pkg:maven/org.apache.tomcat/tomcat-coyote@9.0.45", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2qhv-x4j1-jqa7" }, { "vulnerability": "VCID-4q7w-adqc-kydu" }, { "vulnerability": "VCID-5ebw-zerz-u7bh" }, { "vulnerability": "VCID-cugj-j48z-jub5" }, { "vulnerability": "VCID-jhm9-cqu3-7yce" }, { "vulnerability": "VCID-urhs-6aus-syb1" }, { "vulnerability": "VCID-y4a2-mamb-yqg6" }, { "vulnerability": "VCID-zba8-2zc4-9qfh" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat-coyote@9.0.45" }, { "url": "http://public2.vulnerablecode.io/api/packages/58365?format=api", "purl": "pkg:maven/org.apache.tomcat/tomcat-coyote@10.0.5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2qhv-x4j1-jqa7" }, { "vulnerability": "VCID-4q7w-adqc-kydu" }, { "vulnerability": "VCID-jhm9-cqu3-7yce" }, { "vulnerability": "VCID-y4a2-mamb-yqg6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat-coyote@10.0.5" }, { "url": "http://public2.vulnerablecode.io/api/packages/58699?format=api", "purl": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@8.5.65", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-18rb-u2tu-affk" }, { "vulnerability": "VCID-2qhv-x4j1-jqa7" }, { "vulnerability": "VCID-4q7w-adqc-kydu" }, { "vulnerability": "VCID-9awt-9zjq-yucn" }, { "vulnerability": "VCID-cugj-j48z-jub5" }, { "vulnerability": "VCID-d8re-94xd-nycp" }, { "vulnerability": "VCID-dk58-p9py-rka9" }, { "vulnerability": "VCID-gw94-yyjd-17er" }, { "vulnerability": "VCID-j66a-6et3-mfha" }, { "vulnerability": "VCID-kqng-d1f2-myg5" }, { "vulnerability": "VCID-paqj-ye46-8bdb" }, { "vulnerability": "VCID-rk89-9dw5-w3gg" }, { "vulnerability": "VCID-urhs-6aus-syb1" }, { "vulnerability": "VCID-vvqm-vk3g-kuh8" }, { "vulnerability": "VCID-wcnj-bna8-7fh7" }, { "vulnerability": "VCID-y4a2-mamb-yqg6" }, { "vulnerability": "VCID-zq8t-zucq-h3c9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@8.5.65" }, { "url": "http://public2.vulnerablecode.io/api/packages/58698?format=api", "purl": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@9.0.45", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-18rb-u2tu-affk" }, { "vulnerability": "VCID-1qsf-yxnk-fqhy" }, { "vulnerability": "VCID-2qhv-x4j1-jqa7" }, { "vulnerability": "VCID-2s6w-bbfa-afb8" }, { "vulnerability": "VCID-4q7w-adqc-kydu" }, { "vulnerability": "VCID-5ebw-zerz-u7bh" }, { "vulnerability": "VCID-98rd-f7ys-y7b9" }, { "vulnerability": "VCID-9awt-9zjq-yucn" }, { "vulnerability": "VCID-cugj-j48z-jub5" }, { "vulnerability": "VCID-d8re-94xd-nycp" }, { "vulnerability": "VCID-dk58-p9py-rka9" }, { "vulnerability": "VCID-gw94-yyjd-17er" }, { "vulnerability": "VCID-j66a-6et3-mfha" }, { "vulnerability": "VCID-kqng-d1f2-myg5" }, { "vulnerability": "VCID-nqgv-hbwa-d3en" }, { "vulnerability": "VCID-paqj-ye46-8bdb" }, { "vulnerability": "VCID-urhs-6aus-syb1" }, { "vulnerability": "VCID-vvqm-vk3g-kuh8" }, { "vulnerability": "VCID-wcnj-bna8-7fh7" }, { "vulnerability": "VCID-y4a2-mamb-yqg6" }, { "vulnerability": "VCID-zq8t-zucq-h3c9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@9.0.45" }, { "url": "http://public2.vulnerablecode.io/api/packages/58697?format=api", "purl": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@10.0.5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2qhv-x4j1-jqa7" }, { "vulnerability": "VCID-4q7w-adqc-kydu" }, { "vulnerability": "VCID-9awt-9zjq-yucn" }, { "vulnerability": "VCID-dk58-p9py-rka9" }, { "vulnerability": "VCID-vvqm-vk3g-kuh8" }, { "vulnerability": "VCID-y4a2-mamb-yqg6" }, { "vulnerability": "VCID-zq8t-zucq-h3c9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@10.0.5" } ], "affected_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/86979?format=api", "purl": "pkg:apache/tomcat@8.5.64", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-8qze-3eq1-mbf9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@8.5.64" }, { "url": "http://public2.vulnerablecode.io/api/packages/86879?format=api", "purl": "pkg:apache/tomcat@9.0.44", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-8qze-3eq1-mbf9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@9.0.44" }, { "url": "http://public2.vulnerablecode.io/api/packages/86768?format=api", "purl": "pkg:apache/tomcat@10.0.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-8qze-3eq1-mbf9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@10.0.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/86769?format=api", "purl": "pkg:apache/tomcat@10.0.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-8qze-3eq1-mbf9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@10.0.4" }, { "url": "http://public2.vulnerablecode.io/api/packages/59005?format=api", "purl": "pkg:maven/org.apache.tomcat/tomcat@8.5.64", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1qsf-yxnk-fqhy" }, { "vulnerability": "VCID-2qhv-x4j1-jqa7" }, { "vulnerability": "VCID-4q7w-adqc-kydu" }, { "vulnerability": "VCID-5udv-rheh-kqfy" }, { "vulnerability": "VCID-8qze-3eq1-mbf9" }, { "vulnerability": "VCID-9awt-9zjq-yucn" }, { "vulnerability": "VCID-cugj-j48z-jub5" }, { "vulnerability": "VCID-d8re-94xd-nycp" }, { "vulnerability": "VCID-dk58-p9py-rka9" }, { "vulnerability": "VCID-gw94-yyjd-17er" }, { "vulnerability": "VCID-kqng-d1f2-myg5" }, { "vulnerability": "VCID-rk89-9dw5-w3gg" }, { "vulnerability": "VCID-vvqm-vk3g-kuh8" }, { "vulnerability": "VCID-wcnj-bna8-7fh7" }, { "vulnerability": "VCID-zba8-2zc4-9qfh" }, { "vulnerability": "VCID-zq8t-zucq-h3c9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@8.5.64" }, { "url": "http://public2.vulnerablecode.io/api/packages/59006?format=api", "purl": "pkg:maven/org.apache.tomcat/tomcat@9.0.44", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1qsf-yxnk-fqhy" }, { "vulnerability": "VCID-2qhv-x4j1-jqa7" }, { "vulnerability": "VCID-2s6w-bbfa-afb8" }, { "vulnerability": "VCID-4q7w-adqc-kydu" }, { "vulnerability": "VCID-71mw-xrnv-9kec" }, { "vulnerability": "VCID-8qze-3eq1-mbf9" }, { "vulnerability": "VCID-98rd-f7ys-y7b9" }, { "vulnerability": "VCID-9awt-9zjq-yucn" }, { "vulnerability": "VCID-cugj-j48z-jub5" }, { "vulnerability": "VCID-d8re-94xd-nycp" }, { "vulnerability": "VCID-dk58-p9py-rka9" }, { "vulnerability": "VCID-gw94-yyjd-17er" }, { "vulnerability": "VCID-kqng-d1f2-myg5" }, { "vulnerability": "VCID-nqgv-hbwa-d3en" }, { "vulnerability": "VCID-vvqm-vk3g-kuh8" }, { "vulnerability": "VCID-wcnj-bna8-7fh7" }, { "vulnerability": "VCID-zba8-2zc4-9qfh" }, { "vulnerability": "VCID-zq8t-zucq-h3c9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@9.0.44" }, { "url": "http://public2.vulnerablecode.io/api/packages/86770?format=api", "purl": "pkg:maven/org.apache.tomcat/tomcat@10.0.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-8qze-3eq1-mbf9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@10.0.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/59007?format=api", "purl": "pkg:maven/org.apache.tomcat/tomcat@10.0.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2qhv-x4j1-jqa7" }, { "vulnerability": "VCID-4q7w-adqc-kydu" }, { "vulnerability": "VCID-8qze-3eq1-mbf9" }, { "vulnerability": "VCID-9awt-9zjq-yucn" }, { "vulnerability": "VCID-dk58-p9py-rka9" }, { "vulnerability": "VCID-vvqm-vk3g-kuh8" }, { "vulnerability": "VCID-zq8t-zucq-h3c9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@10.0.4" }, { "url": "http://public2.vulnerablecode.io/api/packages/58360?format=api", "purl": "pkg:maven/org.apache.tomcat/tomcat-coyote@8.5.64", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2qhv-x4j1-jqa7" }, { "vulnerability": "VCID-4q7w-adqc-kydu" }, { "vulnerability": "VCID-8qze-3eq1-mbf9" }, { "vulnerability": "VCID-cugj-j48z-jub5" }, { "vulnerability": "VCID-jhm9-cqu3-7yce" }, { "vulnerability": "VCID-urhs-6aus-syb1" }, { "vulnerability": "VCID-y4a2-mamb-yqg6" }, { "vulnerability": "VCID-zba8-2zc4-9qfh" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat-coyote@8.5.64" }, { "url": "http://public2.vulnerablecode.io/api/packages/58361?format=api", "purl": "pkg:maven/org.apache.tomcat/tomcat-coyote@9.0.44", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2qhv-x4j1-jqa7" }, { "vulnerability": "VCID-4q7w-adqc-kydu" }, { "vulnerability": "VCID-5ebw-zerz-u7bh" }, { "vulnerability": "VCID-8qze-3eq1-mbf9" }, { "vulnerability": "VCID-cugj-j48z-jub5" }, { "vulnerability": "VCID-jhm9-cqu3-7yce" }, { "vulnerability": "VCID-urhs-6aus-syb1" }, { "vulnerability": "VCID-y4a2-mamb-yqg6" }, { "vulnerability": "VCID-zba8-2zc4-9qfh" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat-coyote@9.0.44" }, { "url": "http://public2.vulnerablecode.io/api/packages/58362?format=api", "purl": "pkg:maven/org.apache.tomcat/tomcat-coyote@10.0.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-8qze-3eq1-mbf9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat-coyote@10.0.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/528982?format=api", "purl": "pkg:maven/org.apache.tomcat/tomcat-coyote@10.0.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2qhv-x4j1-jqa7" }, { "vulnerability": "VCID-4q7w-adqc-kydu" }, { "vulnerability": "VCID-8qze-3eq1-mbf9" }, { "vulnerability": "VCID-jhm9-cqu3-7yce" }, { "vulnerability": "VCID-y4a2-mamb-yqg6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat-coyote@10.0.4" }, { "url": "http://public2.vulnerablecode.io/api/packages/58369?format=api", "purl": "pkg:maven/tomcat/catalina@8.5.64", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-8qze-3eq1-mbf9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/tomcat/catalina@8.5.64" }, { "url": "http://public2.vulnerablecode.io/api/packages/58370?format=api", "purl": "pkg:maven/tomcat/catalina@9.0.44", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-8qze-3eq1-mbf9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/tomcat/catalina@9.0.44" }, { "url": "http://public2.vulnerablecode.io/api/packages/58371?format=api", "purl": "pkg:maven/tomcat/catalina@10.0.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-8qze-3eq1-mbf9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/tomcat/catalina@10.0.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/58372?format=api", "purl": "pkg:maven/tomcat/catalina@10.0.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-8qze-3eq1-mbf9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/tomcat/catalina@10.0.4" }, { "url": "http://public2.vulnerablecode.io/api/packages/58400?format=api", "purl": "pkg:maven/tomcat/jasper-runtime@8.5.64", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-8qze-3eq1-mbf9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/tomcat/jasper-runtime@8.5.64" }, { "url": "http://public2.vulnerablecode.io/api/packages/58401?format=api", "purl": "pkg:maven/tomcat/jasper-runtime@9.0.44", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-8qze-3eq1-mbf9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/tomcat/jasper-runtime@9.0.44" }, { "url": "http://public2.vulnerablecode.io/api/packages/58402?format=api", "purl": "pkg:maven/tomcat/jasper-runtime@10.0.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-8qze-3eq1-mbf9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/tomcat/jasper-runtime@10.0.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/58403?format=api", "purl": "pkg:maven/tomcat/jasper-runtime@10.0.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-8qze-3eq1-mbf9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/tomcat/jasper-runtime@10.0.4" } ], "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-30639.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-30639.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-30639", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00422", "scoring_system": "epss", "scoring_elements": "0.62386", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00422", "scoring_system": "epss", "scoring_elements": "0.62432", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-30639" }, { "reference_url": "https://github.com/apache/tomcat/commit/411caf29ac1c16e6ac291b6e5543b2371dbd25e2", "reference_id": "", "reference_type": "", "scores": [], "url": "https://github.com/apache/tomcat/commit/411caf29ac1c16e6ac291b6e5543b2371dbd25e2" }, { "reference_url": "https://github.com/apache/tomcat/commit/8ece47c4a9fb9349e8862c84358a4dd23c643a24", "reference_id": "", "reference_type": "", "scores": [], "url": "https://github.com/apache/tomcat/commit/8ece47c4a9fb9349e8862c84358a4dd23c643a24" }, { "reference_url": "https://github.com/apache/tomcat/commit/b59099e4ca501a039510334ebe1024971cd6f959", "reference_id": "", "reference_type": "", "scores": [], "url": "https://github.com/apache/tomcat/commit/b59099e4ca501a039510334ebe1024971cd6f959" }, { "reference_url": "https://kc.mcafee.com/corporate/index?page=content&id=SB10366", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://kc.mcafee.com/corporate/index?page=content&id=SB10366" }, { "reference_url": "https://lists.apache.org/thread.html/r79a7c019712b39aedf7cf4da9276d80610f04441b2a4f6506cb2daaf@%3Cdev.tomcat.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://lists.apache.org/thread.html/r79a7c019712b39aedf7cf4da9276d80610f04441b2a4f6506cb2daaf@%3Cdev.tomcat.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r79a7c019712b39aedf7cf4da9276d80610f04441b2a4f6506cb2daaf@%3Cusers.tomcat.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://lists.apache.org/thread.html/r79a7c019712b39aedf7cf4da9276d80610f04441b2a4f6506cb2daaf@%3Cusers.tomcat.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/rd84fae1f474597bdf358f5bdc0a5c453c507bd527b83e8be6b5ea3f4%40%3Cannounce.tomcat.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://lists.apache.org/thread.html/rd84fae1f474597bdf358f5bdc0a5c453c507bd527b83e8be6b5ea3f4%40%3Cannounce.tomcat.apache.org%3E" }, { "reference_url": "https://security.gentoo.org/glsa/202208-34", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://security.gentoo.org/glsa/202208-34" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20210827-0007", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://security.netapp.com/advisory/ntap-20210827-0007" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20210827-0007/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://security.netapp.com/advisory/ntap-20210827-0007/" }, { "reference_url": "https://www.oracle.com/security-alerts/cpujan2022.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.oracle.com/security-alerts/cpujan2022.html" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1981540", "reference_id": "1981540", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1981540" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30639", "reference_id": "CVE-2021-30639", "reference_type": "", "scores": [ { "value": "Important", "scoring_system": "apache_tomcat", "scoring_elements": "" } ], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30639" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2021-30639", "reference_id": "CVE-2021-30639", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-30639" }, { "reference_url": "https://github.com/advisories/GHSA-44qp-qhfv-c7f6", "reference_id": "GHSA-44qp-qhfv-c7f6", "reference_type": "", "scores": [], "url": "https://github.com/advisories/GHSA-44qp-qhfv-c7f6" } ], "weaknesses": [ { "cwe_id": 1035, "name": "OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities", "description": "Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2017." }, { "cwe_id": 755, "name": "Improper Handling of Exceptional Conditions", "description": "The product does not handle or incorrectly handles an exceptional condition." }, { "cwe_id": 937, "name": "OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities", "description": "Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2013." }, { "cwe_id": 459, "name": "Incomplete Cleanup", "description": "The product does not properly clean up and remove temporary or supporting resources after they have been used." } ], "exploits": [], "severity_range_score": "7.0 - 8.9", "exploitability": "0.5", "weighted_severity": "8.0", "risk_score": 4.0, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-8qze-3eq1-mbf9" }