Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-xqjr-7xfw-mbh2
Summary
Relative Path Traversal vulnerability in Apache Tomcat.

The fix for bug 60013 introduced a regression where the       rewritten URL was normalized before it was decoded. This introduced the       possibility that, for rewrite rules that rewrite query parameters to the       URL, an attacker could manipulate the request URI to bypass security       constraints including the protection for /WEB-INF/ and /META-INF/. If PUT requests were also enabled then malicious files could be uploaded leading to remote code execution. PUT requests are normally limited to trusted users and it is considered unlikely that PUT requests would be enabled in conjunction with a rewrite that manipulated the URI.



This issue affects Apache Tomcat: from 11.0.0-M1 through 11.0.10, from 10.1.0-M1 through 10.1.44, from 9.0.0.M11 through 9.0.108.

The following versions were EOL at the time the CVE was created but are 
known to be affected: 8.5.6 though 8.5.100. Other, older, EOL versions may also be affected.
Users are recommended to upgrade to version 11.0.11 or later, 10.1.45 or later or 9.0.109 or later, which fix the issue.
Aliases
0
alias CVE-2025-55752
1
alias GHSA-wmwf-9ccg-fff5
Fixed_packages
0
url pkg:apache/tomcat@9.0.109
purl pkg:apache/tomcat@9.0.109
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4cag-c4pb-dfaz
resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@9.0.109
1
url pkg:apache/tomcat@10.1.45
purl pkg:apache/tomcat@10.1.45
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@10.1.45
2
url pkg:apache/tomcat@11.0.11
purl pkg:apache/tomcat@11.0.11
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4cag-c4pb-dfaz
resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@11.0.11
3
url pkg:deb/debian/tomcat10@10.1.34-0%2Bdeb12u2?distro=trixie
purl pkg:deb/debian/tomcat10@10.1.34-0%2Bdeb12u2?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2rmy-13ym-3bgm
1
vulnerability VCID-35xg-a746-5qgc
2
vulnerability VCID-74tx-sx8a-guhs
3
vulnerability VCID-8e1c-rbkg-v7c2
4
vulnerability VCID-d1fm-vbd1-n7au
5
vulnerability VCID-gyed-x6s8-ybhr
6
vulnerability VCID-rsxs-u5cc-rkgj
7
vulnerability VCID-yrzk-1dbk-muhy
8
vulnerability VCID-zw2q-kna8-mqcm
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat10@10.1.34-0%252Bdeb12u2%3Fdistro=trixie
4
url pkg:deb/debian/tomcat10@10.1.46-1?distro=trixie
purl pkg:deb/debian/tomcat10@10.1.46-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat10@10.1.46-1%3Fdistro=trixie
5
url pkg:deb/debian/tomcat10@10.1.52-1~deb12u1?distro=trixie
purl pkg:deb/debian/tomcat10@10.1.52-1~deb12u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat10@10.1.52-1~deb12u1%3Fdistro=trixie
6
url pkg:deb/debian/tomcat10@10.1.52-1~deb13u1?distro=trixie
purl pkg:deb/debian/tomcat10@10.1.52-1~deb13u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2rmy-13ym-3bgm
1
vulnerability VCID-35xg-a746-5qgc
2
vulnerability VCID-74tx-sx8a-guhs
3
vulnerability VCID-8e1c-rbkg-v7c2
4
vulnerability VCID-d1fm-vbd1-n7au
5
vulnerability VCID-gyed-x6s8-ybhr
6
vulnerability VCID-rsxs-u5cc-rkgj
7
vulnerability VCID-yrzk-1dbk-muhy
8
vulnerability VCID-zw2q-kna8-mqcm
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat10@10.1.52-1~deb13u1%3Fdistro=trixie
7
url pkg:deb/debian/tomcat10@10.1.52-1?distro=trixie
purl pkg:deb/debian/tomcat10@10.1.52-1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2rmy-13ym-3bgm
1
vulnerability VCID-35xg-a746-5qgc
2
vulnerability VCID-74tx-sx8a-guhs
3
vulnerability VCID-8e1c-rbkg-v7c2
4
vulnerability VCID-d1fm-vbd1-n7au
5
vulnerability VCID-gyed-x6s8-ybhr
6
vulnerability VCID-rsxs-u5cc-rkgj
7
vulnerability VCID-yrzk-1dbk-muhy
8
vulnerability VCID-zw2q-kna8-mqcm
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat10@10.1.52-1%3Fdistro=trixie
8
url pkg:deb/debian/tomcat10@10.1.52-2?distro=trixie
purl pkg:deb/debian/tomcat10@10.1.52-2?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat10@10.1.52-2%3Fdistro=trixie
9
url pkg:deb/debian/tomcat10@10.1.54-1?distro=trixie
purl pkg:deb/debian/tomcat10@10.1.54-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat10@10.1.54-1%3Fdistro=trixie
10
url pkg:deb/debian/tomcat11@11.0.11-1?distro=trixie
purl pkg:deb/debian/tomcat11@11.0.11-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat11@11.0.11-1%3Fdistro=trixie
11
url pkg:deb/debian/tomcat11@11.0.15-1~deb13u1?distro=trixie
purl pkg:deb/debian/tomcat11@11.0.15-1~deb13u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2rmy-13ym-3bgm
1
vulnerability VCID-35xg-a746-5qgc
2
vulnerability VCID-74tx-sx8a-guhs
3
vulnerability VCID-8e1c-rbkg-v7c2
4
vulnerability VCID-8war-4v58-eub2
5
vulnerability VCID-d1fm-vbd1-n7au
6
vulnerability VCID-gyed-x6s8-ybhr
7
vulnerability VCID-rsxs-u5cc-rkgj
8
vulnerability VCID-yrzk-1dbk-muhy
9
vulnerability VCID-zw2q-kna8-mqcm
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat11@11.0.15-1~deb13u1%3Fdistro=trixie
12
url pkg:deb/debian/tomcat11@11.0.18-1?distro=trixie
purl pkg:deb/debian/tomcat11@11.0.18-1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2rmy-13ym-3bgm
1
vulnerability VCID-35xg-a746-5qgc
2
vulnerability VCID-74tx-sx8a-guhs
3
vulnerability VCID-8e1c-rbkg-v7c2
4
vulnerability VCID-d1fm-vbd1-n7au
5
vulnerability VCID-gyed-x6s8-ybhr
6
vulnerability VCID-rsxs-u5cc-rkgj
7
vulnerability VCID-yrzk-1dbk-muhy
8
vulnerability VCID-zw2q-kna8-mqcm
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat11@11.0.18-1%3Fdistro=trixie
13
url pkg:deb/debian/tomcat11@11.0.21-1?distro=trixie
purl pkg:deb/debian/tomcat11@11.0.21-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat11@11.0.21-1%3Fdistro=trixie
14
url pkg:deb/debian/tomcat9@9.0.43-2~deb11u10?distro=trixie
purl pkg:deb/debian/tomcat9@9.0.43-2~deb11u10?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat9@9.0.43-2~deb11u10%3Fdistro=trixie
15
url pkg:deb/debian/tomcat9@9.0.70-2?distro=trixie
purl pkg:deb/debian/tomcat9@9.0.70-2?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat9@9.0.70-2%3Fdistro=trixie
16
url pkg:deb/debian/tomcat9@9.0.95-1?distro=trixie
purl pkg:deb/debian/tomcat9@9.0.95-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat9@9.0.95-1%3Fdistro=trixie
17
url pkg:deb/debian/tomcat9@9.0.107-0%2Bdeb11u2?distro=trixie
purl pkg:deb/debian/tomcat9@9.0.107-0%2Bdeb11u2?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat9@9.0.107-0%252Bdeb11u2%3Fdistro=trixie
18
url pkg:deb/debian/tomcat9@9.0.115-1?distro=trixie
purl pkg:deb/debian/tomcat9@9.0.115-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat9@9.0.115-1%3Fdistro=trixie
19
url pkg:deb/debian/tomcat9@9.0.115-1
purl pkg:deb/debian/tomcat9@9.0.115-1
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat9@9.0.115-1
20
url pkg:maven/org.apache.tomcat/tomcat@9.0.109
purl pkg:maven/org.apache.tomcat/tomcat@9.0.109
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4cag-c4pb-dfaz
1
vulnerability VCID-8war-4v58-eub2
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@9.0.109
21
url pkg:maven/org.apache.tomcat/tomcat@10.1.45
purl pkg:maven/org.apache.tomcat/tomcat@10.1.45
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-8war-4v58-eub2
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@10.1.45
22
url pkg:maven/org.apache.tomcat/tomcat@11.0.11
purl pkg:maven/org.apache.tomcat/tomcat@11.0.11
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4cag-c4pb-dfaz
1
vulnerability VCID-8war-4v58-eub2
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@11.0.11
23
url pkg:maven/org.apache.tomcat/tomcat-catalina@9.0.109
purl pkg:maven/org.apache.tomcat/tomcat-catalina@9.0.109
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat-catalina@9.0.109
24
url pkg:maven/org.apache.tomcat/tomcat-catalina@10.1.45
purl pkg:maven/org.apache.tomcat/tomcat-catalina@10.1.45
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat-catalina@10.1.45
25
url pkg:maven/org.apache.tomcat/tomcat-catalina@11.0.11
purl pkg:maven/org.apache.tomcat/tomcat-catalina@11.0.11
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat-catalina@11.0.11
26
url pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@9.0.109
purl pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@9.0.109
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@9.0.109
27
url pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@10.1.45
purl pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@10.1.45
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@10.1.45
28
url pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@11.0.11
purl pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@11.0.11
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@11.0.11
Affected_packages
0
url pkg:apache/tomcat@9.0.0%2BM11
purl pkg:apache/tomcat@9.0.0%2BM11
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3r3s-q21j-c3au
1
vulnerability VCID-6wvu-2rmc-mfhj
2
vulnerability VCID-95d1-arxd-hkd1
3
vulnerability VCID-xqjr-7xfw-mbh2
4
vulnerability VCID-yxpq-rrry-j3h8
resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@9.0.0%252BM11
1
url pkg:apache/tomcat@9.0.108
purl pkg:apache/tomcat@9.0.108
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-cfhw-vmcp-y3bc
1
vulnerability VCID-xqjr-7xfw-mbh2
resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@9.0.108
2
url pkg:apache/tomcat@10.1.0-M1
purl pkg:apache/tomcat@10.1.0-M1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1e6p-cppr-2bh2
1
vulnerability VCID-246u-a4rh-yyd4
2
vulnerability VCID-2kku-pzer-9ufv
3
vulnerability VCID-2rmy-13ym-3bgm
4
vulnerability VCID-2x6a-3gh1-rkhs
5
vulnerability VCID-3vdn-j7sj-dfdn
6
vulnerability VCID-43j2-w5xt-43g9
7
vulnerability VCID-4cag-c4pb-dfaz
8
vulnerability VCID-56jv-htmt-rkew
9
vulnerability VCID-5781-s1ny-q7ey
10
vulnerability VCID-5sgv-7nsz-5fa8
11
vulnerability VCID-6pm1-byhk-eqfg
12
vulnerability VCID-8mns-kw6c-a7dk
13
vulnerability VCID-8myk-ac5b-huh8
14
vulnerability VCID-b3bb-9ajg-sfc9
15
vulnerability VCID-cfhw-vmcp-y3bc
16
vulnerability VCID-d1fm-vbd1-n7au
17
vulnerability VCID-fpgj-82wf-ykbw
18
vulnerability VCID-gb2v-96xj-ybad
19
vulnerability VCID-gvhy-d4gm-57d3
20
vulnerability VCID-gyed-x6s8-ybhr
21
vulnerability VCID-j6cj-ftyd-3ffa
22
vulnerability VCID-j8tk-s915-pbfy
23
vulnerability VCID-k59r-wjt3-wqe5
24
vulnerability VCID-kukv-k3z7-7fgs
25
vulnerability VCID-maw6-4qs5-ykae
26
vulnerability VCID-n9yk-e49f-n7e7
27
vulnerability VCID-nmq2-8ysj-4fbc
28
vulnerability VCID-p6pa-f1fg-hbhg
29
vulnerability VCID-p8q2-pt96-5ye8
30
vulnerability VCID-qkx6-32cj-jfbp
31
vulnerability VCID-rzj2-4kcj-43dq
32
vulnerability VCID-sr8e-w1qk-r7fz
33
vulnerability VCID-stds-vw5z-auhp
34
vulnerability VCID-v7tp-1t4h-zqeg
35
vulnerability VCID-v8ku-sjc8-wfga
36
vulnerability VCID-vsdf-4tfj-uybe
37
vulnerability VCID-wptr-hkjx-s7c3
38
vulnerability VCID-xqjr-7xfw-mbh2
39
vulnerability VCID-y9ne-rw7e-vugf
40
vulnerability VCID-zw2q-kna8-mqcm
resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@10.1.0-M1
3
url pkg:apache/tomcat@10.1.44
purl pkg:apache/tomcat@10.1.44
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-cfhw-vmcp-y3bc
1
vulnerability VCID-xqjr-7xfw-mbh2
resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@10.1.44
4
url pkg:apache/tomcat@11.0.0-M1
purl pkg:apache/tomcat@11.0.0-M1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1e6p-cppr-2bh2
1
vulnerability VCID-246u-a4rh-yyd4
2
vulnerability VCID-2kku-pzer-9ufv
3
vulnerability VCID-2rmy-13ym-3bgm
4
vulnerability VCID-2x6a-3gh1-rkhs
5
vulnerability VCID-3vdn-j7sj-dfdn
6
vulnerability VCID-43j2-w5xt-43g9
7
vulnerability VCID-4cag-c4pb-dfaz
8
vulnerability VCID-5781-s1ny-q7ey
9
vulnerability VCID-5sgv-7nsz-5fa8
10
vulnerability VCID-74tx-sx8a-guhs
11
vulnerability VCID-8mns-kw6c-a7dk
12
vulnerability VCID-8myk-ac5b-huh8
13
vulnerability VCID-8war-4v58-eub2
14
vulnerability VCID-b3bb-9ajg-sfc9
15
vulnerability VCID-bks8-nvm9-vbgy
16
vulnerability VCID-cfhw-vmcp-y3bc
17
vulnerability VCID-d1fm-vbd1-n7au
18
vulnerability VCID-fpgj-82wf-ykbw
19
vulnerability VCID-gb2v-96xj-ybad
20
vulnerability VCID-gvhy-d4gm-57d3
21
vulnerability VCID-gyed-x6s8-ybhr
22
vulnerability VCID-j6cj-ftyd-3ffa
23
vulnerability VCID-k59r-wjt3-wqe5
24
vulnerability VCID-kukv-k3z7-7fgs
25
vulnerability VCID-maw6-4qs5-ykae
26
vulnerability VCID-n9yk-e49f-n7e7
27
vulnerability VCID-p6pa-f1fg-hbhg
28
vulnerability VCID-rzj2-4kcj-43dq
29
vulnerability VCID-sr8e-w1qk-r7fz
30
vulnerability VCID-v7tp-1t4h-zqeg
31
vulnerability VCID-v8ku-sjc8-wfga
32
vulnerability VCID-vsdf-4tfj-uybe
33
vulnerability VCID-xqjr-7xfw-mbh2
34
vulnerability VCID-y9ne-rw7e-vugf
35
vulnerability VCID-yrzk-1dbk-muhy
36
vulnerability VCID-zw2q-kna8-mqcm
resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@11.0.0-M1
5
url pkg:apache/tomcat@11.0.10
purl pkg:apache/tomcat@11.0.10
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-cfhw-vmcp-y3bc
1
vulnerability VCID-xqjr-7xfw-mbh2
resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@11.0.10
6
url pkg:deb/debian/tomcat9@9.0.31-1~deb10u6
purl pkg:deb/debian/tomcat9@9.0.31-1~deb10u6
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1e6p-cppr-2bh2
1
vulnerability VCID-246u-a4rh-yyd4
2
vulnerability VCID-2kku-pzer-9ufv
3
vulnerability VCID-2rmy-13ym-3bgm
4
vulnerability VCID-2x6a-3gh1-rkhs
5
vulnerability VCID-2zq1-na8s-mfdd
6
vulnerability VCID-35xg-a746-5qgc
7
vulnerability VCID-3vdn-j7sj-dfdn
8
vulnerability VCID-43j2-w5xt-43g9
9
vulnerability VCID-46bv-6b7y-3bca
10
vulnerability VCID-4cag-c4pb-dfaz
11
vulnerability VCID-56jv-htmt-rkew
12
vulnerability VCID-5781-s1ny-q7ey
13
vulnerability VCID-5sgv-7nsz-5fa8
14
vulnerability VCID-66kh-s6cr-tqf9
15
vulnerability VCID-6pm1-byhk-eqfg
16
vulnerability VCID-74tx-sx8a-guhs
17
vulnerability VCID-885s-t4dx-dybv
18
vulnerability VCID-8e1c-rbkg-v7c2
19
vulnerability VCID-8mns-kw6c-a7dk
20
vulnerability VCID-8myk-ac5b-huh8
21
vulnerability VCID-8war-4v58-eub2
22
vulnerability VCID-9kfe-1esf-uydm
23
vulnerability VCID-a8gk-n8bq-87cp
24
vulnerability VCID-b3bb-9ajg-sfc9
25
vulnerability VCID-cfhw-vmcp-y3bc
26
vulnerability VCID-d1fm-vbd1-n7au
27
vulnerability VCID-dy6m-zt6r-9ubd
28
vulnerability VCID-dzan-r49k-kqab
29
vulnerability VCID-dzpn-w4b3-vbcm
30
vulnerability VCID-eb37-mkxf-7fgw
31
vulnerability VCID-fpgj-82wf-ykbw
32
vulnerability VCID-gb2v-96xj-ybad
33
vulnerability VCID-gvhy-d4gm-57d3
34
vulnerability VCID-gyed-x6s8-ybhr
35
vulnerability VCID-j6cj-ftyd-3ffa
36
vulnerability VCID-j8tk-s915-pbfy
37
vulnerability VCID-k59r-wjt3-wqe5
38
vulnerability VCID-k9cg-ehdw-dbh6
39
vulnerability VCID-kukv-k3z7-7fgs
40
vulnerability VCID-kwab-3s4q-eka4
41
vulnerability VCID-maw6-4qs5-ykae
42
vulnerability VCID-n3ab-nk7c-hqc9
43
vulnerability VCID-n9yk-e49f-n7e7
44
vulnerability VCID-nmq2-8ysj-4fbc
45
vulnerability VCID-nvbx-q971-skgm
46
vulnerability VCID-p6pa-f1fg-hbhg
47
vulnerability VCID-p8q2-pt96-5ye8
48
vulnerability VCID-qkx6-32cj-jfbp
49
vulnerability VCID-ran8-rnqn-tkbc
50
vulnerability VCID-rq42-qvsy-hue6
51
vulnerability VCID-rsxs-u5cc-rkgj
52
vulnerability VCID-ruuh-g3fa-m7d8
53
vulnerability VCID-rzj2-4kcj-43dq
54
vulnerability VCID-sr8e-w1qk-r7fz
55
vulnerability VCID-stds-vw5z-auhp
56
vulnerability VCID-t2ne-75ck-eqcr
57
vulnerability VCID-v7tp-1t4h-zqeg
58
vulnerability VCID-v8ku-sjc8-wfga
59
vulnerability VCID-vsdf-4tfj-uybe
60
vulnerability VCID-wgsc-dnn1-ukeq
61
vulnerability VCID-wptr-hkjx-s7c3
62
vulnerability VCID-xqjr-7xfw-mbh2
63
vulnerability VCID-xt59-cnmj-2bf8
64
vulnerability VCID-y9ne-rw7e-vugf
65
vulnerability VCID-yfx4-4gsc-2kgh
66
vulnerability VCID-yrzk-1dbk-muhy
67
vulnerability VCID-z2pq-cv2w-nfdk
68
vulnerability VCID-zw2q-kna8-mqcm
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat9@9.0.31-1~deb10u6
7
url pkg:deb/debian/tomcat9@9.0.43-2~deb11u10
purl pkg:deb/debian/tomcat9@9.0.43-2~deb11u10
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1e6p-cppr-2bh2
1
vulnerability VCID-246u-a4rh-yyd4
2
vulnerability VCID-2kku-pzer-9ufv
3
vulnerability VCID-2rmy-13ym-3bgm
4
vulnerability VCID-2x6a-3gh1-rkhs
5
vulnerability VCID-2zq1-na8s-mfdd
6
vulnerability VCID-35xg-a746-5qgc
7
vulnerability VCID-3vdn-j7sj-dfdn
8
vulnerability VCID-43j2-w5xt-43g9
9
vulnerability VCID-4cag-c4pb-dfaz
10
vulnerability VCID-5sgv-7nsz-5fa8
11
vulnerability VCID-74tx-sx8a-guhs
12
vulnerability VCID-8e1c-rbkg-v7c2
13
vulnerability VCID-8mns-kw6c-a7dk
14
vulnerability VCID-8myk-ac5b-huh8
15
vulnerability VCID-8war-4v58-eub2
16
vulnerability VCID-9kfe-1esf-uydm
17
vulnerability VCID-cfhw-vmcp-y3bc
18
vulnerability VCID-d1fm-vbd1-n7au
19
vulnerability VCID-fpgj-82wf-ykbw
20
vulnerability VCID-gb2v-96xj-ybad
21
vulnerability VCID-gvhy-d4gm-57d3
22
vulnerability VCID-gyed-x6s8-ybhr
23
vulnerability VCID-k59r-wjt3-wqe5
24
vulnerability VCID-k9cg-ehdw-dbh6
25
vulnerability VCID-kukv-k3z7-7fgs
26
vulnerability VCID-maw6-4qs5-ykae
27
vulnerability VCID-p8q2-pt96-5ye8
28
vulnerability VCID-rsxs-u5cc-rkgj
29
vulnerability VCID-sr8e-w1qk-r7fz
30
vulnerability VCID-v8ku-sjc8-wfga
31
vulnerability VCID-xqjr-7xfw-mbh2
32
vulnerability VCID-y9ne-rw7e-vugf
33
vulnerability VCID-yrzk-1dbk-muhy
34
vulnerability VCID-zw2q-kna8-mqcm
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat9@9.0.43-2~deb11u10
8
url pkg:deb/debian/tomcat9@9.0.70-2
purl pkg:deb/debian/tomcat9@9.0.70-2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-246u-a4rh-yyd4
1
vulnerability VCID-2x6a-3gh1-rkhs
2
vulnerability VCID-2zq1-na8s-mfdd
3
vulnerability VCID-4cag-c4pb-dfaz
4
vulnerability VCID-8myk-ac5b-huh8
5
vulnerability VCID-9kfe-1esf-uydm
6
vulnerability VCID-cfhw-vmcp-y3bc
7
vulnerability VCID-fpgj-82wf-ykbw
8
vulnerability VCID-gb2v-96xj-ybad
9
vulnerability VCID-gvhy-d4gm-57d3
10
vulnerability VCID-k59r-wjt3-wqe5
11
vulnerability VCID-kukv-k3z7-7fgs
12
vulnerability VCID-sr8e-w1qk-r7fz
13
vulnerability VCID-xqjr-7xfw-mbh2
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat9@9.0.70-2
9
url pkg:deb/debian/tomcat9@9.0.95-1
purl pkg:deb/debian/tomcat9@9.0.95-1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-246u-a4rh-yyd4
1
vulnerability VCID-2x6a-3gh1-rkhs
2
vulnerability VCID-2zq1-na8s-mfdd
3
vulnerability VCID-4cag-c4pb-dfaz
4
vulnerability VCID-8myk-ac5b-huh8
5
vulnerability VCID-9kfe-1esf-uydm
6
vulnerability VCID-cfhw-vmcp-y3bc
7
vulnerability VCID-fpgj-82wf-ykbw
8
vulnerability VCID-gb2v-96xj-ybad
9
vulnerability VCID-gvhy-d4gm-57d3
10
vulnerability VCID-k59r-wjt3-wqe5
11
vulnerability VCID-kukv-k3z7-7fgs
12
vulnerability VCID-sr8e-w1qk-r7fz
13
vulnerability VCID-xqjr-7xfw-mbh2
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat9@9.0.95-1
10
url pkg:maven/org.apache.tomcat/tomcat@8.5.6
purl pkg:maven/org.apache.tomcat/tomcat@8.5.6
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1hdb-24e3-f3d6
1
vulnerability VCID-2sbh-sy57-3uez
2
vulnerability VCID-39e3-jfbg-s3hk
3
vulnerability VCID-3r3s-q21j-c3au
4
vulnerability VCID-46bv-6b7y-3bca
5
vulnerability VCID-4aaa-errb-2qdw
6
vulnerability VCID-4tf3-7f5b-2ffu
7
vulnerability VCID-95d1-arxd-hkd1
8
vulnerability VCID-a8gk-n8bq-87cp
9
vulnerability VCID-aeeu-fpay-wufz
10
vulnerability VCID-arkn-bca7-hqam
11
vulnerability VCID-ayrd-8ntf-hkh3
12
vulnerability VCID-b3bb-9ajg-sfc9
13
vulnerability VCID-dy6m-zt6r-9ubd
14
vulnerability VCID-dzpn-w4b3-vbcm
15
vulnerability VCID-eb37-mkxf-7fgw
16
vulnerability VCID-enaj-f97c-jbh7
17
vulnerability VCID-f77q-v5xp-e7dy
18
vulnerability VCID-fyfz-6tr5-2fc7
19
vulnerability VCID-g7bk-891a-uufy
20
vulnerability VCID-hmbm-5ysw-77bu
21
vulnerability VCID-j8tk-s915-pbfy
22
vulnerability VCID-kwab-3s4q-eka4
23
vulnerability VCID-m1zd-uytj-3bej
24
vulnerability VCID-m2zn-ja8d-7kg8
25
vulnerability VCID-n3zn-tuck-gkfe
26
vulnerability VCID-nmq2-8ysj-4fbc
27
vulnerability VCID-ran8-rnqn-tkbc
28
vulnerability VCID-ruuh-g3fa-m7d8
29
vulnerability VCID-u3ck-cvgt-fuhd
30
vulnerability VCID-wbaq-j85q-y3c6
31
vulnerability VCID-xqjr-7xfw-mbh2
32
vulnerability VCID-xshb-a2kb-c7gs
33
vulnerability VCID-yfx4-4gsc-2kgh
34
vulnerability VCID-yxpq-rrry-j3h8
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@8.5.6
11
url pkg:maven/org.apache.tomcat/tomcat@8.5.100
purl pkg:maven/org.apache.tomcat/tomcat@8.5.100
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4cag-c4pb-dfaz
1
vulnerability VCID-cfhw-vmcp-y3bc
2
vulnerability VCID-g7bk-891a-uufy
3
vulnerability VCID-xqjr-7xfw-mbh2
4
vulnerability VCID-yrzk-1dbk-muhy
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@8.5.100
12
url pkg:maven/org.apache.tomcat/tomcat@9.0.0-M11
purl pkg:maven/org.apache.tomcat/tomcat@9.0.0-M11
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-k9cg-ehdw-dbh6
1
vulnerability VCID-xqjr-7xfw-mbh2
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@9.0.0-M11
13
url pkg:maven/org.apache.tomcat/tomcat@9.0.0.M11
purl pkg:maven/org.apache.tomcat/tomcat@9.0.0.M11
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1hdb-24e3-f3d6
1
vulnerability VCID-3r3s-q21j-c3au
2
vulnerability VCID-4tf3-7f5b-2ffu
3
vulnerability VCID-6wvu-2rmc-mfhj
4
vulnerability VCID-95d1-arxd-hkd1
5
vulnerability VCID-ayrd-8ntf-hkh3
6
vulnerability VCID-dzpn-w4b3-vbcm
7
vulnerability VCID-fyfz-6tr5-2fc7
8
vulnerability VCID-g7bk-891a-uufy
9
vulnerability VCID-hmbm-5ysw-77bu
10
vulnerability VCID-k9cg-ehdw-dbh6
11
vulnerability VCID-m1zd-uytj-3bej
12
vulnerability VCID-ruuh-g3fa-m7d8
13
vulnerability VCID-u3ck-cvgt-fuhd
14
vulnerability VCID-wbaq-j85q-y3c6
15
vulnerability VCID-xqjr-7xfw-mbh2
16
vulnerability VCID-yxpq-rrry-j3h8
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@9.0.0.M11
14
url pkg:maven/org.apache.tomcat/tomcat@9.0.108
purl pkg:maven/org.apache.tomcat/tomcat@9.0.108
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-8war-4v58-eub2
1
vulnerability VCID-cfhw-vmcp-y3bc
2
vulnerability VCID-xqjr-7xfw-mbh2
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@9.0.108
15
url pkg:maven/org.apache.tomcat/tomcat@10.1.0-M1
purl pkg:maven/org.apache.tomcat/tomcat@10.1.0-M1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1e6p-cppr-2bh2
1
vulnerability VCID-246u-a4rh-yyd4
2
vulnerability VCID-2kku-pzer-9ufv
3
vulnerability VCID-2rmy-13ym-3bgm
4
vulnerability VCID-2x6a-3gh1-rkhs
5
vulnerability VCID-3vdn-j7sj-dfdn
6
vulnerability VCID-43j2-w5xt-43g9
7
vulnerability VCID-4cag-c4pb-dfaz
8
vulnerability VCID-56jv-htmt-rkew
9
vulnerability VCID-5781-s1ny-q7ey
10
vulnerability VCID-5sgv-7nsz-5fa8
11
vulnerability VCID-6pm1-byhk-eqfg
12
vulnerability VCID-8mns-kw6c-a7dk
13
vulnerability VCID-8myk-ac5b-huh8
14
vulnerability VCID-b3bb-9ajg-sfc9
15
vulnerability VCID-cfhw-vmcp-y3bc
16
vulnerability VCID-d1fm-vbd1-n7au
17
vulnerability VCID-fpgj-82wf-ykbw
18
vulnerability VCID-gb2v-96xj-ybad
19
vulnerability VCID-gvhy-d4gm-57d3
20
vulnerability VCID-gyed-x6s8-ybhr
21
vulnerability VCID-j6cj-ftyd-3ffa
22
vulnerability VCID-j8tk-s915-pbfy
23
vulnerability VCID-k59r-wjt3-wqe5
24
vulnerability VCID-kukv-k3z7-7fgs
25
vulnerability VCID-maw6-4qs5-ykae
26
vulnerability VCID-n9yk-e49f-n7e7
27
vulnerability VCID-nmq2-8ysj-4fbc
28
vulnerability VCID-p6pa-f1fg-hbhg
29
vulnerability VCID-p8q2-pt96-5ye8
30
vulnerability VCID-qkx6-32cj-jfbp
31
vulnerability VCID-rzj2-4kcj-43dq
32
vulnerability VCID-sr8e-w1qk-r7fz
33
vulnerability VCID-stds-vw5z-auhp
34
vulnerability VCID-v7tp-1t4h-zqeg
35
vulnerability VCID-v8ku-sjc8-wfga
36
vulnerability VCID-vsdf-4tfj-uybe
37
vulnerability VCID-wptr-hkjx-s7c3
38
vulnerability VCID-xqjr-7xfw-mbh2
39
vulnerability VCID-y9ne-rw7e-vugf
40
vulnerability VCID-zw2q-kna8-mqcm
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@10.1.0-M1
16
url pkg:maven/org.apache.tomcat/tomcat@10.1.44
purl pkg:maven/org.apache.tomcat/tomcat@10.1.44
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-8war-4v58-eub2
1
vulnerability VCID-cfhw-vmcp-y3bc
2
vulnerability VCID-xqjr-7xfw-mbh2
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@10.1.44
17
url pkg:maven/org.apache.tomcat/tomcat@11.0.0-M1
purl pkg:maven/org.apache.tomcat/tomcat@11.0.0-M1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1e6p-cppr-2bh2
1
vulnerability VCID-246u-a4rh-yyd4
2
vulnerability VCID-2kku-pzer-9ufv
3
vulnerability VCID-2rmy-13ym-3bgm
4
vulnerability VCID-2x6a-3gh1-rkhs
5
vulnerability VCID-3vdn-j7sj-dfdn
6
vulnerability VCID-43j2-w5xt-43g9
7
vulnerability VCID-4cag-c4pb-dfaz
8
vulnerability VCID-5781-s1ny-q7ey
9
vulnerability VCID-5sgv-7nsz-5fa8
10
vulnerability VCID-74tx-sx8a-guhs
11
vulnerability VCID-8mns-kw6c-a7dk
12
vulnerability VCID-8myk-ac5b-huh8
13
vulnerability VCID-8war-4v58-eub2
14
vulnerability VCID-b3bb-9ajg-sfc9
15
vulnerability VCID-bks8-nvm9-vbgy
16
vulnerability VCID-cfhw-vmcp-y3bc
17
vulnerability VCID-d1fm-vbd1-n7au
18
vulnerability VCID-fpgj-82wf-ykbw
19
vulnerability VCID-gb2v-96xj-ybad
20
vulnerability VCID-gvhy-d4gm-57d3
21
vulnerability VCID-gyed-x6s8-ybhr
22
vulnerability VCID-j6cj-ftyd-3ffa
23
vulnerability VCID-k59r-wjt3-wqe5
24
vulnerability VCID-kukv-k3z7-7fgs
25
vulnerability VCID-maw6-4qs5-ykae
26
vulnerability VCID-n9yk-e49f-n7e7
27
vulnerability VCID-p6pa-f1fg-hbhg
28
vulnerability VCID-rzj2-4kcj-43dq
29
vulnerability VCID-sr8e-w1qk-r7fz
30
vulnerability VCID-v7tp-1t4h-zqeg
31
vulnerability VCID-v8ku-sjc8-wfga
32
vulnerability VCID-vsdf-4tfj-uybe
33
vulnerability VCID-xqjr-7xfw-mbh2
34
vulnerability VCID-y9ne-rw7e-vugf
35
vulnerability VCID-yrzk-1dbk-muhy
36
vulnerability VCID-zw2q-kna8-mqcm
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@11.0.0-M1
18
url pkg:maven/org.apache.tomcat/tomcat@11.0.10
purl pkg:maven/org.apache.tomcat/tomcat@11.0.10
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-8war-4v58-eub2
1
vulnerability VCID-cfhw-vmcp-y3bc
2
vulnerability VCID-xqjr-7xfw-mbh2
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@11.0.10
19
url pkg:maven/org.apache.tomcat/tomcat-catalina@8.5.6
purl pkg:maven/org.apache.tomcat/tomcat-catalina@8.5.6
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-66kh-s6cr-tqf9
1
vulnerability VCID-8mns-kw6c-a7dk
2
vulnerability VCID-95d1-arxd-hkd1
3
vulnerability VCID-a8gk-n8bq-87cp
4
vulnerability VCID-ayrd-8ntf-hkh3
5
vulnerability VCID-enaj-f97c-jbh7
6
vulnerability VCID-hves-r5bg-yfes
7
vulnerability VCID-j6cj-ftyd-3ffa
8
vulnerability VCID-j8tk-s915-pbfy
9
vulnerability VCID-ran8-rnqn-tkbc
10
vulnerability VCID-xqjr-7xfw-mbh2
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat-catalina@8.5.6
20
url pkg:maven/org.apache.tomcat/tomcat-catalina@8.5.100
purl pkg:maven/org.apache.tomcat/tomcat-catalina@8.5.100
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-246u-a4rh-yyd4
1
vulnerability VCID-4cag-c4pb-dfaz
2
vulnerability VCID-5sgv-7nsz-5fa8
3
vulnerability VCID-8mns-kw6c-a7dk
4
vulnerability VCID-cfhw-vmcp-y3bc
5
vulnerability VCID-gb2v-96xj-ybad
6
vulnerability VCID-gvhy-d4gm-57d3
7
vulnerability VCID-k59r-wjt3-wqe5
8
vulnerability VCID-kukv-k3z7-7fgs
9
vulnerability VCID-sr8e-w1qk-r7fz
10
vulnerability VCID-v8ku-sjc8-wfga
11
vulnerability VCID-xqjr-7xfw-mbh2
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat-catalina@8.5.100
21
url pkg:maven/org.apache.tomcat/tomcat-catalina@9.0.0-M11
purl pkg:maven/org.apache.tomcat/tomcat-catalina@9.0.0-M11
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-xqjr-7xfw-mbh2
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat-catalina@9.0.0-M11
22
url pkg:maven/org.apache.tomcat/tomcat-catalina@10.1.0-M1
purl pkg:maven/org.apache.tomcat/tomcat-catalina@10.1.0-M1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-246u-a4rh-yyd4
1
vulnerability VCID-2kku-pzer-9ufv
2
vulnerability VCID-2rmy-13ym-3bgm
3
vulnerability VCID-43j2-w5xt-43g9
4
vulnerability VCID-4cag-c4pb-dfaz
5
vulnerability VCID-5sgv-7nsz-5fa8
6
vulnerability VCID-8mns-kw6c-a7dk
7
vulnerability VCID-b3bb-9ajg-sfc9
8
vulnerability VCID-cfhw-vmcp-y3bc
9
vulnerability VCID-d1fm-vbd1-n7au
10
vulnerability VCID-gb2v-96xj-ybad
11
vulnerability VCID-gvhy-d4gm-57d3
12
vulnerability VCID-gyed-x6s8-ybhr
13
vulnerability VCID-k59r-wjt3-wqe5
14
vulnerability VCID-maw6-4qs5-ykae
15
vulnerability VCID-sr8e-w1qk-r7fz
16
vulnerability VCID-v7tp-1t4h-zqeg
17
vulnerability VCID-v8ku-sjc8-wfga
18
vulnerability VCID-xqjr-7xfw-mbh2
19
vulnerability VCID-y9ne-rw7e-vugf
20
vulnerability VCID-zw2q-kna8-mqcm
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat-catalina@10.1.0-M1
23
url pkg:maven/org.apache.tomcat/tomcat-catalina@11.0.0-M1
purl pkg:maven/org.apache.tomcat/tomcat-catalina@11.0.0-M1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-246u-a4rh-yyd4
1
vulnerability VCID-2kku-pzer-9ufv
2
vulnerability VCID-2rmy-13ym-3bgm
3
vulnerability VCID-43j2-w5xt-43g9
4
vulnerability VCID-4cag-c4pb-dfaz
5
vulnerability VCID-5sgv-7nsz-5fa8
6
vulnerability VCID-74tx-sx8a-guhs
7
vulnerability VCID-8mns-kw6c-a7dk
8
vulnerability VCID-b3bb-9ajg-sfc9
9
vulnerability VCID-bks8-nvm9-vbgy
10
vulnerability VCID-cfhw-vmcp-y3bc
11
vulnerability VCID-d1fm-vbd1-n7au
12
vulnerability VCID-gb2v-96xj-ybad
13
vulnerability VCID-gvhy-d4gm-57d3
14
vulnerability VCID-gyed-x6s8-ybhr
15
vulnerability VCID-k59r-wjt3-wqe5
16
vulnerability VCID-maw6-4qs5-ykae
17
vulnerability VCID-sr8e-w1qk-r7fz
18
vulnerability VCID-v7tp-1t4h-zqeg
19
vulnerability VCID-v8ku-sjc8-wfga
20
vulnerability VCID-xqjr-7xfw-mbh2
21
vulnerability VCID-y9ne-rw7e-vugf
22
vulnerability VCID-yrzk-1dbk-muhy
23
vulnerability VCID-zw2q-kna8-mqcm
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat-catalina@11.0.0-M1
24
url pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@8.5.6
purl pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@8.5.6
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1hdb-24e3-f3d6
1
vulnerability VCID-39e3-jfbg-s3hk
2
vulnerability VCID-46bv-6b7y-3bca
3
vulnerability VCID-4tf3-7f5b-2ffu
4
vulnerability VCID-5etb-njwf-rfdu
5
vulnerability VCID-66kh-s6cr-tqf9
6
vulnerability VCID-a8gk-n8bq-87cp
7
vulnerability VCID-ayrd-8ntf-hkh3
8
vulnerability VCID-dy6m-zt6r-9ubd
9
vulnerability VCID-dzan-r49k-kqab
10
vulnerability VCID-dzpn-w4b3-vbcm
11
vulnerability VCID-fpgj-82wf-ykbw
12
vulnerability VCID-fyfz-6tr5-2fc7
13
vulnerability VCID-hmbm-5ysw-77bu
14
vulnerability VCID-hves-r5bg-yfes
15
vulnerability VCID-j6cj-ftyd-3ffa
16
vulnerability VCID-j8tk-s915-pbfy
17
vulnerability VCID-kwab-3s4q-eka4
18
vulnerability VCID-n3ab-nk7c-hqc9
19
vulnerability VCID-nmq2-8ysj-4fbc
20
vulnerability VCID-ran8-rnqn-tkbc
21
vulnerability VCID-ruuh-g3fa-m7d8
22
vulnerability VCID-t2ne-75ck-eqcr
23
vulnerability VCID-u3ck-cvgt-fuhd
24
vulnerability VCID-v7tp-1t4h-zqeg
25
vulnerability VCID-vsdf-4tfj-uybe
26
vulnerability VCID-xqjr-7xfw-mbh2
27
vulnerability VCID-yfx4-4gsc-2kgh
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@8.5.6
25
url pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@8.5.100
purl pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@8.5.100
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-246u-a4rh-yyd4
1
vulnerability VCID-2zq1-na8s-mfdd
2
vulnerability VCID-4cag-c4pb-dfaz
3
vulnerability VCID-5sgv-7nsz-5fa8
4
vulnerability VCID-8myk-ac5b-huh8
5
vulnerability VCID-cfhw-vmcp-y3bc
6
vulnerability VCID-fpgj-82wf-ykbw
7
vulnerability VCID-gb2v-96xj-ybad
8
vulnerability VCID-k59r-wjt3-wqe5
9
vulnerability VCID-kukv-k3z7-7fgs
10
vulnerability VCID-sr8e-w1qk-r7fz
11
vulnerability VCID-v8ku-sjc8-wfga
12
vulnerability VCID-xqjr-7xfw-mbh2
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@8.5.100
26
url pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@9.0.0-M11
purl pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@9.0.0-M11
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-xqjr-7xfw-mbh2
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@9.0.0-M11
27
url pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@10.1.0-M1
purl pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@10.1.0-M1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1e6p-cppr-2bh2
1
vulnerability VCID-246u-a4rh-yyd4
2
vulnerability VCID-2rmy-13ym-3bgm
3
vulnerability VCID-43j2-w5xt-43g9
4
vulnerability VCID-4cag-c4pb-dfaz
5
vulnerability VCID-56jv-htmt-rkew
6
vulnerability VCID-5sgv-7nsz-5fa8
7
vulnerability VCID-8myk-ac5b-huh8
8
vulnerability VCID-b3bb-9ajg-sfc9
9
vulnerability VCID-cfhw-vmcp-y3bc
10
vulnerability VCID-d1fm-vbd1-n7au
11
vulnerability VCID-fpgj-82wf-ykbw
12
vulnerability VCID-gb2v-96xj-ybad
13
vulnerability VCID-gyed-x6s8-ybhr
14
vulnerability VCID-j6cj-ftyd-3ffa
15
vulnerability VCID-k59r-wjt3-wqe5
16
vulnerability VCID-maw6-4qs5-ykae
17
vulnerability VCID-n9yk-e49f-n7e7
18
vulnerability VCID-nmq2-8ysj-4fbc
19
vulnerability VCID-rzj2-4kcj-43dq
20
vulnerability VCID-sr8e-w1qk-r7fz
21
vulnerability VCID-v7tp-1t4h-zqeg
22
vulnerability VCID-v8ku-sjc8-wfga
23
vulnerability VCID-vsdf-4tfj-uybe
24
vulnerability VCID-wptr-hkjx-s7c3
25
vulnerability VCID-xqjr-7xfw-mbh2
26
vulnerability VCID-y9ne-rw7e-vugf
27
vulnerability VCID-zw2q-kna8-mqcm
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@10.1.0-M1
28
url pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@11.0.0-M1
purl pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@11.0.0-M1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1e6p-cppr-2bh2
1
vulnerability VCID-246u-a4rh-yyd4
2
vulnerability VCID-2rmy-13ym-3bgm
3
vulnerability VCID-43j2-w5xt-43g9
4
vulnerability VCID-4cag-c4pb-dfaz
5
vulnerability VCID-5781-s1ny-q7ey
6
vulnerability VCID-5sgv-7nsz-5fa8
7
vulnerability VCID-74tx-sx8a-guhs
8
vulnerability VCID-8myk-ac5b-huh8
9
vulnerability VCID-8war-4v58-eub2
10
vulnerability VCID-b3bb-9ajg-sfc9
11
vulnerability VCID-bks8-nvm9-vbgy
12
vulnerability VCID-cfhw-vmcp-y3bc
13
vulnerability VCID-d1fm-vbd1-n7au
14
vulnerability VCID-fpgj-82wf-ykbw
15
vulnerability VCID-gb2v-96xj-ybad
16
vulnerability VCID-gyed-x6s8-ybhr
17
vulnerability VCID-j6cj-ftyd-3ffa
18
vulnerability VCID-k59r-wjt3-wqe5
19
vulnerability VCID-maw6-4qs5-ykae
20
vulnerability VCID-n9yk-e49f-n7e7
21
vulnerability VCID-rzj2-4kcj-43dq
22
vulnerability VCID-sr8e-w1qk-r7fz
23
vulnerability VCID-v7tp-1t4h-zqeg
24
vulnerability VCID-v8ku-sjc8-wfga
25
vulnerability VCID-vsdf-4tfj-uybe
26
vulnerability VCID-xqjr-7xfw-mbh2
27
vulnerability VCID-y9ne-rw7e-vugf
28
vulnerability VCID-yrzk-1dbk-muhy
29
vulnerability VCID-zw2q-kna8-mqcm
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@11.0.0-M1
29
url pkg:rpm/redhat/jws5-tomcat@9.0.87-14.redhat_00013.1?arch=el8jws
purl pkg:rpm/redhat/jws5-tomcat@9.0.87-14.redhat_00013.1?arch=el8jws
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1e6p-cppr-2bh2
1
vulnerability VCID-kukv-k3z7-7fgs
2
vulnerability VCID-xqjr-7xfw-mbh2
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jws5-tomcat@9.0.87-14.redhat_00013.1%3Farch=el8jws
30
url pkg:rpm/redhat/jws5-tomcat@9.0.87-14.redhat_00013.1?arch=el9jws
purl pkg:rpm/redhat/jws5-tomcat@9.0.87-14.redhat_00013.1?arch=el9jws
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1e6p-cppr-2bh2
1
vulnerability VCID-kukv-k3z7-7fgs
2
vulnerability VCID-xqjr-7xfw-mbh2
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jws5-tomcat@9.0.87-14.redhat_00013.1%3Farch=el9jws
31
url pkg:rpm/redhat/jws5-tomcat@9.0.87-14.redhat_00013.1?arch=el7jws
purl pkg:rpm/redhat/jws5-tomcat@9.0.87-14.redhat_00013.1?arch=el7jws
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1e6p-cppr-2bh2
1
vulnerability VCID-kukv-k3z7-7fgs
2
vulnerability VCID-xqjr-7xfw-mbh2
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jws5-tomcat@9.0.87-14.redhat_00013.1%3Farch=el7jws
32
url pkg:rpm/redhat/jws6-tomcat@10.1.36-19.redhat_00018.1?arch=el9jws
purl pkg:rpm/redhat/jws6-tomcat@10.1.36-19.redhat_00018.1?arch=el9jws
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4cag-c4pb-dfaz
1
vulnerability VCID-kukv-k3z7-7fgs
2
vulnerability VCID-xqjr-7xfw-mbh2
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jws6-tomcat@10.1.36-19.redhat_00018.1%3Farch=el9jws
33
url pkg:rpm/redhat/jws6-tomcat@10.1.36-19.redhat_00018.1?arch=el8jws
purl pkg:rpm/redhat/jws6-tomcat@10.1.36-19.redhat_00018.1?arch=el8jws
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4cag-c4pb-dfaz
1
vulnerability VCID-kukv-k3z7-7fgs
2
vulnerability VCID-xqjr-7xfw-mbh2
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jws6-tomcat@10.1.36-19.redhat_00018.1%3Farch=el8jws
34
url pkg:rpm/redhat/jws6-tomcat@10.1.36-19.redhat_00018.1?arch=el10jws
purl pkg:rpm/redhat/jws6-tomcat@10.1.36-19.redhat_00018.1?arch=el10jws
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4cag-c4pb-dfaz
1
vulnerability VCID-kukv-k3z7-7fgs
2
vulnerability VCID-xqjr-7xfw-mbh2
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jws6-tomcat@10.1.36-19.redhat_00018.1%3Farch=el10jws
35
url pkg:rpm/redhat/pki-servlet-engine@1:9.0.43-4.el9_0?arch=2
purl pkg:rpm/redhat/pki-servlet-engine@1:9.0.43-4.el9_0?arch=2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-kukv-k3z7-7fgs
1
vulnerability VCID-xqjr-7xfw-mbh2
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/pki-servlet-engine@1:9.0.43-4.el9_0%3Farch=2
36
url pkg:rpm/redhat/pki-servlet-engine@1:9.0.50-1.el9_2?arch=3
purl pkg:rpm/redhat/pki-servlet-engine@1:9.0.50-1.el9_2?arch=3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-kukv-k3z7-7fgs
1
vulnerability VCID-xqjr-7xfw-mbh2
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/pki-servlet-engine@1:9.0.50-1.el9_2%3Farch=3
37
url pkg:rpm/redhat/tomcat@1:9.0.87-1.el8_8?arch=8
purl pkg:rpm/redhat/tomcat@1:9.0.87-1.el8_8?arch=8
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-kukv-k3z7-7fgs
1
vulnerability VCID-xqjr-7xfw-mbh2
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/tomcat@1:9.0.87-1.el8_8%3Farch=8
38
url pkg:rpm/redhat/tomcat@1:9.0.87-1.el8_10?arch=7
purl pkg:rpm/redhat/tomcat@1:9.0.87-1.el8_10?arch=7
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-kukv-k3z7-7fgs
1
vulnerability VCID-xqjr-7xfw-mbh2
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/tomcat@1:9.0.87-1.el8_10%3Farch=7
39
url pkg:rpm/redhat/tomcat@1:9.0.87-1.el9_2?arch=7
purl pkg:rpm/redhat/tomcat@1:9.0.87-1.el9_2?arch=7
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-kukv-k3z7-7fgs
1
vulnerability VCID-xqjr-7xfw-mbh2
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/tomcat@1:9.0.87-1.el9_2%3Farch=7
40
url pkg:rpm/redhat/tomcat@1:9.0.87-1.el9_4?arch=7
purl pkg:rpm/redhat/tomcat@1:9.0.87-1.el9_4?arch=7
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-kukv-k3z7-7fgs
1
vulnerability VCID-xqjr-7xfw-mbh2
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/tomcat@1:9.0.87-1.el9_4%3Farch=7
41
url pkg:rpm/redhat/tomcat@1:9.0.87-3.el9_6?arch=4
purl pkg:rpm/redhat/tomcat@1:9.0.87-3.el9_6?arch=4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-kukv-k3z7-7fgs
1
vulnerability VCID-xqjr-7xfw-mbh2
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/tomcat@1:9.0.87-3.el9_6%3Farch=4
42
url pkg:rpm/redhat/tomcat@1:9.0.87-6.el9_7?arch=1
purl pkg:rpm/redhat/tomcat@1:9.0.87-6.el9_7?arch=1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-kukv-k3z7-7fgs
1
vulnerability VCID-xqjr-7xfw-mbh2
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/tomcat@1:9.0.87-6.el9_7%3Farch=1
43
url pkg:rpm/redhat/tomcat@1:10.1.36-1.el10_0?arch=3
purl pkg:rpm/redhat/tomcat@1:10.1.36-1.el10_0?arch=3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4cag-c4pb-dfaz
1
vulnerability VCID-kukv-k3z7-7fgs
2
vulnerability VCID-xqjr-7xfw-mbh2
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/tomcat@1:10.1.36-1.el10_0%3Farch=3
44
url pkg:rpm/redhat/tomcat@1:10.1.36-3.el10_1?arch=1
purl pkg:rpm/redhat/tomcat@1:10.1.36-3.el10_1?arch=1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4cag-c4pb-dfaz
1
vulnerability VCID-kukv-k3z7-7fgs
2
vulnerability VCID-xqjr-7xfw-mbh2
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/tomcat@1:10.1.36-3.el10_1%3Farch=1
45
url pkg:rpm/redhat/tomcat9@1:9.0.87-5.el10_0?arch=4
purl pkg:rpm/redhat/tomcat9@1:9.0.87-5.el10_0?arch=4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-kukv-k3z7-7fgs
1
vulnerability VCID-xqjr-7xfw-mbh2
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/tomcat9@1:9.0.87-5.el10_0%3Farch=4
46
url pkg:rpm/redhat/tomcat9@1:9.0.87-8.el10_1?arch=1
purl pkg:rpm/redhat/tomcat9@1:9.0.87-8.el10_1?arch=1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-kukv-k3z7-7fgs
1
vulnerability VCID-xqjr-7xfw-mbh2
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/tomcat9@1:9.0.87-8.el10_1%3Farch=1
References
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-55752.json
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-55752.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-55752
reference_id
reference_type
scores
0
value 0.00144
scoring_system epss
scoring_elements 0.34655
published_at 2026-04-13T12:55:00Z
1
value 0.00167
scoring_system epss
scoring_elements 0.3795
published_at 2026-04-11T12:55:00Z
2
value 0.00167
scoring_system epss
scoring_elements 0.37922
published_at 2026-04-08T12:55:00Z
3
value 0.00167
scoring_system epss
scoring_elements 0.37914
published_at 2026-04-12T12:55:00Z
4
value 0.00167
scoring_system epss
scoring_elements 0.37934
published_at 2026-04-16T12:55:00Z
5
value 0.00169
scoring_system epss
scoring_elements 0.38046
published_at 2026-04-07T12:55:00Z
6
value 0.0017
scoring_system epss
scoring_elements 0.38312
published_at 2026-04-02T12:55:00Z
7
value 0.0017
scoring_system epss
scoring_elements 0.38337
published_at 2026-04-04T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-55752
2
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
3
reference_url https://github.com/apache/tomcat
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value 7.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/apache/tomcat
4
reference_url https://github.com/apache/tomcat/commit/130d36d8492ef9e4eb22952c17c92423cb35fd06
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value 7.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/apache/tomcat/commit/130d36d8492ef9e4eb22952c17c92423cb35fd06
5
reference_url https://github.com/apache/tomcat/commit/b5042622b8b78340ae65403c55dcb9c7416924df
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value 7.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/apache/tomcat/commit/b5042622b8b78340ae65403c55dcb9c7416924df
6
reference_url https://github.com/apache/tomcat/commit/fec06c610ed7466b401e29cc567a58aee5ed826a
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value 7.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/apache/tomcat/commit/fec06c610ed7466b401e29cc567a58aee5ed826a
7
reference_url https://lists.apache.org/thread/n05kjcwyj1s45ovs8ll1qrrojhfb1tog
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value 7.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-28T03:56:06Z/
url https://lists.apache.org/thread/n05kjcwyj1s45ovs8ll1qrrojhfb1tog
8
reference_url https://tomcat.apache.org/security-10.html#Fixed_in_Apache_Tomcat_10.1.45
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value 7.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://tomcat.apache.org/security-10.html#Fixed_in_Apache_Tomcat_10.1.45
9
reference_url https://tomcat.apache.org/security-11.html#Fixed_in_Apache_Tomcat_11.0.11
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value 7.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://tomcat.apache.org/security-11.html#Fixed_in_Apache_Tomcat_11.0.11
10
reference_url https://tomcat.apache.org/security-9.html#Fixed_in_Apache_Tomcat_9.0.109
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value 7.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://tomcat.apache.org/security-9.html#Fixed_in_Apache_Tomcat_9.0.109
11
reference_url http://www.openwall.com/lists/oss-security/2025/10/27/4
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value 7.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url http://www.openwall.com/lists/oss-security/2025/10/27/4
12
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2406591
reference_id 2406591
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2406591
13
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-55752
reference_id CVE-2025-55752
reference_type
scores
0
value Important
scoring_system apache_tomcat
scoring_elements
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-55752
14
reference_url https://nvd.nist.gov/vuln/detail/CVE-2025-55752
reference_id CVE-2025-55752
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value 7.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2025-55752
15
reference_url https://www.vicarius.io/vsociety/posts/cve-2025-55752-detect-apache-tomcat-vulnerability
reference_id CVE-2025-55752-DETECT-APACHE-TOMCAT-VULNERABILITY
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value 7.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://www.vicarius.io/vsociety/posts/cve-2025-55752-detect-apache-tomcat-vulnerability
16
reference_url https://www.vicarius.io/vsociety/posts/cve-2025-55752-mitigate-apache-tomcat-vulnerability
reference_id CVE-2025-55752-MITIGATE-APACHE-TOMCAT-VULNERABILITY
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value 7.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://www.vicarius.io/vsociety/posts/cve-2025-55752-mitigate-apache-tomcat-vulnerability
17
reference_url https://github.com/advisories/GHSA-wmwf-9ccg-fff5
reference_id GHSA-wmwf-9ccg-fff5
reference_type
scores
0
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-wmwf-9ccg-fff5
18
reference_url https://access.redhat.com/errata/RHSA-2025:19809
reference_id RHSA-2025:19809
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:19809
19
reference_url https://access.redhat.com/errata/RHSA-2025:19810
reference_id RHSA-2025:19810
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:19810
20
reference_url https://access.redhat.com/errata/RHSA-2025:22924
reference_id RHSA-2025:22924
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:22924
21
reference_url https://access.redhat.com/errata/RHSA-2025:22925
reference_id RHSA-2025:22925
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:22925
22
reference_url https://access.redhat.com/errata/RHSA-2025:23044
reference_id RHSA-2025:23044
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:23044
23
reference_url https://access.redhat.com/errata/RHSA-2025:23045
reference_id RHSA-2025:23045
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:23045
24
reference_url https://access.redhat.com/errata/RHSA-2025:23046
reference_id RHSA-2025:23046
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:23046
25
reference_url https://access.redhat.com/errata/RHSA-2025:23047
reference_id RHSA-2025:23047
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:23047
26
reference_url https://access.redhat.com/errata/RHSA-2025:23048
reference_id RHSA-2025:23048
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:23048
27
reference_url https://access.redhat.com/errata/RHSA-2025:23049
reference_id RHSA-2025:23049
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:23049
28
reference_url https://access.redhat.com/errata/RHSA-2025:23050
reference_id RHSA-2025:23050
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:23050
29
reference_url https://access.redhat.com/errata/RHSA-2025:23051
reference_id RHSA-2025:23051
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:23051
30
reference_url https://access.redhat.com/errata/RHSA-2025:23052
reference_id RHSA-2025:23052
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:23052
31
reference_url https://access.redhat.com/errata/RHSA-2025:23053
reference_id RHSA-2025:23053
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:23053
32
reference_url https://access.redhat.com/errata/RHSA-2025:23225
reference_id RHSA-2025:23225
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:23225
33
reference_url https://access.redhat.com/errata/RHSA-2026:0292
reference_id RHSA-2026:0292
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:0292
34
reference_url https://access.redhat.com/errata/RHSA-2026:0293
reference_id RHSA-2026:0293
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:0293
35
reference_url https://access.redhat.com/errata/RHSA-2026:2724
reference_id RHSA-2026:2724
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:2724
36
reference_url https://access.redhat.com/errata/RHSA-2026:2725
reference_id RHSA-2026:2725
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:2725
37
reference_url https://access.redhat.com/errata/RHSA-2026:2726
reference_id RHSA-2026:2726
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:2726
Weaknesses
0
cwe_id 23
name Relative Path Traversal
description The product uses external input to construct a pathname that should be within a restricted directory, but it does not properly neutralize sequences such as .. that can resolve to a location that is outside of that directory.
1
cwe_id 937
name OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities
description Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2013.
2
cwe_id 1035
name OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities
description Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2017.
Exploits
Severity_range_score7.0 - 8.9
Exploitability0.5
Weighted_severity8.0
Risk_score4.0
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-xqjr-7xfw-mbh2