Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-7few-6w74-43cm
Summary
Apache Tomcat DoS Via Requests Including Null Characters
Apache Tomcat 4.0.3, and possibly other versions before 4.1.3 beta, allows remote attackers to cause a denial of service (resource exhaustion) via a large number of requests to the server with null characters, which causes the working threads to hang.
Aliases
0
alias CVE-2002-0935
1
alias GHSA-xmf4-j3j7-xj7q
Fixed_packages
0
url pkg:apache/tomcat@4.1.3
purl pkg:apache/tomcat@4.1.3
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@4.1.3
Affected_packages
0
url pkg:apache/tomcat@4.0.0
purl pkg:apache/tomcat@4.0.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-24v5-jpna-rqg9
1
vulnerability VCID-284n-4e5d-d7gt
2
vulnerability VCID-2af1-rv9j-jugv
3
vulnerability VCID-2jws-wtvg-2khf
4
vulnerability VCID-7few-6w74-43cm
5
vulnerability VCID-ccfn-tde4-s7hr
6
vulnerability VCID-hxer-p6va-7kdh
7
vulnerability VCID-kua1-kn4q-7kd2
8
vulnerability VCID-kxc3-vz2c-wqca
9
vulnerability VCID-rp5z-q8an-e3az
10
vulnerability VCID-rpqh-1b8p-dqcy
11
vulnerability VCID-sjn3-a6fs-gyck
12
vulnerability VCID-u9ha-5mmp-r7df
13
vulnerability VCID-w6ay-nzvg-zbff
14
vulnerability VCID-w8uj-zy2r-fyca
15
vulnerability VCID-wpnp-3yad-ybcj
16
vulnerability VCID-x9v1-6ysy-bfcm
17
vulnerability VCID-zam7-79x3-ekg3
resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@4.0.0
1
url pkg:apache/tomcat@4.0.2
purl pkg:apache/tomcat@4.0.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-7few-6w74-43cm
resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@4.0.2
2
url pkg:apache/tomcat@4.0.3
purl pkg:apache/tomcat@4.0.3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-7few-6w74-43cm
resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@4.0.3
3
url pkg:apache/tomcat@4.0.4
purl pkg:apache/tomcat@4.0.4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-7few-6w74-43cm
1
vulnerability VCID-ccfn-tde4-s7hr
resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@4.0.4
4
url pkg:apache/tomcat@4.0.6
purl pkg:apache/tomcat@4.0.6
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-24v5-jpna-rqg9
1
vulnerability VCID-2af1-rv9j-jugv
2
vulnerability VCID-2jws-wtvg-2khf
3
vulnerability VCID-7few-6w74-43cm
4
vulnerability VCID-96yu-fvee-wfbs
5
vulnerability VCID-kaem-zczd-pyhu
6
vulnerability VCID-kua1-kn4q-7kd2
7
vulnerability VCID-kxc3-vz2c-wqca
8
vulnerability VCID-rp5z-q8an-e3az
9
vulnerability VCID-sjn3-a6fs-gyck
10
vulnerability VCID-w6ay-nzvg-zbff
11
vulnerability VCID-w8uj-zy2r-fyca
12
vulnerability VCID-wpnp-3yad-ybcj
13
vulnerability VCID-x9v1-6ysy-bfcm
14
vulnerability VCID-ypuq-2mr2-sybb
15
vulnerability VCID-zam7-79x3-ekg3
resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@4.0.6
5
url pkg:apache/tomcat@4.1.0
purl pkg:apache/tomcat@4.1.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-24v5-jpna-rqg9
1
vulnerability VCID-284n-4e5d-d7gt
2
vulnerability VCID-2af1-rv9j-jugv
3
vulnerability VCID-2jws-wtvg-2khf
4
vulnerability VCID-5jm8-9upn-g7f4
5
vulnerability VCID-7787-4bwm-efgq
6
vulnerability VCID-7few-6w74-43cm
7
vulnerability VCID-96kt-5j22-pqg7
8
vulnerability VCID-96yu-fvee-wfbs
9
vulnerability VCID-ccfn-tde4-s7hr
10
vulnerability VCID-crhe-rt8j-wycu
11
vulnerability VCID-eygg-nt7y-qubh
12
vulnerability VCID-hmqa-jhuf-hfe2
13
vulnerability VCID-kaem-zczd-pyhu
14
vulnerability VCID-kua1-kn4q-7kd2
15
vulnerability VCID-kxc3-vz2c-wqca
16
vulnerability VCID-qdvn-uc56-6fds
17
vulnerability VCID-qrbz-jgfy-qqhm
18
vulnerability VCID-qz87-x4zb-rud7
19
vulnerability VCID-rdr4-db3y-p3cz
20
vulnerability VCID-rp5z-q8an-e3az
21
vulnerability VCID-rpqh-1b8p-dqcy
22
vulnerability VCID-sjn3-a6fs-gyck
23
vulnerability VCID-t4mh-zvhq-27du
24
vulnerability VCID-uwuf-vukf-cqck
25
vulnerability VCID-w6ay-nzvg-zbff
26
vulnerability VCID-w8uj-zy2r-fyca
27
vulnerability VCID-wg7f-pjmn-uudk
28
vulnerability VCID-ypuq-2mr2-sybb
29
vulnerability VCID-zam7-79x3-ekg3
resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@4.1.0
6
url pkg:apache/tomcat@4.1.2
purl pkg:apache/tomcat@4.1.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-7few-6w74-43cm
resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@4.1.2
7
url pkg:maven/org.apache.tomcat/tomcat@4.0.0
purl pkg:maven/org.apache.tomcat/tomcat@4.0.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-24v5-jpna-rqg9
1
vulnerability VCID-284n-4e5d-d7gt
2
vulnerability VCID-2af1-rv9j-jugv
3
vulnerability VCID-2jws-wtvg-2khf
4
vulnerability VCID-7few-6w74-43cm
5
vulnerability VCID-aywp-amq3-yyes
6
vulnerability VCID-ccfn-tde4-s7hr
7
vulnerability VCID-hxer-p6va-7kdh
8
vulnerability VCID-kaem-zczd-pyhu
9
vulnerability VCID-kua1-kn4q-7kd2
10
vulnerability VCID-kxc3-vz2c-wqca
11
vulnerability VCID-rp5z-q8an-e3az
12
vulnerability VCID-rpqh-1b8p-dqcy
13
vulnerability VCID-sjn3-a6fs-gyck
14
vulnerability VCID-u9ha-5mmp-r7df
15
vulnerability VCID-w6ay-nzvg-zbff
16
vulnerability VCID-w8uj-zy2r-fyca
17
vulnerability VCID-wpnp-3yad-ybcj
18
vulnerability VCID-x9v1-6ysy-bfcm
19
vulnerability VCID-zam7-79x3-ekg3
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@4.0.0
8
url pkg:maven/org.apache.tomcat/tomcat@4.0.2
purl pkg:maven/org.apache.tomcat/tomcat@4.0.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-7few-6w74-43cm
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@4.0.2
9
url pkg:maven/org.apache.tomcat/tomcat@4.0.3
purl pkg:maven/org.apache.tomcat/tomcat@4.0.3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1yjx-t4ub-cqhy
1
vulnerability VCID-7few-6w74-43cm
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@4.0.3
10
url pkg:maven/org.apache.tomcat/tomcat@4.0.4
purl pkg:maven/org.apache.tomcat/tomcat@4.0.4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-7few-6w74-43cm
1
vulnerability VCID-ccfn-tde4-s7hr
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@4.0.4
11
url pkg:maven/org.apache.tomcat/tomcat@4.0.6
purl pkg:maven/org.apache.tomcat/tomcat@4.0.6
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-24v5-jpna-rqg9
1
vulnerability VCID-2af1-rv9j-jugv
2
vulnerability VCID-2jws-wtvg-2khf
3
vulnerability VCID-7few-6w74-43cm
4
vulnerability VCID-96yu-fvee-wfbs
5
vulnerability VCID-kaem-zczd-pyhu
6
vulnerability VCID-kua1-kn4q-7kd2
7
vulnerability VCID-kxc3-vz2c-wqca
8
vulnerability VCID-rp5z-q8an-e3az
9
vulnerability VCID-sjn3-a6fs-gyck
10
vulnerability VCID-w6ay-nzvg-zbff
11
vulnerability VCID-w8uj-zy2r-fyca
12
vulnerability VCID-wpnp-3yad-ybcj
13
vulnerability VCID-x9v1-6ysy-bfcm
14
vulnerability VCID-ypuq-2mr2-sybb
15
vulnerability VCID-zam7-79x3-ekg3
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@4.0.6
12
url pkg:maven/org.apache.tomcat/tomcat@4.1.0
purl pkg:maven/org.apache.tomcat/tomcat@4.1.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-24v5-jpna-rqg9
1
vulnerability VCID-284n-4e5d-d7gt
2
vulnerability VCID-2af1-rv9j-jugv
3
vulnerability VCID-2jws-wtvg-2khf
4
vulnerability VCID-5jm8-9upn-g7f4
5
vulnerability VCID-7787-4bwm-efgq
6
vulnerability VCID-7few-6w74-43cm
7
vulnerability VCID-96kt-5j22-pqg7
8
vulnerability VCID-96yu-fvee-wfbs
9
vulnerability VCID-9tsr-9tv5-5kb7
10
vulnerability VCID-ccfn-tde4-s7hr
11
vulnerability VCID-crhe-rt8j-wycu
12
vulnerability VCID-eygg-nt7y-qubh
13
vulnerability VCID-hmqa-jhuf-hfe2
14
vulnerability VCID-kaem-zczd-pyhu
15
vulnerability VCID-kua1-kn4q-7kd2
16
vulnerability VCID-kxc3-vz2c-wqca
17
vulnerability VCID-qdvn-uc56-6fds
18
vulnerability VCID-qrbz-jgfy-qqhm
19
vulnerability VCID-qz87-x4zb-rud7
20
vulnerability VCID-rdr4-db3y-p3cz
21
vulnerability VCID-rp5z-q8an-e3az
22
vulnerability VCID-rpqh-1b8p-dqcy
23
vulnerability VCID-sjn3-a6fs-gyck
24
vulnerability VCID-t4mh-zvhq-27du
25
vulnerability VCID-uwuf-vukf-cqck
26
vulnerability VCID-w6ay-nzvg-zbff
27
vulnerability VCID-w8uj-zy2r-fyca
28
vulnerability VCID-wg7f-pjmn-uudk
29
vulnerability VCID-ypuq-2mr2-sybb
30
vulnerability VCID-zam7-79x3-ekg3
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@4.1.0
13
url pkg:maven/org.apache.tomcat/tomcat@4.1.2
purl pkg:maven/org.apache.tomcat/tomcat@4.1.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-7few-6w74-43cm
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@4.1.2
References
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2002-0935
reference_id
reference_type
scores
0
value 0.02834
scoring_system epss
scoring_elements 0.86455
published_at 2026-06-04T12:55:00Z
1
value 0.02834
scoring_system epss
scoring_elements 0.86479
published_at 2026-06-05T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2002-0935
1
reference_url https://lists.apache.org/thread.html/29dc6c2b625789e70a9c4756b5a327e6547273ff8bde7e0327af48c5@%3Cdev.tomcat.apache.org%3E
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://lists.apache.org/thread.html/29dc6c2b625789e70a9c4756b5a327e6547273ff8bde7e0327af48c5@%3Cdev.tomcat.apache.org%3E
2
reference_url https://lists.apache.org/thread.html/c62b0e3a7bf23342352a5810c640a94b6db69957c5c19db507004d74@%3Cdev.tomcat.apache.org%3E
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://lists.apache.org/thread.html/c62b0e3a7bf23342352a5810c640a94b6db69957c5c19db507004d74@%3Cdev.tomcat.apache.org%3E
3
reference_url https://lists.apache.org/thread.html/rb71997f506c6cc8b530dd845c084995a9878098846c7b4eacfae8db3@%3Cdev.tomcat.apache.org%3E
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://lists.apache.org/thread.html/rb71997f506c6cc8b530dd845c084995a9878098846c7b4eacfae8db3@%3Cdev.tomcat.apache.org%3E
4
reference_url https://web.archive.org/web/20020822030311/http://www.iss.net/security_center/static/9396.php
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://web.archive.org/web/20020822030311/http://www.iss.net/security_center/static/9396.php
5
reference_url https://web.archive.org/web/20021010182017/http://online.securityfocus.com/bid/5067
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://web.archive.org/web/20021010182017/http://online.securityfocus.com/bid/5067
6
reference_url https://web.archive.org/web/20021116054924/http://online.securityfocus.com/archive/1/277940
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://web.archive.org/web/20021116054924/http://online.securityfocus.com/archive/1/277940
7
reference_url https://web.archive.org/web/20070525180638/http://archives.neohapsis.com/archives/vulnwatch/2002-q2/0120.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://web.archive.org/web/20070525180638/http://archives.neohapsis.com/archives/vulnwatch/2002-q2/0120.html
8
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-0935
reference_id CVE-2002-0935
reference_type
scores
0
value Important
scoring_system apache_tomcat
scoring_elements
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-0935
9
reference_url https://nvd.nist.gov/vuln/detail/CVE-2002-0935
reference_id CVE-2002-0935
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2002-0935
10
reference_url https://github.com/advisories/GHSA-xmf4-j3j7-xj7q
reference_id GHSA-xmf4-j3j7-xj7q
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-xmf4-j3j7-xj7q
Weaknesses
0
cwe_id 1035
name OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities
description Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2017.
1
cwe_id 937
name OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities
description Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2013.
2
cwe_id 400
name Uncontrolled Resource Consumption
description The product does not properly control the allocation and maintenance of a limited resource, thereby enabling an actor to influence the amount of resources consumed, eventually leading to the exhaustion of available resources.
Exploits
Severity_range_score4.0 - 8.9
Exploitability0.5
Weighted_severity8.0
Risk_score4.0
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-7few-6w74-43cm