Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-1e6p-cppr-2bh2
Summary
Improper Resource Shutdown or Release vulnerability in Apache Tomcat made Tomcat vulnerable to the made you reset attack.

This issue affects Apache Tomcat: from 11.0.0-M1 through 11.0.9, from 10.1.0-M1 through 10.1.43 and from 9.0.0.M1 through 9.0.107. Older, EOL versions may also be affected.

Users are recommended to upgrade to one of versions 11.0.10, 10.1.44 or 9.0.108 which fix the issue.
Aliases
0
alias CVE-2025-48989
1
alias GHSA-gqp3-2cvr-x8m3
Fixed_packages
0
url pkg:apache/tomcat@9.0.108
purl pkg:apache/tomcat@9.0.108
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-cfhw-vmcp-y3bc
1
vulnerability VCID-xqjr-7xfw-mbh2
resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@9.0.108
1
url pkg:apache/tomcat@10.1.44
purl pkg:apache/tomcat@10.1.44
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-cfhw-vmcp-y3bc
1
vulnerability VCID-xqjr-7xfw-mbh2
resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@10.1.44
2
url pkg:apache/tomcat@11.0.10
purl pkg:apache/tomcat@11.0.10
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-cfhw-vmcp-y3bc
1
vulnerability VCID-xqjr-7xfw-mbh2
resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@11.0.10
3
url pkg:deb/debian/tomcat10@10.1.34-0%2Bdeb12u2?distro=trixie
purl pkg:deb/debian/tomcat10@10.1.34-0%2Bdeb12u2?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2rmy-13ym-3bgm
1
vulnerability VCID-35xg-a746-5qgc
2
vulnerability VCID-74tx-sx8a-guhs
3
vulnerability VCID-8e1c-rbkg-v7c2
4
vulnerability VCID-d1fm-vbd1-n7au
5
vulnerability VCID-gyed-x6s8-ybhr
6
vulnerability VCID-rsxs-u5cc-rkgj
7
vulnerability VCID-yrzk-1dbk-muhy
8
vulnerability VCID-zw2q-kna8-mqcm
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat10@10.1.34-0%252Bdeb12u2%3Fdistro=trixie
4
url pkg:deb/debian/tomcat10@10.1.52-1~deb12u1?distro=trixie
purl pkg:deb/debian/tomcat10@10.1.52-1~deb12u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat10@10.1.52-1~deb12u1%3Fdistro=trixie
5
url pkg:deb/debian/tomcat10@10.1.52-1~deb13u1?distro=trixie
purl pkg:deb/debian/tomcat10@10.1.52-1~deb13u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2rmy-13ym-3bgm
1
vulnerability VCID-35xg-a746-5qgc
2
vulnerability VCID-74tx-sx8a-guhs
3
vulnerability VCID-8e1c-rbkg-v7c2
4
vulnerability VCID-d1fm-vbd1-n7au
5
vulnerability VCID-gyed-x6s8-ybhr
6
vulnerability VCID-rsxs-u5cc-rkgj
7
vulnerability VCID-yrzk-1dbk-muhy
8
vulnerability VCID-zw2q-kna8-mqcm
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat10@10.1.52-1~deb13u1%3Fdistro=trixie
6
url pkg:deb/debian/tomcat10@10.1.52-1?distro=trixie
purl pkg:deb/debian/tomcat10@10.1.52-1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2rmy-13ym-3bgm
1
vulnerability VCID-35xg-a746-5qgc
2
vulnerability VCID-74tx-sx8a-guhs
3
vulnerability VCID-8e1c-rbkg-v7c2
4
vulnerability VCID-d1fm-vbd1-n7au
5
vulnerability VCID-gyed-x6s8-ybhr
6
vulnerability VCID-rsxs-u5cc-rkgj
7
vulnerability VCID-yrzk-1dbk-muhy
8
vulnerability VCID-zw2q-kna8-mqcm
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat10@10.1.52-1%3Fdistro=trixie
7
url pkg:deb/debian/tomcat10@10.1.52-2?distro=trixie
purl pkg:deb/debian/tomcat10@10.1.52-2?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat10@10.1.52-2%3Fdistro=trixie
8
url pkg:deb/debian/tomcat10@10.1.54-1?distro=trixie
purl pkg:deb/debian/tomcat10@10.1.54-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat10@10.1.54-1%3Fdistro=trixie
9
url pkg:deb/debian/tomcat11@11.0.11-1?distro=trixie
purl pkg:deb/debian/tomcat11@11.0.11-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat11@11.0.11-1%3Fdistro=trixie
10
url pkg:deb/debian/tomcat11@11.0.15-1~deb13u1?distro=trixie
purl pkg:deb/debian/tomcat11@11.0.15-1~deb13u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2rmy-13ym-3bgm
1
vulnerability VCID-35xg-a746-5qgc
2
vulnerability VCID-74tx-sx8a-guhs
3
vulnerability VCID-8e1c-rbkg-v7c2
4
vulnerability VCID-8war-4v58-eub2
5
vulnerability VCID-d1fm-vbd1-n7au
6
vulnerability VCID-gyed-x6s8-ybhr
7
vulnerability VCID-rsxs-u5cc-rkgj
8
vulnerability VCID-yrzk-1dbk-muhy
9
vulnerability VCID-zw2q-kna8-mqcm
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat11@11.0.15-1~deb13u1%3Fdistro=trixie
11
url pkg:deb/debian/tomcat11@11.0.18-1?distro=trixie
purl pkg:deb/debian/tomcat11@11.0.18-1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2rmy-13ym-3bgm
1
vulnerability VCID-35xg-a746-5qgc
2
vulnerability VCID-74tx-sx8a-guhs
3
vulnerability VCID-8e1c-rbkg-v7c2
4
vulnerability VCID-d1fm-vbd1-n7au
5
vulnerability VCID-gyed-x6s8-ybhr
6
vulnerability VCID-rsxs-u5cc-rkgj
7
vulnerability VCID-yrzk-1dbk-muhy
8
vulnerability VCID-zw2q-kna8-mqcm
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat11@11.0.18-1%3Fdistro=trixie
12
url pkg:deb/debian/tomcat11@11.0.21-1?distro=trixie
purl pkg:deb/debian/tomcat11@11.0.21-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat11@11.0.21-1%3Fdistro=trixie
13
url pkg:deb/debian/tomcat9@9.0.43-2~deb11u10?distro=trixie
purl pkg:deb/debian/tomcat9@9.0.43-2~deb11u10?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat9@9.0.43-2~deb11u10%3Fdistro=trixie
14
url pkg:deb/debian/tomcat9@9.0.70-2
purl pkg:deb/debian/tomcat9@9.0.70-2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-246u-a4rh-yyd4
1
vulnerability VCID-2x6a-3gh1-rkhs
2
vulnerability VCID-2zq1-na8s-mfdd
3
vulnerability VCID-4cag-c4pb-dfaz
4
vulnerability VCID-8myk-ac5b-huh8
5
vulnerability VCID-9kfe-1esf-uydm
6
vulnerability VCID-cfhw-vmcp-y3bc
7
vulnerability VCID-fpgj-82wf-ykbw
8
vulnerability VCID-gb2v-96xj-ybad
9
vulnerability VCID-gvhy-d4gm-57d3
10
vulnerability VCID-k59r-wjt3-wqe5
11
vulnerability VCID-kukv-k3z7-7fgs
12
vulnerability VCID-sr8e-w1qk-r7fz
13
vulnerability VCID-xqjr-7xfw-mbh2
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat9@9.0.70-2
15
url pkg:deb/debian/tomcat9@9.0.70-2?distro=trixie
purl pkg:deb/debian/tomcat9@9.0.70-2?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat9@9.0.70-2%3Fdistro=trixie
16
url pkg:deb/debian/tomcat9@9.0.95-1?distro=trixie
purl pkg:deb/debian/tomcat9@9.0.95-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat9@9.0.95-1%3Fdistro=trixie
17
url pkg:deb/debian/tomcat9@9.0.115-1?distro=trixie
purl pkg:deb/debian/tomcat9@9.0.115-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat9@9.0.115-1%3Fdistro=trixie
18
url pkg:maven/org.apache.tomcat/tomcat@9.0.108
purl pkg:maven/org.apache.tomcat/tomcat@9.0.108
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-8war-4v58-eub2
1
vulnerability VCID-cfhw-vmcp-y3bc
2
vulnerability VCID-xqjr-7xfw-mbh2
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@9.0.108
19
url pkg:maven/org.apache.tomcat/tomcat@10.1.44
purl pkg:maven/org.apache.tomcat/tomcat@10.1.44
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-8war-4v58-eub2
1
vulnerability VCID-cfhw-vmcp-y3bc
2
vulnerability VCID-xqjr-7xfw-mbh2
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@10.1.44
20
url pkg:maven/org.apache.tomcat/tomcat@11.0.10
purl pkg:maven/org.apache.tomcat/tomcat@11.0.10
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-8war-4v58-eub2
1
vulnerability VCID-cfhw-vmcp-y3bc
2
vulnerability VCID-xqjr-7xfw-mbh2
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@11.0.10
21
url pkg:maven/org.apache.tomcat/tomcat-coyote@9.0.108
purl pkg:maven/org.apache.tomcat/tomcat-coyote@9.0.108
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat-coyote@9.0.108
22
url pkg:maven/org.apache.tomcat/tomcat-coyote@10.1.44
purl pkg:maven/org.apache.tomcat/tomcat-coyote@10.1.44
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat-coyote@10.1.44
23
url pkg:maven/org.apache.tomcat/tomcat-coyote@11.0.10
purl pkg:maven/org.apache.tomcat/tomcat-coyote@11.0.10
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat-coyote@11.0.10
24
url pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@9.0.108
purl pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@9.0.108
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@9.0.108
25
url pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@10.1.44
purl pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@10.1.44
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@10.1.44
26
url pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@11.0.10
purl pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@11.0.10
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@11.0.10
Affected_packages
0
url pkg:apache/tomcat@9.0.0%2BM1
purl pkg:apache/tomcat@9.0.0%2BM1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-18q4-zark-s7a7
1
vulnerability VCID-1e6p-cppr-2bh2
2
vulnerability VCID-1hdb-24e3-f3d6
3
vulnerability VCID-1k8f-vsg1-k3d6
4
vulnerability VCID-246u-a4rh-yyd4
5
vulnerability VCID-2kku-pzer-9ufv
6
vulnerability VCID-2sbh-sy57-3uez
7
vulnerability VCID-2x6a-3gh1-rkhs
8
vulnerability VCID-39e3-jfbg-s3hk
9
vulnerability VCID-3cr9-g81m-4ugy
10
vulnerability VCID-3n4t-bvb1-5qer
11
vulnerability VCID-3r3s-q21j-c3au
12
vulnerability VCID-43j2-w5xt-43g9
13
vulnerability VCID-46bv-6b7y-3bca
14
vulnerability VCID-4aaa-errb-2qdw
15
vulnerability VCID-4cag-c4pb-dfaz
16
vulnerability VCID-4tf3-7f5b-2ffu
17
vulnerability VCID-5sgv-7nsz-5fa8
18
vulnerability VCID-66kh-s6cr-tqf9
19
vulnerability VCID-68fk-4g86-ekbp
20
vulnerability VCID-885s-t4dx-dybv
21
vulnerability VCID-95d1-arxd-hkd1
22
vulnerability VCID-9exq-fhv6-bbea
23
vulnerability VCID-9kfe-1esf-uydm
24
vulnerability VCID-a8gk-n8bq-87cp
25
vulnerability VCID-aeeu-fpay-wufz
26
vulnerability VCID-arkn-bca7-hqam
27
vulnerability VCID-ayrd-8ntf-hkh3
28
vulnerability VCID-dzpn-w4b3-vbcm
29
vulnerability VCID-eb37-mkxf-7fgw
30
vulnerability VCID-enaj-f97c-jbh7
31
vulnerability VCID-f77q-v5xp-e7dy
32
vulnerability VCID-fpgj-82wf-ykbw
33
vulnerability VCID-fyfz-6tr5-2fc7
34
vulnerability VCID-g7bk-891a-uufy
35
vulnerability VCID-gb2v-96xj-ybad
36
vulnerability VCID-gvhy-d4gm-57d3
37
vulnerability VCID-gyed-x6s8-ybhr
38
vulnerability VCID-hmbm-5ysw-77bu
39
vulnerability VCID-hves-r5bg-yfes
40
vulnerability VCID-k59r-wjt3-wqe5
41
vulnerability VCID-kagr-74d9-kyhx
42
vulnerability VCID-kukv-k3z7-7fgs
43
vulnerability VCID-kwab-3s4q-eka4
44
vulnerability VCID-kyb8-rvyw-s7b1
45
vulnerability VCID-m1zd-uytj-3bej
46
vulnerability VCID-m2zn-ja8d-7kg8
47
vulnerability VCID-maw6-4qs5-ykae
48
vulnerability VCID-n3ab-nk7c-hqc9
49
vulnerability VCID-n3zn-tuck-gkfe
50
vulnerability VCID-nvbx-q971-skgm
51
vulnerability VCID-pqxe-tfhk-47b7
52
vulnerability VCID-ruuh-g3fa-m7d8
53
vulnerability VCID-sr8e-w1qk-r7fz
54
vulnerability VCID-t2ne-75ck-eqcr
55
vulnerability VCID-tfrs-d458-tfaq
56
vulnerability VCID-u3ck-cvgt-fuhd
57
vulnerability VCID-v8ku-sjc8-wfga
58
vulnerability VCID-vdnj-sqmx-e3ep
59
vulnerability VCID-vhjj-dnft-kkf4
60
vulnerability VCID-wbaq-j85q-y3c6
61
vulnerability VCID-wgsc-dnn1-ukeq
62
vulnerability VCID-xf8r-kqxb-7qdy
63
vulnerability VCID-y9ne-rw7e-vugf
64
vulnerability VCID-yfx4-4gsc-2kgh
65
vulnerability VCID-yxpq-rrry-j3h8
resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@9.0.0%252BM1
1
url pkg:apache/tomcat@9.0.107
purl pkg:apache/tomcat@9.0.107
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1e6p-cppr-2bh2
resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@9.0.107
2
url pkg:apache/tomcat@10.1.0-M1
purl pkg:apache/tomcat@10.1.0-M1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1e6p-cppr-2bh2
1
vulnerability VCID-246u-a4rh-yyd4
2
vulnerability VCID-2kku-pzer-9ufv
3
vulnerability VCID-2rmy-13ym-3bgm
4
vulnerability VCID-2x6a-3gh1-rkhs
5
vulnerability VCID-3vdn-j7sj-dfdn
6
vulnerability VCID-43j2-w5xt-43g9
7
vulnerability VCID-4cag-c4pb-dfaz
8
vulnerability VCID-56jv-htmt-rkew
9
vulnerability VCID-5781-s1ny-q7ey
10
vulnerability VCID-5sgv-7nsz-5fa8
11
vulnerability VCID-6pm1-byhk-eqfg
12
vulnerability VCID-8mns-kw6c-a7dk
13
vulnerability VCID-8myk-ac5b-huh8
14
vulnerability VCID-b3bb-9ajg-sfc9
15
vulnerability VCID-cfhw-vmcp-y3bc
16
vulnerability VCID-d1fm-vbd1-n7au
17
vulnerability VCID-fpgj-82wf-ykbw
18
vulnerability VCID-gb2v-96xj-ybad
19
vulnerability VCID-gvhy-d4gm-57d3
20
vulnerability VCID-gyed-x6s8-ybhr
21
vulnerability VCID-j6cj-ftyd-3ffa
22
vulnerability VCID-j8tk-s915-pbfy
23
vulnerability VCID-k59r-wjt3-wqe5
24
vulnerability VCID-kukv-k3z7-7fgs
25
vulnerability VCID-maw6-4qs5-ykae
26
vulnerability VCID-n9yk-e49f-n7e7
27
vulnerability VCID-nmq2-8ysj-4fbc
28
vulnerability VCID-p6pa-f1fg-hbhg
29
vulnerability VCID-p8q2-pt96-5ye8
30
vulnerability VCID-qkx6-32cj-jfbp
31
vulnerability VCID-rzj2-4kcj-43dq
32
vulnerability VCID-sr8e-w1qk-r7fz
33
vulnerability VCID-stds-vw5z-auhp
34
vulnerability VCID-v7tp-1t4h-zqeg
35
vulnerability VCID-v8ku-sjc8-wfga
36
vulnerability VCID-vsdf-4tfj-uybe
37
vulnerability VCID-wptr-hkjx-s7c3
38
vulnerability VCID-xqjr-7xfw-mbh2
39
vulnerability VCID-y9ne-rw7e-vugf
40
vulnerability VCID-zw2q-kna8-mqcm
resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@10.1.0-M1
3
url pkg:apache/tomcat@10.1.43
purl pkg:apache/tomcat@10.1.43
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1e6p-cppr-2bh2
resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@10.1.43
4
url pkg:apache/tomcat@11.0.0-M1
purl pkg:apache/tomcat@11.0.0-M1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1e6p-cppr-2bh2
1
vulnerability VCID-246u-a4rh-yyd4
2
vulnerability VCID-2kku-pzer-9ufv
3
vulnerability VCID-2rmy-13ym-3bgm
4
vulnerability VCID-2x6a-3gh1-rkhs
5
vulnerability VCID-3vdn-j7sj-dfdn
6
vulnerability VCID-43j2-w5xt-43g9
7
vulnerability VCID-4cag-c4pb-dfaz
8
vulnerability VCID-5781-s1ny-q7ey
9
vulnerability VCID-5sgv-7nsz-5fa8
10
vulnerability VCID-74tx-sx8a-guhs
11
vulnerability VCID-8mns-kw6c-a7dk
12
vulnerability VCID-8myk-ac5b-huh8
13
vulnerability VCID-8war-4v58-eub2
14
vulnerability VCID-b3bb-9ajg-sfc9
15
vulnerability VCID-bks8-nvm9-vbgy
16
vulnerability VCID-cfhw-vmcp-y3bc
17
vulnerability VCID-d1fm-vbd1-n7au
18
vulnerability VCID-fpgj-82wf-ykbw
19
vulnerability VCID-gb2v-96xj-ybad
20
vulnerability VCID-gvhy-d4gm-57d3
21
vulnerability VCID-gyed-x6s8-ybhr
22
vulnerability VCID-j6cj-ftyd-3ffa
23
vulnerability VCID-k59r-wjt3-wqe5
24
vulnerability VCID-kukv-k3z7-7fgs
25
vulnerability VCID-maw6-4qs5-ykae
26
vulnerability VCID-n9yk-e49f-n7e7
27
vulnerability VCID-p6pa-f1fg-hbhg
28
vulnerability VCID-rzj2-4kcj-43dq
29
vulnerability VCID-sr8e-w1qk-r7fz
30
vulnerability VCID-v7tp-1t4h-zqeg
31
vulnerability VCID-v8ku-sjc8-wfga
32
vulnerability VCID-vsdf-4tfj-uybe
33
vulnerability VCID-xqjr-7xfw-mbh2
34
vulnerability VCID-y9ne-rw7e-vugf
35
vulnerability VCID-yrzk-1dbk-muhy
36
vulnerability VCID-zw2q-kna8-mqcm
resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@11.0.0-M1
5
url pkg:apache/tomcat@11.0.9
purl pkg:apache/tomcat@11.0.9
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1e6p-cppr-2bh2
resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@11.0.9
6
url pkg:deb/debian/tomcat9@9.0.31-1~deb10u6
purl pkg:deb/debian/tomcat9@9.0.31-1~deb10u6
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1e6p-cppr-2bh2
1
vulnerability VCID-246u-a4rh-yyd4
2
vulnerability VCID-2kku-pzer-9ufv
3
vulnerability VCID-2rmy-13ym-3bgm
4
vulnerability VCID-2x6a-3gh1-rkhs
5
vulnerability VCID-2zq1-na8s-mfdd
6
vulnerability VCID-35xg-a746-5qgc
7
vulnerability VCID-3vdn-j7sj-dfdn
8
vulnerability VCID-43j2-w5xt-43g9
9
vulnerability VCID-46bv-6b7y-3bca
10
vulnerability VCID-4cag-c4pb-dfaz
11
vulnerability VCID-56jv-htmt-rkew
12
vulnerability VCID-5781-s1ny-q7ey
13
vulnerability VCID-5sgv-7nsz-5fa8
14
vulnerability VCID-66kh-s6cr-tqf9
15
vulnerability VCID-6pm1-byhk-eqfg
16
vulnerability VCID-74tx-sx8a-guhs
17
vulnerability VCID-885s-t4dx-dybv
18
vulnerability VCID-8e1c-rbkg-v7c2
19
vulnerability VCID-8mns-kw6c-a7dk
20
vulnerability VCID-8myk-ac5b-huh8
21
vulnerability VCID-8war-4v58-eub2
22
vulnerability VCID-9kfe-1esf-uydm
23
vulnerability VCID-a8gk-n8bq-87cp
24
vulnerability VCID-b3bb-9ajg-sfc9
25
vulnerability VCID-cfhw-vmcp-y3bc
26
vulnerability VCID-d1fm-vbd1-n7au
27
vulnerability VCID-dy6m-zt6r-9ubd
28
vulnerability VCID-dzan-r49k-kqab
29
vulnerability VCID-dzpn-w4b3-vbcm
30
vulnerability VCID-eb37-mkxf-7fgw
31
vulnerability VCID-fpgj-82wf-ykbw
32
vulnerability VCID-gb2v-96xj-ybad
33
vulnerability VCID-gvhy-d4gm-57d3
34
vulnerability VCID-gyed-x6s8-ybhr
35
vulnerability VCID-j6cj-ftyd-3ffa
36
vulnerability VCID-j8tk-s915-pbfy
37
vulnerability VCID-k59r-wjt3-wqe5
38
vulnerability VCID-k9cg-ehdw-dbh6
39
vulnerability VCID-kukv-k3z7-7fgs
40
vulnerability VCID-kwab-3s4q-eka4
41
vulnerability VCID-maw6-4qs5-ykae
42
vulnerability VCID-n3ab-nk7c-hqc9
43
vulnerability VCID-n9yk-e49f-n7e7
44
vulnerability VCID-nmq2-8ysj-4fbc
45
vulnerability VCID-nvbx-q971-skgm
46
vulnerability VCID-p6pa-f1fg-hbhg
47
vulnerability VCID-p8q2-pt96-5ye8
48
vulnerability VCID-qkx6-32cj-jfbp
49
vulnerability VCID-ran8-rnqn-tkbc
50
vulnerability VCID-rq42-qvsy-hue6
51
vulnerability VCID-rsxs-u5cc-rkgj
52
vulnerability VCID-ruuh-g3fa-m7d8
53
vulnerability VCID-rzj2-4kcj-43dq
54
vulnerability VCID-sr8e-w1qk-r7fz
55
vulnerability VCID-stds-vw5z-auhp
56
vulnerability VCID-t2ne-75ck-eqcr
57
vulnerability VCID-v7tp-1t4h-zqeg
58
vulnerability VCID-v8ku-sjc8-wfga
59
vulnerability VCID-vsdf-4tfj-uybe
60
vulnerability VCID-wgsc-dnn1-ukeq
61
vulnerability VCID-wptr-hkjx-s7c3
62
vulnerability VCID-xqjr-7xfw-mbh2
63
vulnerability VCID-xt59-cnmj-2bf8
64
vulnerability VCID-y9ne-rw7e-vugf
65
vulnerability VCID-yfx4-4gsc-2kgh
66
vulnerability VCID-yrzk-1dbk-muhy
67
vulnerability VCID-z2pq-cv2w-nfdk
68
vulnerability VCID-zw2q-kna8-mqcm
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat9@9.0.31-1~deb10u6
7
url pkg:deb/debian/tomcat9@9.0.43-2~deb11u10
purl pkg:deb/debian/tomcat9@9.0.43-2~deb11u10
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1e6p-cppr-2bh2
1
vulnerability VCID-246u-a4rh-yyd4
2
vulnerability VCID-2kku-pzer-9ufv
3
vulnerability VCID-2rmy-13ym-3bgm
4
vulnerability VCID-2x6a-3gh1-rkhs
5
vulnerability VCID-2zq1-na8s-mfdd
6
vulnerability VCID-35xg-a746-5qgc
7
vulnerability VCID-3vdn-j7sj-dfdn
8
vulnerability VCID-43j2-w5xt-43g9
9
vulnerability VCID-4cag-c4pb-dfaz
10
vulnerability VCID-5sgv-7nsz-5fa8
11
vulnerability VCID-74tx-sx8a-guhs
12
vulnerability VCID-8e1c-rbkg-v7c2
13
vulnerability VCID-8mns-kw6c-a7dk
14
vulnerability VCID-8myk-ac5b-huh8
15
vulnerability VCID-8war-4v58-eub2
16
vulnerability VCID-9kfe-1esf-uydm
17
vulnerability VCID-cfhw-vmcp-y3bc
18
vulnerability VCID-d1fm-vbd1-n7au
19
vulnerability VCID-fpgj-82wf-ykbw
20
vulnerability VCID-gb2v-96xj-ybad
21
vulnerability VCID-gvhy-d4gm-57d3
22
vulnerability VCID-gyed-x6s8-ybhr
23
vulnerability VCID-k59r-wjt3-wqe5
24
vulnerability VCID-k9cg-ehdw-dbh6
25
vulnerability VCID-kukv-k3z7-7fgs
26
vulnerability VCID-maw6-4qs5-ykae
27
vulnerability VCID-p8q2-pt96-5ye8
28
vulnerability VCID-rsxs-u5cc-rkgj
29
vulnerability VCID-sr8e-w1qk-r7fz
30
vulnerability VCID-v8ku-sjc8-wfga
31
vulnerability VCID-xqjr-7xfw-mbh2
32
vulnerability VCID-y9ne-rw7e-vugf
33
vulnerability VCID-yrzk-1dbk-muhy
34
vulnerability VCID-zw2q-kna8-mqcm
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat9@9.0.43-2~deb11u10
8
url pkg:maven/org.apache.tomcat/tomcat@9.0.0.M1
purl pkg:maven/org.apache.tomcat/tomcat@9.0.0.M1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-18q4-zark-s7a7
1
vulnerability VCID-1e6p-cppr-2bh2
2
vulnerability VCID-1hdb-24e3-f3d6
3
vulnerability VCID-1k8f-vsg1-k3d6
4
vulnerability VCID-246u-a4rh-yyd4
5
vulnerability VCID-2kku-pzer-9ufv
6
vulnerability VCID-2sbh-sy57-3uez
7
vulnerability VCID-2x6a-3gh1-rkhs
8
vulnerability VCID-39e3-jfbg-s3hk
9
vulnerability VCID-3cr9-g81m-4ugy
10
vulnerability VCID-3n4t-bvb1-5qer
11
vulnerability VCID-3r3s-q21j-c3au
12
vulnerability VCID-43j2-w5xt-43g9
13
vulnerability VCID-46bv-6b7y-3bca
14
vulnerability VCID-4aaa-errb-2qdw
15
vulnerability VCID-4cag-c4pb-dfaz
16
vulnerability VCID-4tf3-7f5b-2ffu
17
vulnerability VCID-5sgv-7nsz-5fa8
18
vulnerability VCID-66kh-s6cr-tqf9
19
vulnerability VCID-68fk-4g86-ekbp
20
vulnerability VCID-885s-t4dx-dybv
21
vulnerability VCID-95d1-arxd-hkd1
22
vulnerability VCID-9exq-fhv6-bbea
23
vulnerability VCID-9kfe-1esf-uydm
24
vulnerability VCID-a8gk-n8bq-87cp
25
vulnerability VCID-aeeu-fpay-wufz
26
vulnerability VCID-arkn-bca7-hqam
27
vulnerability VCID-ayrd-8ntf-hkh3
28
vulnerability VCID-dzpn-w4b3-vbcm
29
vulnerability VCID-eb37-mkxf-7fgw
30
vulnerability VCID-enaj-f97c-jbh7
31
vulnerability VCID-f77q-v5xp-e7dy
32
vulnerability VCID-fpgj-82wf-ykbw
33
vulnerability VCID-fyfz-6tr5-2fc7
34
vulnerability VCID-g7bk-891a-uufy
35
vulnerability VCID-gb2v-96xj-ybad
36
vulnerability VCID-gvhy-d4gm-57d3
37
vulnerability VCID-gyed-x6s8-ybhr
38
vulnerability VCID-hmbm-5ysw-77bu
39
vulnerability VCID-hves-r5bg-yfes
40
vulnerability VCID-k59r-wjt3-wqe5
41
vulnerability VCID-k9cg-ehdw-dbh6
42
vulnerability VCID-kagr-74d9-kyhx
43
vulnerability VCID-kukv-k3z7-7fgs
44
vulnerability VCID-kwab-3s4q-eka4
45
vulnerability VCID-kyb8-rvyw-s7b1
46
vulnerability VCID-m1zd-uytj-3bej
47
vulnerability VCID-m2zn-ja8d-7kg8
48
vulnerability VCID-maw6-4qs5-ykae
49
vulnerability VCID-n3ab-nk7c-hqc9
50
vulnerability VCID-n3zn-tuck-gkfe
51
vulnerability VCID-nvbx-q971-skgm
52
vulnerability VCID-pqxe-tfhk-47b7
53
vulnerability VCID-ruuh-g3fa-m7d8
54
vulnerability VCID-sr8e-w1qk-r7fz
55
vulnerability VCID-t2ne-75ck-eqcr
56
vulnerability VCID-tfrs-d458-tfaq
57
vulnerability VCID-u3ck-cvgt-fuhd
58
vulnerability VCID-v8ku-sjc8-wfga
59
vulnerability VCID-vdnj-sqmx-e3ep
60
vulnerability VCID-vhjj-dnft-kkf4
61
vulnerability VCID-wbaq-j85q-y3c6
62
vulnerability VCID-wgsc-dnn1-ukeq
63
vulnerability VCID-xf8r-kqxb-7qdy
64
vulnerability VCID-y9ne-rw7e-vugf
65
vulnerability VCID-yfx4-4gsc-2kgh
66
vulnerability VCID-yxpq-rrry-j3h8
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@9.0.0.M1
9
url pkg:maven/org.apache.tomcat/tomcat@9.0.107
purl pkg:maven/org.apache.tomcat/tomcat@9.0.107
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1e6p-cppr-2bh2
1
vulnerability VCID-8war-4v58-eub2
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@9.0.107
10
url pkg:maven/org.apache.tomcat/tomcat@10.1.0-M1
purl pkg:maven/org.apache.tomcat/tomcat@10.1.0-M1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1e6p-cppr-2bh2
1
vulnerability VCID-246u-a4rh-yyd4
2
vulnerability VCID-2kku-pzer-9ufv
3
vulnerability VCID-2rmy-13ym-3bgm
4
vulnerability VCID-2x6a-3gh1-rkhs
5
vulnerability VCID-3vdn-j7sj-dfdn
6
vulnerability VCID-43j2-w5xt-43g9
7
vulnerability VCID-4cag-c4pb-dfaz
8
vulnerability VCID-56jv-htmt-rkew
9
vulnerability VCID-5781-s1ny-q7ey
10
vulnerability VCID-5sgv-7nsz-5fa8
11
vulnerability VCID-6pm1-byhk-eqfg
12
vulnerability VCID-8mns-kw6c-a7dk
13
vulnerability VCID-8myk-ac5b-huh8
14
vulnerability VCID-b3bb-9ajg-sfc9
15
vulnerability VCID-cfhw-vmcp-y3bc
16
vulnerability VCID-d1fm-vbd1-n7au
17
vulnerability VCID-fpgj-82wf-ykbw
18
vulnerability VCID-gb2v-96xj-ybad
19
vulnerability VCID-gvhy-d4gm-57d3
20
vulnerability VCID-gyed-x6s8-ybhr
21
vulnerability VCID-j6cj-ftyd-3ffa
22
vulnerability VCID-j8tk-s915-pbfy
23
vulnerability VCID-k59r-wjt3-wqe5
24
vulnerability VCID-kukv-k3z7-7fgs
25
vulnerability VCID-maw6-4qs5-ykae
26
vulnerability VCID-n9yk-e49f-n7e7
27
vulnerability VCID-nmq2-8ysj-4fbc
28
vulnerability VCID-p6pa-f1fg-hbhg
29
vulnerability VCID-p8q2-pt96-5ye8
30
vulnerability VCID-qkx6-32cj-jfbp
31
vulnerability VCID-rzj2-4kcj-43dq
32
vulnerability VCID-sr8e-w1qk-r7fz
33
vulnerability VCID-stds-vw5z-auhp
34
vulnerability VCID-v7tp-1t4h-zqeg
35
vulnerability VCID-v8ku-sjc8-wfga
36
vulnerability VCID-vsdf-4tfj-uybe
37
vulnerability VCID-wptr-hkjx-s7c3
38
vulnerability VCID-xqjr-7xfw-mbh2
39
vulnerability VCID-y9ne-rw7e-vugf
40
vulnerability VCID-zw2q-kna8-mqcm
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@10.1.0-M1
11
url pkg:maven/org.apache.tomcat/tomcat@10.1.43
purl pkg:maven/org.apache.tomcat/tomcat@10.1.43
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1e6p-cppr-2bh2
1
vulnerability VCID-8war-4v58-eub2
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@10.1.43
12
url pkg:maven/org.apache.tomcat/tomcat@11.0.0-M1
purl pkg:maven/org.apache.tomcat/tomcat@11.0.0-M1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1e6p-cppr-2bh2
1
vulnerability VCID-246u-a4rh-yyd4
2
vulnerability VCID-2kku-pzer-9ufv
3
vulnerability VCID-2rmy-13ym-3bgm
4
vulnerability VCID-2x6a-3gh1-rkhs
5
vulnerability VCID-3vdn-j7sj-dfdn
6
vulnerability VCID-43j2-w5xt-43g9
7
vulnerability VCID-4cag-c4pb-dfaz
8
vulnerability VCID-5781-s1ny-q7ey
9
vulnerability VCID-5sgv-7nsz-5fa8
10
vulnerability VCID-74tx-sx8a-guhs
11
vulnerability VCID-8mns-kw6c-a7dk
12
vulnerability VCID-8myk-ac5b-huh8
13
vulnerability VCID-8war-4v58-eub2
14
vulnerability VCID-b3bb-9ajg-sfc9
15
vulnerability VCID-bks8-nvm9-vbgy
16
vulnerability VCID-cfhw-vmcp-y3bc
17
vulnerability VCID-d1fm-vbd1-n7au
18
vulnerability VCID-fpgj-82wf-ykbw
19
vulnerability VCID-gb2v-96xj-ybad
20
vulnerability VCID-gvhy-d4gm-57d3
21
vulnerability VCID-gyed-x6s8-ybhr
22
vulnerability VCID-j6cj-ftyd-3ffa
23
vulnerability VCID-k59r-wjt3-wqe5
24
vulnerability VCID-kukv-k3z7-7fgs
25
vulnerability VCID-maw6-4qs5-ykae
26
vulnerability VCID-n9yk-e49f-n7e7
27
vulnerability VCID-p6pa-f1fg-hbhg
28
vulnerability VCID-rzj2-4kcj-43dq
29
vulnerability VCID-sr8e-w1qk-r7fz
30
vulnerability VCID-v7tp-1t4h-zqeg
31
vulnerability VCID-v8ku-sjc8-wfga
32
vulnerability VCID-vsdf-4tfj-uybe
33
vulnerability VCID-xqjr-7xfw-mbh2
34
vulnerability VCID-y9ne-rw7e-vugf
35
vulnerability VCID-yrzk-1dbk-muhy
36
vulnerability VCID-zw2q-kna8-mqcm
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@11.0.0-M1
13
url pkg:maven/org.apache.tomcat/tomcat@11.0.9
purl pkg:maven/org.apache.tomcat/tomcat@11.0.9
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1e6p-cppr-2bh2
1
vulnerability VCID-8war-4v58-eub2
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@11.0.9
14
url pkg:maven/org.apache.tomcat/tomcat-coyote@9.0.0.M1
purl pkg:maven/org.apache.tomcat/tomcat-coyote@9.0.0.M1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1e6p-cppr-2bh2
1
vulnerability VCID-1hdb-24e3-f3d6
2
vulnerability VCID-3r3s-q21j-c3au
3
vulnerability VCID-fpgj-82wf-ykbw
4
vulnerability VCID-k9cg-ehdw-dbh6
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat-coyote@9.0.0.M1
15
url pkg:maven/org.apache.tomcat/tomcat-coyote@10.1.0-M1
purl pkg:maven/org.apache.tomcat/tomcat-coyote@10.1.0-M1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1e6p-cppr-2bh2
1
vulnerability VCID-56jv-htmt-rkew
2
vulnerability VCID-8myk-ac5b-huh8
3
vulnerability VCID-fpgj-82wf-ykbw
4
vulnerability VCID-n9yk-e49f-n7e7
5
vulnerability VCID-nmq2-8ysj-4fbc
6
vulnerability VCID-vsdf-4tfj-uybe
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat-coyote@10.1.0-M1
16
url pkg:maven/org.apache.tomcat/tomcat-coyote@11.0.0-M1
purl pkg:maven/org.apache.tomcat/tomcat-coyote@11.0.0-M1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1e6p-cppr-2bh2
1
vulnerability VCID-5781-s1ny-q7ey
2
vulnerability VCID-8myk-ac5b-huh8
3
vulnerability VCID-8war-4v58-eub2
4
vulnerability VCID-fpgj-82wf-ykbw
5
vulnerability VCID-n9yk-e49f-n7e7
6
vulnerability VCID-vsdf-4tfj-uybe
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat-coyote@11.0.0-M1
17
url pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@9.0.0.M1
purl pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@9.0.0.M1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1e6p-cppr-2bh2
1
vulnerability VCID-1hdb-24e3-f3d6
2
vulnerability VCID-246u-a4rh-yyd4
3
vulnerability VCID-39e3-jfbg-s3hk
4
vulnerability VCID-43j2-w5xt-43g9
5
vulnerability VCID-4aaa-errb-2qdw
6
vulnerability VCID-4cag-c4pb-dfaz
7
vulnerability VCID-5etb-njwf-rfdu
8
vulnerability VCID-5sgv-7nsz-5fa8
9
vulnerability VCID-fpgj-82wf-ykbw
10
vulnerability VCID-gb2v-96xj-ybad
11
vulnerability VCID-hmbm-5ysw-77bu
12
vulnerability VCID-j6cj-ftyd-3ffa
13
vulnerability VCID-k59r-wjt3-wqe5
14
vulnerability VCID-n3zn-tuck-gkfe
15
vulnerability VCID-sr8e-w1qk-r7fz
16
vulnerability VCID-v7tp-1t4h-zqeg
17
vulnerability VCID-v8ku-sjc8-wfga
18
vulnerability VCID-vdnj-sqmx-e3ep
19
vulnerability VCID-vsdf-4tfj-uybe
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@9.0.0.M1
18
url pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@10.1.0-M1
purl pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@10.1.0-M1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1e6p-cppr-2bh2
1
vulnerability VCID-246u-a4rh-yyd4
2
vulnerability VCID-2rmy-13ym-3bgm
3
vulnerability VCID-43j2-w5xt-43g9
4
vulnerability VCID-4cag-c4pb-dfaz
5
vulnerability VCID-56jv-htmt-rkew
6
vulnerability VCID-5sgv-7nsz-5fa8
7
vulnerability VCID-8myk-ac5b-huh8
8
vulnerability VCID-b3bb-9ajg-sfc9
9
vulnerability VCID-cfhw-vmcp-y3bc
10
vulnerability VCID-d1fm-vbd1-n7au
11
vulnerability VCID-fpgj-82wf-ykbw
12
vulnerability VCID-gb2v-96xj-ybad
13
vulnerability VCID-gyed-x6s8-ybhr
14
vulnerability VCID-j6cj-ftyd-3ffa
15
vulnerability VCID-k59r-wjt3-wqe5
16
vulnerability VCID-maw6-4qs5-ykae
17
vulnerability VCID-n9yk-e49f-n7e7
18
vulnerability VCID-nmq2-8ysj-4fbc
19
vulnerability VCID-rzj2-4kcj-43dq
20
vulnerability VCID-sr8e-w1qk-r7fz
21
vulnerability VCID-v7tp-1t4h-zqeg
22
vulnerability VCID-v8ku-sjc8-wfga
23
vulnerability VCID-vsdf-4tfj-uybe
24
vulnerability VCID-wptr-hkjx-s7c3
25
vulnerability VCID-xqjr-7xfw-mbh2
26
vulnerability VCID-y9ne-rw7e-vugf
27
vulnerability VCID-zw2q-kna8-mqcm
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@10.1.0-M1
19
url pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@11.0.0-M1
purl pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@11.0.0-M1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1e6p-cppr-2bh2
1
vulnerability VCID-246u-a4rh-yyd4
2
vulnerability VCID-2rmy-13ym-3bgm
3
vulnerability VCID-43j2-w5xt-43g9
4
vulnerability VCID-4cag-c4pb-dfaz
5
vulnerability VCID-5781-s1ny-q7ey
6
vulnerability VCID-5sgv-7nsz-5fa8
7
vulnerability VCID-74tx-sx8a-guhs
8
vulnerability VCID-8myk-ac5b-huh8
9
vulnerability VCID-8war-4v58-eub2
10
vulnerability VCID-b3bb-9ajg-sfc9
11
vulnerability VCID-bks8-nvm9-vbgy
12
vulnerability VCID-cfhw-vmcp-y3bc
13
vulnerability VCID-d1fm-vbd1-n7au
14
vulnerability VCID-fpgj-82wf-ykbw
15
vulnerability VCID-gb2v-96xj-ybad
16
vulnerability VCID-gyed-x6s8-ybhr
17
vulnerability VCID-j6cj-ftyd-3ffa
18
vulnerability VCID-k59r-wjt3-wqe5
19
vulnerability VCID-maw6-4qs5-ykae
20
vulnerability VCID-n9yk-e49f-n7e7
21
vulnerability VCID-rzj2-4kcj-43dq
22
vulnerability VCID-sr8e-w1qk-r7fz
23
vulnerability VCID-v7tp-1t4h-zqeg
24
vulnerability VCID-v8ku-sjc8-wfga
25
vulnerability VCID-vsdf-4tfj-uybe
26
vulnerability VCID-xqjr-7xfw-mbh2
27
vulnerability VCID-y9ne-rw7e-vugf
28
vulnerability VCID-yrzk-1dbk-muhy
29
vulnerability VCID-zw2q-kna8-mqcm
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@11.0.0-M1
20
url pkg:rpm/redhat/jws5-tomcat@9.0.87-14.redhat_00013.1?arch=el9jws
purl pkg:rpm/redhat/jws5-tomcat@9.0.87-14.redhat_00013.1?arch=el9jws
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1e6p-cppr-2bh2
1
vulnerability VCID-kukv-k3z7-7fgs
2
vulnerability VCID-xqjr-7xfw-mbh2
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jws5-tomcat@9.0.87-14.redhat_00013.1%3Farch=el9jws
21
url pkg:rpm/redhat/jws5-tomcat@9.0.87-14.redhat_00013.1?arch=el8jws
purl pkg:rpm/redhat/jws5-tomcat@9.0.87-14.redhat_00013.1?arch=el8jws
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1e6p-cppr-2bh2
1
vulnerability VCID-kukv-k3z7-7fgs
2
vulnerability VCID-xqjr-7xfw-mbh2
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jws5-tomcat@9.0.87-14.redhat_00013.1%3Farch=el8jws
22
url pkg:rpm/redhat/jws5-tomcat@9.0.87-14.redhat_00013.1?arch=el7jws
purl pkg:rpm/redhat/jws5-tomcat@9.0.87-14.redhat_00013.1?arch=el7jws
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1e6p-cppr-2bh2
1
vulnerability VCID-kukv-k3z7-7fgs
2
vulnerability VCID-xqjr-7xfw-mbh2
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jws5-tomcat@9.0.87-14.redhat_00013.1%3Farch=el7jws
23
url pkg:rpm/redhat/jws6-tomcat@10.1.36-8.redhat_00009.1?arch=el10jws
purl pkg:rpm/redhat/jws6-tomcat@10.1.36-8.redhat_00009.1?arch=el10jws
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1e6p-cppr-2bh2
1
vulnerability VCID-k59r-wjt3-wqe5
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jws6-tomcat@10.1.36-8.redhat_00009.1%3Farch=el10jws
24
url pkg:rpm/redhat/jws6-tomcat@10.1.36-8.redhat_00009.1?arch=el8jws
purl pkg:rpm/redhat/jws6-tomcat@10.1.36-8.redhat_00009.1?arch=el8jws
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1e6p-cppr-2bh2
1
vulnerability VCID-k59r-wjt3-wqe5
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jws6-tomcat@10.1.36-8.redhat_00009.1%3Farch=el8jws
25
url pkg:rpm/redhat/jws6-tomcat@10.1.36-8.redhat_00009.1?arch=el9jws
purl pkg:rpm/redhat/jws6-tomcat@10.1.36-8.redhat_00009.1?arch=el9jws
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1e6p-cppr-2bh2
1
vulnerability VCID-k59r-wjt3-wqe5
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jws6-tomcat@10.1.36-8.redhat_00009.1%3Farch=el9jws
26
url pkg:rpm/redhat/tomcat@1:9.0.87-1.el8_8?arch=7
purl pkg:rpm/redhat/tomcat@1:9.0.87-1.el8_8?arch=7
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1e6p-cppr-2bh2
1
vulnerability VCID-246u-a4rh-yyd4
2
vulnerability VCID-2x6a-3gh1-rkhs
3
vulnerability VCID-9kfe-1esf-uydm
4
vulnerability VCID-fpgj-82wf-ykbw
5
vulnerability VCID-gb2v-96xj-ybad
6
vulnerability VCID-k59r-wjt3-wqe5
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/tomcat@1:9.0.87-1.el8_8%3Farch=7
27
url pkg:rpm/redhat/tomcat@1:9.0.87-1.el8_10?arch=6
purl pkg:rpm/redhat/tomcat@1:9.0.87-1.el8_10?arch=6
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1e6p-cppr-2bh2
1
vulnerability VCID-246u-a4rh-yyd4
2
vulnerability VCID-2x6a-3gh1-rkhs
3
vulnerability VCID-9kfe-1esf-uydm
4
vulnerability VCID-fpgj-82wf-ykbw
5
vulnerability VCID-gb2v-96xj-ybad
6
vulnerability VCID-k59r-wjt3-wqe5
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/tomcat@1:9.0.87-1.el8_10%3Farch=6
28
url pkg:rpm/redhat/tomcat@1:9.0.87-1.el9_2?arch=6
purl pkg:rpm/redhat/tomcat@1:9.0.87-1.el9_2?arch=6
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1e6p-cppr-2bh2
1
vulnerability VCID-246u-a4rh-yyd4
2
vulnerability VCID-2x6a-3gh1-rkhs
3
vulnerability VCID-9kfe-1esf-uydm
4
vulnerability VCID-fpgj-82wf-ykbw
5
vulnerability VCID-gb2v-96xj-ybad
6
vulnerability VCID-k59r-wjt3-wqe5
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/tomcat@1:9.0.87-1.el9_2%3Farch=6
29
url pkg:rpm/redhat/tomcat@1:9.0.87-1.el9_4?arch=6
purl pkg:rpm/redhat/tomcat@1:9.0.87-1.el9_4?arch=6
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1e6p-cppr-2bh2
1
vulnerability VCID-246u-a4rh-yyd4
2
vulnerability VCID-2x6a-3gh1-rkhs
3
vulnerability VCID-9kfe-1esf-uydm
4
vulnerability VCID-fpgj-82wf-ykbw
5
vulnerability VCID-gb2v-96xj-ybad
6
vulnerability VCID-k59r-wjt3-wqe5
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/tomcat@1:9.0.87-1.el9_4%3Farch=6
30
url pkg:rpm/redhat/tomcat@1:9.0.87-3.el9_6?arch=3
purl pkg:rpm/redhat/tomcat@1:9.0.87-3.el9_6?arch=3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1e6p-cppr-2bh2
1
vulnerability VCID-246u-a4rh-yyd4
2
vulnerability VCID-2x6a-3gh1-rkhs
3
vulnerability VCID-9kfe-1esf-uydm
4
vulnerability VCID-fpgj-82wf-ykbw
5
vulnerability VCID-gb2v-96xj-ybad
6
vulnerability VCID-k59r-wjt3-wqe5
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/tomcat@1:9.0.87-3.el9_6%3Farch=3
31
url pkg:rpm/redhat/tomcat@1:10.1.36-1.el10_0?arch=2
purl pkg:rpm/redhat/tomcat@1:10.1.36-1.el10_0?arch=2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1e6p-cppr-2bh2
1
vulnerability VCID-246u-a4rh-yyd4
2
vulnerability VCID-2x6a-3gh1-rkhs
3
vulnerability VCID-fpgj-82wf-ykbw
4
vulnerability VCID-gb2v-96xj-ybad
5
vulnerability VCID-k59r-wjt3-wqe5
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/tomcat@1:10.1.36-1.el10_0%3Farch=2
32
url pkg:rpm/redhat/tomcat9@1:9.0.87-5.el10_0?arch=3
purl pkg:rpm/redhat/tomcat9@1:9.0.87-5.el10_0?arch=3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1e6p-cppr-2bh2
1
vulnerability VCID-246u-a4rh-yyd4
2
vulnerability VCID-2x6a-3gh1-rkhs
3
vulnerability VCID-9kfe-1esf-uydm
4
vulnerability VCID-fpgj-82wf-ykbw
5
vulnerability VCID-gb2v-96xj-ybad
6
vulnerability VCID-k59r-wjt3-wqe5
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/tomcat9@1:9.0.87-5.el10_0%3Farch=3
References
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-48989.json
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-48989.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-48989
reference_id
reference_type
scores
0
value 0.00241
scoring_system epss
scoring_elements 0.47384
published_at 2026-04-16T12:55:00Z
1
value 0.00241
scoring_system epss
scoring_elements 0.47326
published_at 2026-04-13T12:55:00Z
2
value 0.00241
scoring_system epss
scoring_elements 0.47319
published_at 2026-04-12T12:55:00Z
3
value 0.00241
scoring_system epss
scoring_elements 0.47345
published_at 2026-04-11T12:55:00Z
4
value 0.00241
scoring_system epss
scoring_elements 0.4732
published_at 2026-04-09T12:55:00Z
5
value 0.00241
scoring_system epss
scoring_elements 0.47323
published_at 2026-04-08T12:55:00Z
6
value 0.00241
scoring_system epss
scoring_elements 0.47268
published_at 2026-04-07T12:55:00Z
7
value 0.00241
scoring_system epss
scoring_elements 0.47322
published_at 2026-04-04T12:55:00Z
8
value 0.00241
scoring_system epss
scoring_elements 0.47302
published_at 2026-04-02T12:55:00Z
9
value 0.00264
scoring_system epss
scoring_elements 0.49797
published_at 2026-04-18T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-48989
2
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
3
reference_url https://github.com/apache/tomcat
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/apache/tomcat
4
reference_url https://github.com/apache/tomcat/commit/73c04a10395774bda71a0b37802cf983662ce255
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/apache/tomcat/commit/73c04a10395774bda71a0b37802cf983662ce255
5
reference_url https://github.com/apache/tomcat/commit/f362c8eb3b8ec5b7f312f7f5610731c0fb299a06
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/apache/tomcat/commit/f362c8eb3b8ec5b7f312f7f5610731c0fb299a06
6
reference_url https://github.com/apache/tomcat/commit/f36b8a4eea4ce8a0bc035079e1d259d29f5eb7bf
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/apache/tomcat/commit/f36b8a4eea4ce8a0bc035079e1d259d29f5eb7bf
7
reference_url https://lists.apache.org/thread/9ydfg0xr0tchmglcprhxgwhj0hfwxlyf
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-08-13T18:37:15Z/
url https://lists.apache.org/thread/9ydfg0xr0tchmglcprhxgwhj0hfwxlyf
8
reference_url https://nvd.nist.gov/vuln/detail/CVE-2025-48989
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2025-48989
9
reference_url https://tomcat.apache.org/security-10.html
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://tomcat.apache.org/security-10.html
10
reference_url https://tomcat.apache.org/security-11.html
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://tomcat.apache.org/security-11.html
11
reference_url https://tomcat.apache.org/security-9.html
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://tomcat.apache.org/security-9.html
12
reference_url https://www.kb.cert.org/vuls/id/767506
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://www.kb.cert.org/vuls/id/767506
13
reference_url http://www.openwall.com/lists/oss-security/2025/08/13/2
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url http://www.openwall.com/lists/oss-security/2025/08/13/2
14
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1111096
reference_id 1111096
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1111096
15
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1111097
reference_id 1111097
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1111097
16
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2373309
reference_id 2373309
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2373309
17
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-48989
reference_id CVE-2025-48989
reference_type
scores
0
value Important
scoring_system apache_tomcat
scoring_elements
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-48989
18
reference_url https://github.com/advisories/GHSA-gqp3-2cvr-x8m3
reference_id GHSA-gqp3-2cvr-x8m3
reference_type
scores
0
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-gqp3-2cvr-x8m3
19
reference_url https://access.redhat.com/errata/RHSA-2025:13685
reference_id RHSA-2025:13685
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:13685
20
reference_url https://access.redhat.com/errata/RHSA-2025:13686
reference_id RHSA-2025:13686
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:13686
21
reference_url https://access.redhat.com/errata/RHSA-2025:14177
reference_id RHSA-2025:14177
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:14177
22
reference_url https://access.redhat.com/errata/RHSA-2025:14178
reference_id RHSA-2025:14178
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:14178
23
reference_url https://access.redhat.com/errata/RHSA-2025:14179
reference_id RHSA-2025:14179
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:14179
24
reference_url https://access.redhat.com/errata/RHSA-2025:14180
reference_id RHSA-2025:14180
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:14180
25
reference_url https://access.redhat.com/errata/RHSA-2025:14181
reference_id RHSA-2025:14181
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:14181
26
reference_url https://access.redhat.com/errata/RHSA-2025:14182
reference_id RHSA-2025:14182
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:14182
27
reference_url https://access.redhat.com/errata/RHSA-2025:14183
reference_id RHSA-2025:14183
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:14183
28
reference_url https://access.redhat.com/errata/RHSA-2025:22924
reference_id RHSA-2025:22924
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:22924
29
reference_url https://access.redhat.com/errata/RHSA-2025:22925
reference_id RHSA-2025:22925
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:22925
Weaknesses
0
cwe_id 404
name Improper Resource Shutdown or Release
description The product does not release or incorrectly releases a resource before it is made available for re-use.
1
cwe_id 400
name Uncontrolled Resource Consumption
description The product does not properly control the allocation and maintenance of a limited resource, thereby enabling an actor to influence the amount of resources consumed, eventually leading to the exhaustion of available resources.
2
cwe_id 937
name OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities
description Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2013.
3
cwe_id 1035
name OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities
description Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2017.
Exploits
Severity_range_score7.0 - 8.9
Exploitability0.5
Weighted_severity8.0
Risk_score4.0
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-1e6p-cppr-2bh2