Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-kukv-k3z7-7fgs
Summary
Improper Neutralization of Escape, Meta, or Control Sequences vulnerability in Apache Tomcat. For a subset of unlikely rewrite rule configurations, it was possible 
for a specially crafted request to bypass some rewrite rules. If those 
rewrite rules effectively enforced security constraints, those 
constraints could be bypassed.

This issue affects Apache Tomcat: from 11.0.0-M1 through 11.0.5, from 10.1.0-M1 through 10.1.39, from 9.0.0.M1 through 9.0.102.
The following versions were EOL at the time the CVE was created but are 
known to be affected: 8.5.0 though 8.5.100. Other, older, EOL versions 
may also be affected.


Users are recommended to upgrade to version [FIXED_VERSION], which fixes the issue.
Aliases
0
alias CVE-2025-31651
1
alias GHSA-ff77-26x5-69cr
Fixed_packages
0
url pkg:apache/tomcat@9.0.104
purl pkg:apache/tomcat@9.0.104
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-sr8e-w1qk-r7fz
resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@9.0.104
1
url pkg:apache/tomcat@10.1.40
purl pkg:apache/tomcat@10.1.40
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-sr8e-w1qk-r7fz
resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@10.1.40
2
url pkg:apache/tomcat@11.0.6
purl pkg:apache/tomcat@11.0.6
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-sr8e-w1qk-r7fz
resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@11.0.6
3
url pkg:deb/debian/tomcat10@10.1.34-0%2Bdeb12u2?distro=trixie
purl pkg:deb/debian/tomcat10@10.1.34-0%2Bdeb12u2?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2rmy-13ym-3bgm
1
vulnerability VCID-35xg-a746-5qgc
2
vulnerability VCID-74tx-sx8a-guhs
3
vulnerability VCID-8e1c-rbkg-v7c2
4
vulnerability VCID-d1fm-vbd1-n7au
5
vulnerability VCID-gyed-x6s8-ybhr
6
vulnerability VCID-rsxs-u5cc-rkgj
7
vulnerability VCID-yrzk-1dbk-muhy
8
vulnerability VCID-zw2q-kna8-mqcm
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat10@10.1.34-0%252Bdeb12u2%3Fdistro=trixie
4
url pkg:deb/debian/tomcat10@10.1.40-1?distro=trixie
purl pkg:deb/debian/tomcat10@10.1.40-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat10@10.1.40-1%3Fdistro=trixie
5
url pkg:deb/debian/tomcat10@10.1.52-1~deb13u1?distro=trixie
purl pkg:deb/debian/tomcat10@10.1.52-1~deb13u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2rmy-13ym-3bgm
1
vulnerability VCID-35xg-a746-5qgc
2
vulnerability VCID-74tx-sx8a-guhs
3
vulnerability VCID-8e1c-rbkg-v7c2
4
vulnerability VCID-d1fm-vbd1-n7au
5
vulnerability VCID-gyed-x6s8-ybhr
6
vulnerability VCID-rsxs-u5cc-rkgj
7
vulnerability VCID-yrzk-1dbk-muhy
8
vulnerability VCID-zw2q-kna8-mqcm
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat10@10.1.52-1~deb13u1%3Fdistro=trixie
6
url pkg:deb/debian/tomcat10@10.1.52-1?distro=trixie
purl pkg:deb/debian/tomcat10@10.1.52-1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2rmy-13ym-3bgm
1
vulnerability VCID-35xg-a746-5qgc
2
vulnerability VCID-74tx-sx8a-guhs
3
vulnerability VCID-8e1c-rbkg-v7c2
4
vulnerability VCID-d1fm-vbd1-n7au
5
vulnerability VCID-gyed-x6s8-ybhr
6
vulnerability VCID-rsxs-u5cc-rkgj
7
vulnerability VCID-yrzk-1dbk-muhy
8
vulnerability VCID-zw2q-kna8-mqcm
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat10@10.1.52-1%3Fdistro=trixie
7
url pkg:deb/debian/tomcat10@10.1.52-2?distro=trixie
purl pkg:deb/debian/tomcat10@10.1.52-2?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat10@10.1.52-2%3Fdistro=trixie
8
url pkg:deb/debian/tomcat10@10.1.54-1?distro=trixie
purl pkg:deb/debian/tomcat10@10.1.54-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat10@10.1.54-1%3Fdistro=trixie
9
url pkg:deb/debian/tomcat11@11.0.21-1?distro=trixie
purl pkg:deb/debian/tomcat11@11.0.21-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat11@11.0.21-1%3Fdistro=trixie
10
url pkg:deb/debian/tomcat11@11.0.6-1?distro=trixie
purl pkg:deb/debian/tomcat11@11.0.6-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat11@11.0.6-1%3Fdistro=trixie
11
url pkg:deb/debian/tomcat11@11.0.15-1~deb13u1?distro=trixie
purl pkg:deb/debian/tomcat11@11.0.15-1~deb13u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2rmy-13ym-3bgm
1
vulnerability VCID-35xg-a746-5qgc
2
vulnerability VCID-74tx-sx8a-guhs
3
vulnerability VCID-8e1c-rbkg-v7c2
4
vulnerability VCID-8war-4v58-eub2
5
vulnerability VCID-d1fm-vbd1-n7au
6
vulnerability VCID-gyed-x6s8-ybhr
7
vulnerability VCID-rsxs-u5cc-rkgj
8
vulnerability VCID-yrzk-1dbk-muhy
9
vulnerability VCID-zw2q-kna8-mqcm
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat11@11.0.15-1~deb13u1%3Fdistro=trixie
12
url pkg:deb/debian/tomcat11@11.0.18-1?distro=trixie
purl pkg:deb/debian/tomcat11@11.0.18-1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2rmy-13ym-3bgm
1
vulnerability VCID-35xg-a746-5qgc
2
vulnerability VCID-74tx-sx8a-guhs
3
vulnerability VCID-8e1c-rbkg-v7c2
4
vulnerability VCID-d1fm-vbd1-n7au
5
vulnerability VCID-gyed-x6s8-ybhr
6
vulnerability VCID-rsxs-u5cc-rkgj
7
vulnerability VCID-yrzk-1dbk-muhy
8
vulnerability VCID-zw2q-kna8-mqcm
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat11@11.0.18-1%3Fdistro=trixie
13
url pkg:deb/debian/tomcat9@9.0.43-2~deb11u10?distro=trixie
purl pkg:deb/debian/tomcat9@9.0.43-2~deb11u10?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat9@9.0.43-2~deb11u10%3Fdistro=trixie
14
url pkg:deb/debian/tomcat9@9.0.70-2?distro=trixie
purl pkg:deb/debian/tomcat9@9.0.70-2?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat9@9.0.70-2%3Fdistro=trixie
15
url pkg:deb/debian/tomcat9@9.0.95-1?distro=trixie
purl pkg:deb/debian/tomcat9@9.0.95-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat9@9.0.95-1%3Fdistro=trixie
16
url pkg:deb/debian/tomcat9@9.0.107-0%2Bdeb11u1?distro=trixie
purl pkg:deb/debian/tomcat9@9.0.107-0%2Bdeb11u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat9@9.0.107-0%252Bdeb11u1%3Fdistro=trixie
17
url pkg:deb/debian/tomcat9@9.0.115-1?distro=trixie
purl pkg:deb/debian/tomcat9@9.0.115-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat9@9.0.115-1%3Fdistro=trixie
18
url pkg:deb/debian/tomcat9@9.0.115-1
purl pkg:deb/debian/tomcat9@9.0.115-1
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat9@9.0.115-1
19
url pkg:maven/org.apache.tomcat/tomcat@9.0.104
purl pkg:maven/org.apache.tomcat/tomcat@9.0.104
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-8war-4v58-eub2
1
vulnerability VCID-sr8e-w1qk-r7fz
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@9.0.104
20
url pkg:maven/org.apache.tomcat/tomcat@10.1.40
purl pkg:maven/org.apache.tomcat/tomcat@10.1.40
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-8war-4v58-eub2
1
vulnerability VCID-sr8e-w1qk-r7fz
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@10.1.40
21
url pkg:maven/org.apache.tomcat/tomcat@11.0.6
purl pkg:maven/org.apache.tomcat/tomcat@11.0.6
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-8war-4v58-eub2
1
vulnerability VCID-sr8e-w1qk-r7fz
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@11.0.6
22
url pkg:maven/org.apache.tomcat/tomcat-catalina@9.0.104
purl pkg:maven/org.apache.tomcat/tomcat-catalina@9.0.104
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat-catalina@9.0.104
23
url pkg:maven/org.apache.tomcat/tomcat-catalina@10.1.40
purl pkg:maven/org.apache.tomcat/tomcat-catalina@10.1.40
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat-catalina@10.1.40
24
url pkg:maven/org.apache.tomcat/tomcat-catalina@11.0.6
purl pkg:maven/org.apache.tomcat/tomcat-catalina@11.0.6
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat-catalina@11.0.6
25
url pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@9.0.104
purl pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@9.0.104
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-fpgj-82wf-ykbw
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@9.0.104
26
url pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@10.1.40
purl pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@10.1.40
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-fpgj-82wf-ykbw
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@10.1.40
27
url pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@11.0.6
purl pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@11.0.6
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-fpgj-82wf-ykbw
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@11.0.6
Affected_packages
0
url pkg:apache/tomcat@9.0.0%2BM1
purl pkg:apache/tomcat@9.0.0%2BM1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-18q4-zark-s7a7
1
vulnerability VCID-1e6p-cppr-2bh2
2
vulnerability VCID-1hdb-24e3-f3d6
3
vulnerability VCID-1k8f-vsg1-k3d6
4
vulnerability VCID-246u-a4rh-yyd4
5
vulnerability VCID-2kku-pzer-9ufv
6
vulnerability VCID-2sbh-sy57-3uez
7
vulnerability VCID-2x6a-3gh1-rkhs
8
vulnerability VCID-39e3-jfbg-s3hk
9
vulnerability VCID-3cr9-g81m-4ugy
10
vulnerability VCID-3n4t-bvb1-5qer
11
vulnerability VCID-3r3s-q21j-c3au
12
vulnerability VCID-43j2-w5xt-43g9
13
vulnerability VCID-46bv-6b7y-3bca
14
vulnerability VCID-4aaa-errb-2qdw
15
vulnerability VCID-4cag-c4pb-dfaz
16
vulnerability VCID-4tf3-7f5b-2ffu
17
vulnerability VCID-5sgv-7nsz-5fa8
18
vulnerability VCID-66kh-s6cr-tqf9
19
vulnerability VCID-68fk-4g86-ekbp
20
vulnerability VCID-885s-t4dx-dybv
21
vulnerability VCID-95d1-arxd-hkd1
22
vulnerability VCID-9exq-fhv6-bbea
23
vulnerability VCID-9kfe-1esf-uydm
24
vulnerability VCID-a8gk-n8bq-87cp
25
vulnerability VCID-aeeu-fpay-wufz
26
vulnerability VCID-arkn-bca7-hqam
27
vulnerability VCID-ayrd-8ntf-hkh3
28
vulnerability VCID-dzpn-w4b3-vbcm
29
vulnerability VCID-eb37-mkxf-7fgw
30
vulnerability VCID-enaj-f97c-jbh7
31
vulnerability VCID-f77q-v5xp-e7dy
32
vulnerability VCID-fpgj-82wf-ykbw
33
vulnerability VCID-fyfz-6tr5-2fc7
34
vulnerability VCID-g7bk-891a-uufy
35
vulnerability VCID-gb2v-96xj-ybad
36
vulnerability VCID-gvhy-d4gm-57d3
37
vulnerability VCID-gyed-x6s8-ybhr
38
vulnerability VCID-hmbm-5ysw-77bu
39
vulnerability VCID-hves-r5bg-yfes
40
vulnerability VCID-k59r-wjt3-wqe5
41
vulnerability VCID-kagr-74d9-kyhx
42
vulnerability VCID-kukv-k3z7-7fgs
43
vulnerability VCID-kwab-3s4q-eka4
44
vulnerability VCID-kyb8-rvyw-s7b1
45
vulnerability VCID-m1zd-uytj-3bej
46
vulnerability VCID-m2zn-ja8d-7kg8
47
vulnerability VCID-maw6-4qs5-ykae
48
vulnerability VCID-n3ab-nk7c-hqc9
49
vulnerability VCID-n3zn-tuck-gkfe
50
vulnerability VCID-nvbx-q971-skgm
51
vulnerability VCID-pqxe-tfhk-47b7
52
vulnerability VCID-ruuh-g3fa-m7d8
53
vulnerability VCID-sr8e-w1qk-r7fz
54
vulnerability VCID-t2ne-75ck-eqcr
55
vulnerability VCID-tfrs-d458-tfaq
56
vulnerability VCID-u3ck-cvgt-fuhd
57
vulnerability VCID-v8ku-sjc8-wfga
58
vulnerability VCID-vdnj-sqmx-e3ep
59
vulnerability VCID-vhjj-dnft-kkf4
60
vulnerability VCID-wbaq-j85q-y3c6
61
vulnerability VCID-wgsc-dnn1-ukeq
62
vulnerability VCID-xf8r-kqxb-7qdy
63
vulnerability VCID-y9ne-rw7e-vugf
64
vulnerability VCID-yfx4-4gsc-2kgh
65
vulnerability VCID-yxpq-rrry-j3h8
resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@9.0.0%252BM1
1
url pkg:apache/tomcat@9.0.102
purl pkg:apache/tomcat@9.0.102
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2zq1-na8s-mfdd
1
vulnerability VCID-kukv-k3z7-7fgs
resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@9.0.102
2
url pkg:apache/tomcat@10.1.0-M1
purl pkg:apache/tomcat@10.1.0-M1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1e6p-cppr-2bh2
1
vulnerability VCID-246u-a4rh-yyd4
2
vulnerability VCID-2kku-pzer-9ufv
3
vulnerability VCID-2rmy-13ym-3bgm
4
vulnerability VCID-2x6a-3gh1-rkhs
5
vulnerability VCID-3vdn-j7sj-dfdn
6
vulnerability VCID-43j2-w5xt-43g9
7
vulnerability VCID-4cag-c4pb-dfaz
8
vulnerability VCID-56jv-htmt-rkew
9
vulnerability VCID-5781-s1ny-q7ey
10
vulnerability VCID-5sgv-7nsz-5fa8
11
vulnerability VCID-6pm1-byhk-eqfg
12
vulnerability VCID-8mns-kw6c-a7dk
13
vulnerability VCID-8myk-ac5b-huh8
14
vulnerability VCID-b3bb-9ajg-sfc9
15
vulnerability VCID-cfhw-vmcp-y3bc
16
vulnerability VCID-d1fm-vbd1-n7au
17
vulnerability VCID-fpgj-82wf-ykbw
18
vulnerability VCID-gb2v-96xj-ybad
19
vulnerability VCID-gvhy-d4gm-57d3
20
vulnerability VCID-gyed-x6s8-ybhr
21
vulnerability VCID-j6cj-ftyd-3ffa
22
vulnerability VCID-j8tk-s915-pbfy
23
vulnerability VCID-k59r-wjt3-wqe5
24
vulnerability VCID-kukv-k3z7-7fgs
25
vulnerability VCID-maw6-4qs5-ykae
26
vulnerability VCID-n9yk-e49f-n7e7
27
vulnerability VCID-nmq2-8ysj-4fbc
28
vulnerability VCID-p6pa-f1fg-hbhg
29
vulnerability VCID-p8q2-pt96-5ye8
30
vulnerability VCID-qkx6-32cj-jfbp
31
vulnerability VCID-rzj2-4kcj-43dq
32
vulnerability VCID-sr8e-w1qk-r7fz
33
vulnerability VCID-stds-vw5z-auhp
34
vulnerability VCID-v7tp-1t4h-zqeg
35
vulnerability VCID-v8ku-sjc8-wfga
36
vulnerability VCID-vsdf-4tfj-uybe
37
vulnerability VCID-wptr-hkjx-s7c3
38
vulnerability VCID-xqjr-7xfw-mbh2
39
vulnerability VCID-y9ne-rw7e-vugf
40
vulnerability VCID-zw2q-kna8-mqcm
resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@10.1.0-M1
3
url pkg:apache/tomcat@10.1.39
purl pkg:apache/tomcat@10.1.39
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2zq1-na8s-mfdd
1
vulnerability VCID-kukv-k3z7-7fgs
resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@10.1.39
4
url pkg:apache/tomcat@11.0.0-M1
purl pkg:apache/tomcat@11.0.0-M1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1e6p-cppr-2bh2
1
vulnerability VCID-246u-a4rh-yyd4
2
vulnerability VCID-2kku-pzer-9ufv
3
vulnerability VCID-2rmy-13ym-3bgm
4
vulnerability VCID-2x6a-3gh1-rkhs
5
vulnerability VCID-3vdn-j7sj-dfdn
6
vulnerability VCID-43j2-w5xt-43g9
7
vulnerability VCID-4cag-c4pb-dfaz
8
vulnerability VCID-5781-s1ny-q7ey
9
vulnerability VCID-5sgv-7nsz-5fa8
10
vulnerability VCID-74tx-sx8a-guhs
11
vulnerability VCID-8mns-kw6c-a7dk
12
vulnerability VCID-8myk-ac5b-huh8
13
vulnerability VCID-8war-4v58-eub2
14
vulnerability VCID-b3bb-9ajg-sfc9
15
vulnerability VCID-bks8-nvm9-vbgy
16
vulnerability VCID-cfhw-vmcp-y3bc
17
vulnerability VCID-d1fm-vbd1-n7au
18
vulnerability VCID-fpgj-82wf-ykbw
19
vulnerability VCID-gb2v-96xj-ybad
20
vulnerability VCID-gvhy-d4gm-57d3
21
vulnerability VCID-gyed-x6s8-ybhr
22
vulnerability VCID-j6cj-ftyd-3ffa
23
vulnerability VCID-k59r-wjt3-wqe5
24
vulnerability VCID-kukv-k3z7-7fgs
25
vulnerability VCID-maw6-4qs5-ykae
26
vulnerability VCID-n9yk-e49f-n7e7
27
vulnerability VCID-p6pa-f1fg-hbhg
28
vulnerability VCID-rzj2-4kcj-43dq
29
vulnerability VCID-sr8e-w1qk-r7fz
30
vulnerability VCID-v7tp-1t4h-zqeg
31
vulnerability VCID-v8ku-sjc8-wfga
32
vulnerability VCID-vsdf-4tfj-uybe
33
vulnerability VCID-xqjr-7xfw-mbh2
34
vulnerability VCID-y9ne-rw7e-vugf
35
vulnerability VCID-yrzk-1dbk-muhy
36
vulnerability VCID-zw2q-kna8-mqcm
resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@11.0.0-M1
5
url pkg:apache/tomcat@11.0.5
purl pkg:apache/tomcat@11.0.5
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2zq1-na8s-mfdd
1
vulnerability VCID-kukv-k3z7-7fgs
resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@11.0.5
6
url pkg:deb/debian/tomcat9@9.0.31-1~deb10u6
purl pkg:deb/debian/tomcat9@9.0.31-1~deb10u6
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1e6p-cppr-2bh2
1
vulnerability VCID-246u-a4rh-yyd4
2
vulnerability VCID-2kku-pzer-9ufv
3
vulnerability VCID-2rmy-13ym-3bgm
4
vulnerability VCID-2x6a-3gh1-rkhs
5
vulnerability VCID-2zq1-na8s-mfdd
6
vulnerability VCID-35xg-a746-5qgc
7
vulnerability VCID-3vdn-j7sj-dfdn
8
vulnerability VCID-43j2-w5xt-43g9
9
vulnerability VCID-46bv-6b7y-3bca
10
vulnerability VCID-4cag-c4pb-dfaz
11
vulnerability VCID-56jv-htmt-rkew
12
vulnerability VCID-5781-s1ny-q7ey
13
vulnerability VCID-5sgv-7nsz-5fa8
14
vulnerability VCID-66kh-s6cr-tqf9
15
vulnerability VCID-6pm1-byhk-eqfg
16
vulnerability VCID-74tx-sx8a-guhs
17
vulnerability VCID-885s-t4dx-dybv
18
vulnerability VCID-8e1c-rbkg-v7c2
19
vulnerability VCID-8mns-kw6c-a7dk
20
vulnerability VCID-8myk-ac5b-huh8
21
vulnerability VCID-8war-4v58-eub2
22
vulnerability VCID-9kfe-1esf-uydm
23
vulnerability VCID-a8gk-n8bq-87cp
24
vulnerability VCID-b3bb-9ajg-sfc9
25
vulnerability VCID-cfhw-vmcp-y3bc
26
vulnerability VCID-d1fm-vbd1-n7au
27
vulnerability VCID-dy6m-zt6r-9ubd
28
vulnerability VCID-dzan-r49k-kqab
29
vulnerability VCID-dzpn-w4b3-vbcm
30
vulnerability VCID-eb37-mkxf-7fgw
31
vulnerability VCID-fpgj-82wf-ykbw
32
vulnerability VCID-gb2v-96xj-ybad
33
vulnerability VCID-gvhy-d4gm-57d3
34
vulnerability VCID-gyed-x6s8-ybhr
35
vulnerability VCID-j6cj-ftyd-3ffa
36
vulnerability VCID-j8tk-s915-pbfy
37
vulnerability VCID-k59r-wjt3-wqe5
38
vulnerability VCID-k9cg-ehdw-dbh6
39
vulnerability VCID-kukv-k3z7-7fgs
40
vulnerability VCID-kwab-3s4q-eka4
41
vulnerability VCID-maw6-4qs5-ykae
42
vulnerability VCID-n3ab-nk7c-hqc9
43
vulnerability VCID-n9yk-e49f-n7e7
44
vulnerability VCID-nmq2-8ysj-4fbc
45
vulnerability VCID-nvbx-q971-skgm
46
vulnerability VCID-p6pa-f1fg-hbhg
47
vulnerability VCID-p8q2-pt96-5ye8
48
vulnerability VCID-qkx6-32cj-jfbp
49
vulnerability VCID-ran8-rnqn-tkbc
50
vulnerability VCID-rq42-qvsy-hue6
51
vulnerability VCID-rsxs-u5cc-rkgj
52
vulnerability VCID-ruuh-g3fa-m7d8
53
vulnerability VCID-rzj2-4kcj-43dq
54
vulnerability VCID-sr8e-w1qk-r7fz
55
vulnerability VCID-stds-vw5z-auhp
56
vulnerability VCID-t2ne-75ck-eqcr
57
vulnerability VCID-v7tp-1t4h-zqeg
58
vulnerability VCID-v8ku-sjc8-wfga
59
vulnerability VCID-vsdf-4tfj-uybe
60
vulnerability VCID-wgsc-dnn1-ukeq
61
vulnerability VCID-wptr-hkjx-s7c3
62
vulnerability VCID-xqjr-7xfw-mbh2
63
vulnerability VCID-xt59-cnmj-2bf8
64
vulnerability VCID-y9ne-rw7e-vugf
65
vulnerability VCID-yfx4-4gsc-2kgh
66
vulnerability VCID-yrzk-1dbk-muhy
67
vulnerability VCID-z2pq-cv2w-nfdk
68
vulnerability VCID-zw2q-kna8-mqcm
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat9@9.0.31-1~deb10u6
7
url pkg:deb/debian/tomcat9@9.0.43-2~deb11u10
purl pkg:deb/debian/tomcat9@9.0.43-2~deb11u10
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1e6p-cppr-2bh2
1
vulnerability VCID-246u-a4rh-yyd4
2
vulnerability VCID-2kku-pzer-9ufv
3
vulnerability VCID-2rmy-13ym-3bgm
4
vulnerability VCID-2x6a-3gh1-rkhs
5
vulnerability VCID-2zq1-na8s-mfdd
6
vulnerability VCID-35xg-a746-5qgc
7
vulnerability VCID-3vdn-j7sj-dfdn
8
vulnerability VCID-43j2-w5xt-43g9
9
vulnerability VCID-4cag-c4pb-dfaz
10
vulnerability VCID-5sgv-7nsz-5fa8
11
vulnerability VCID-74tx-sx8a-guhs
12
vulnerability VCID-8e1c-rbkg-v7c2
13
vulnerability VCID-8mns-kw6c-a7dk
14
vulnerability VCID-8myk-ac5b-huh8
15
vulnerability VCID-8war-4v58-eub2
16
vulnerability VCID-9kfe-1esf-uydm
17
vulnerability VCID-cfhw-vmcp-y3bc
18
vulnerability VCID-d1fm-vbd1-n7au
19
vulnerability VCID-fpgj-82wf-ykbw
20
vulnerability VCID-gb2v-96xj-ybad
21
vulnerability VCID-gvhy-d4gm-57d3
22
vulnerability VCID-gyed-x6s8-ybhr
23
vulnerability VCID-k59r-wjt3-wqe5
24
vulnerability VCID-k9cg-ehdw-dbh6
25
vulnerability VCID-kukv-k3z7-7fgs
26
vulnerability VCID-maw6-4qs5-ykae
27
vulnerability VCID-p8q2-pt96-5ye8
28
vulnerability VCID-rsxs-u5cc-rkgj
29
vulnerability VCID-sr8e-w1qk-r7fz
30
vulnerability VCID-v8ku-sjc8-wfga
31
vulnerability VCID-xqjr-7xfw-mbh2
32
vulnerability VCID-y9ne-rw7e-vugf
33
vulnerability VCID-yrzk-1dbk-muhy
34
vulnerability VCID-zw2q-kna8-mqcm
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat9@9.0.43-2~deb11u10
8
url pkg:deb/debian/tomcat9@9.0.70-2
purl pkg:deb/debian/tomcat9@9.0.70-2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-246u-a4rh-yyd4
1
vulnerability VCID-2x6a-3gh1-rkhs
2
vulnerability VCID-2zq1-na8s-mfdd
3
vulnerability VCID-4cag-c4pb-dfaz
4
vulnerability VCID-8myk-ac5b-huh8
5
vulnerability VCID-9kfe-1esf-uydm
6
vulnerability VCID-cfhw-vmcp-y3bc
7
vulnerability VCID-fpgj-82wf-ykbw
8
vulnerability VCID-gb2v-96xj-ybad
9
vulnerability VCID-gvhy-d4gm-57d3
10
vulnerability VCID-k59r-wjt3-wqe5
11
vulnerability VCID-kukv-k3z7-7fgs
12
vulnerability VCID-sr8e-w1qk-r7fz
13
vulnerability VCID-xqjr-7xfw-mbh2
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat9@9.0.70-2
9
url pkg:deb/debian/tomcat9@9.0.95-1
purl pkg:deb/debian/tomcat9@9.0.95-1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-246u-a4rh-yyd4
1
vulnerability VCID-2x6a-3gh1-rkhs
2
vulnerability VCID-2zq1-na8s-mfdd
3
vulnerability VCID-4cag-c4pb-dfaz
4
vulnerability VCID-8myk-ac5b-huh8
5
vulnerability VCID-9kfe-1esf-uydm
6
vulnerability VCID-cfhw-vmcp-y3bc
7
vulnerability VCID-fpgj-82wf-ykbw
8
vulnerability VCID-gb2v-96xj-ybad
9
vulnerability VCID-gvhy-d4gm-57d3
10
vulnerability VCID-k59r-wjt3-wqe5
11
vulnerability VCID-kukv-k3z7-7fgs
12
vulnerability VCID-sr8e-w1qk-r7fz
13
vulnerability VCID-xqjr-7xfw-mbh2
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat9@9.0.95-1
10
url pkg:maven/org.apache.tomcat/tomcat@9.0.0.M1
purl pkg:maven/org.apache.tomcat/tomcat@9.0.0.M1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-18q4-zark-s7a7
1
vulnerability VCID-1e6p-cppr-2bh2
2
vulnerability VCID-1hdb-24e3-f3d6
3
vulnerability VCID-1k8f-vsg1-k3d6
4
vulnerability VCID-246u-a4rh-yyd4
5
vulnerability VCID-2kku-pzer-9ufv
6
vulnerability VCID-2sbh-sy57-3uez
7
vulnerability VCID-2x6a-3gh1-rkhs
8
vulnerability VCID-39e3-jfbg-s3hk
9
vulnerability VCID-3cr9-g81m-4ugy
10
vulnerability VCID-3n4t-bvb1-5qer
11
vulnerability VCID-3r3s-q21j-c3au
12
vulnerability VCID-43j2-w5xt-43g9
13
vulnerability VCID-46bv-6b7y-3bca
14
vulnerability VCID-4aaa-errb-2qdw
15
vulnerability VCID-4cag-c4pb-dfaz
16
vulnerability VCID-4tf3-7f5b-2ffu
17
vulnerability VCID-5sgv-7nsz-5fa8
18
vulnerability VCID-66kh-s6cr-tqf9
19
vulnerability VCID-68fk-4g86-ekbp
20
vulnerability VCID-885s-t4dx-dybv
21
vulnerability VCID-95d1-arxd-hkd1
22
vulnerability VCID-9exq-fhv6-bbea
23
vulnerability VCID-9kfe-1esf-uydm
24
vulnerability VCID-a8gk-n8bq-87cp
25
vulnerability VCID-aeeu-fpay-wufz
26
vulnerability VCID-arkn-bca7-hqam
27
vulnerability VCID-ayrd-8ntf-hkh3
28
vulnerability VCID-dzpn-w4b3-vbcm
29
vulnerability VCID-eb37-mkxf-7fgw
30
vulnerability VCID-enaj-f97c-jbh7
31
vulnerability VCID-f77q-v5xp-e7dy
32
vulnerability VCID-fpgj-82wf-ykbw
33
vulnerability VCID-fyfz-6tr5-2fc7
34
vulnerability VCID-g7bk-891a-uufy
35
vulnerability VCID-gb2v-96xj-ybad
36
vulnerability VCID-gvhy-d4gm-57d3
37
vulnerability VCID-gyed-x6s8-ybhr
38
vulnerability VCID-hmbm-5ysw-77bu
39
vulnerability VCID-hves-r5bg-yfes
40
vulnerability VCID-k59r-wjt3-wqe5
41
vulnerability VCID-k9cg-ehdw-dbh6
42
vulnerability VCID-kagr-74d9-kyhx
43
vulnerability VCID-kukv-k3z7-7fgs
44
vulnerability VCID-kwab-3s4q-eka4
45
vulnerability VCID-kyb8-rvyw-s7b1
46
vulnerability VCID-m1zd-uytj-3bej
47
vulnerability VCID-m2zn-ja8d-7kg8
48
vulnerability VCID-maw6-4qs5-ykae
49
vulnerability VCID-n3ab-nk7c-hqc9
50
vulnerability VCID-n3zn-tuck-gkfe
51
vulnerability VCID-nvbx-q971-skgm
52
vulnerability VCID-pqxe-tfhk-47b7
53
vulnerability VCID-ruuh-g3fa-m7d8
54
vulnerability VCID-sr8e-w1qk-r7fz
55
vulnerability VCID-t2ne-75ck-eqcr
56
vulnerability VCID-tfrs-d458-tfaq
57
vulnerability VCID-u3ck-cvgt-fuhd
58
vulnerability VCID-v8ku-sjc8-wfga
59
vulnerability VCID-vdnj-sqmx-e3ep
60
vulnerability VCID-vhjj-dnft-kkf4
61
vulnerability VCID-wbaq-j85q-y3c6
62
vulnerability VCID-wgsc-dnn1-ukeq
63
vulnerability VCID-xf8r-kqxb-7qdy
64
vulnerability VCID-y9ne-rw7e-vugf
65
vulnerability VCID-yfx4-4gsc-2kgh
66
vulnerability VCID-yxpq-rrry-j3h8
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@9.0.0.M1
11
url pkg:maven/org.apache.tomcat/tomcat@9.0.102
purl pkg:maven/org.apache.tomcat/tomcat@9.0.102
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2zq1-na8s-mfdd
1
vulnerability VCID-8war-4v58-eub2
2
vulnerability VCID-kukv-k3z7-7fgs
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@9.0.102
12
url pkg:maven/org.apache.tomcat/tomcat@10.1.0-M1
purl pkg:maven/org.apache.tomcat/tomcat@10.1.0-M1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1e6p-cppr-2bh2
1
vulnerability VCID-246u-a4rh-yyd4
2
vulnerability VCID-2kku-pzer-9ufv
3
vulnerability VCID-2rmy-13ym-3bgm
4
vulnerability VCID-2x6a-3gh1-rkhs
5
vulnerability VCID-3vdn-j7sj-dfdn
6
vulnerability VCID-43j2-w5xt-43g9
7
vulnerability VCID-4cag-c4pb-dfaz
8
vulnerability VCID-56jv-htmt-rkew
9
vulnerability VCID-5781-s1ny-q7ey
10
vulnerability VCID-5sgv-7nsz-5fa8
11
vulnerability VCID-6pm1-byhk-eqfg
12
vulnerability VCID-8mns-kw6c-a7dk
13
vulnerability VCID-8myk-ac5b-huh8
14
vulnerability VCID-b3bb-9ajg-sfc9
15
vulnerability VCID-cfhw-vmcp-y3bc
16
vulnerability VCID-d1fm-vbd1-n7au
17
vulnerability VCID-fpgj-82wf-ykbw
18
vulnerability VCID-gb2v-96xj-ybad
19
vulnerability VCID-gvhy-d4gm-57d3
20
vulnerability VCID-gyed-x6s8-ybhr
21
vulnerability VCID-j6cj-ftyd-3ffa
22
vulnerability VCID-j8tk-s915-pbfy
23
vulnerability VCID-k59r-wjt3-wqe5
24
vulnerability VCID-kukv-k3z7-7fgs
25
vulnerability VCID-maw6-4qs5-ykae
26
vulnerability VCID-n9yk-e49f-n7e7
27
vulnerability VCID-nmq2-8ysj-4fbc
28
vulnerability VCID-p6pa-f1fg-hbhg
29
vulnerability VCID-p8q2-pt96-5ye8
30
vulnerability VCID-qkx6-32cj-jfbp
31
vulnerability VCID-rzj2-4kcj-43dq
32
vulnerability VCID-sr8e-w1qk-r7fz
33
vulnerability VCID-stds-vw5z-auhp
34
vulnerability VCID-v7tp-1t4h-zqeg
35
vulnerability VCID-v8ku-sjc8-wfga
36
vulnerability VCID-vsdf-4tfj-uybe
37
vulnerability VCID-wptr-hkjx-s7c3
38
vulnerability VCID-xqjr-7xfw-mbh2
39
vulnerability VCID-y9ne-rw7e-vugf
40
vulnerability VCID-zw2q-kna8-mqcm
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@10.1.0-M1
13
url pkg:maven/org.apache.tomcat/tomcat@10.1.39
purl pkg:maven/org.apache.tomcat/tomcat@10.1.39
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2zq1-na8s-mfdd
1
vulnerability VCID-8war-4v58-eub2
2
vulnerability VCID-kukv-k3z7-7fgs
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@10.1.39
14
url pkg:maven/org.apache.tomcat/tomcat@11.0.0-M1
purl pkg:maven/org.apache.tomcat/tomcat@11.0.0-M1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1e6p-cppr-2bh2
1
vulnerability VCID-246u-a4rh-yyd4
2
vulnerability VCID-2kku-pzer-9ufv
3
vulnerability VCID-2rmy-13ym-3bgm
4
vulnerability VCID-2x6a-3gh1-rkhs
5
vulnerability VCID-3vdn-j7sj-dfdn
6
vulnerability VCID-43j2-w5xt-43g9
7
vulnerability VCID-4cag-c4pb-dfaz
8
vulnerability VCID-5781-s1ny-q7ey
9
vulnerability VCID-5sgv-7nsz-5fa8
10
vulnerability VCID-74tx-sx8a-guhs
11
vulnerability VCID-8mns-kw6c-a7dk
12
vulnerability VCID-8myk-ac5b-huh8
13
vulnerability VCID-8war-4v58-eub2
14
vulnerability VCID-b3bb-9ajg-sfc9
15
vulnerability VCID-bks8-nvm9-vbgy
16
vulnerability VCID-cfhw-vmcp-y3bc
17
vulnerability VCID-d1fm-vbd1-n7au
18
vulnerability VCID-fpgj-82wf-ykbw
19
vulnerability VCID-gb2v-96xj-ybad
20
vulnerability VCID-gvhy-d4gm-57d3
21
vulnerability VCID-gyed-x6s8-ybhr
22
vulnerability VCID-j6cj-ftyd-3ffa
23
vulnerability VCID-k59r-wjt3-wqe5
24
vulnerability VCID-kukv-k3z7-7fgs
25
vulnerability VCID-maw6-4qs5-ykae
26
vulnerability VCID-n9yk-e49f-n7e7
27
vulnerability VCID-p6pa-f1fg-hbhg
28
vulnerability VCID-rzj2-4kcj-43dq
29
vulnerability VCID-sr8e-w1qk-r7fz
30
vulnerability VCID-v7tp-1t4h-zqeg
31
vulnerability VCID-v8ku-sjc8-wfga
32
vulnerability VCID-vsdf-4tfj-uybe
33
vulnerability VCID-xqjr-7xfw-mbh2
34
vulnerability VCID-y9ne-rw7e-vugf
35
vulnerability VCID-yrzk-1dbk-muhy
36
vulnerability VCID-zw2q-kna8-mqcm
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@11.0.0-M1
15
url pkg:maven/org.apache.tomcat/tomcat@11.0.5
purl pkg:maven/org.apache.tomcat/tomcat@11.0.5
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2zq1-na8s-mfdd
1
vulnerability VCID-8war-4v58-eub2
2
vulnerability VCID-kukv-k3z7-7fgs
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@11.0.5
16
url pkg:maven/org.apache.tomcat/tomcat-catalina@8.5.0
purl pkg:maven/org.apache.tomcat/tomcat-catalina@8.5.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-246u-a4rh-yyd4
1
vulnerability VCID-3cr9-g81m-4ugy
2
vulnerability VCID-4cag-c4pb-dfaz
3
vulnerability VCID-5sgv-7nsz-5fa8
4
vulnerability VCID-66kh-s6cr-tqf9
5
vulnerability VCID-8mns-kw6c-a7dk
6
vulnerability VCID-95d1-arxd-hkd1
7
vulnerability VCID-a8gk-n8bq-87cp
8
vulnerability VCID-ayrd-8ntf-hkh3
9
vulnerability VCID-b3bb-9ajg-sfc9
10
vulnerability VCID-c12c-fsy1-17ee
11
vulnerability VCID-enaj-f97c-jbh7
12
vulnerability VCID-gb2v-96xj-ybad
13
vulnerability VCID-gvhy-d4gm-57d3
14
vulnerability VCID-hmbm-5ysw-77bu
15
vulnerability VCID-hves-r5bg-yfes
16
vulnerability VCID-j6cj-ftyd-3ffa
17
vulnerability VCID-j8tk-s915-pbfy
18
vulnerability VCID-k59r-wjt3-wqe5
19
vulnerability VCID-kukv-k3z7-7fgs
20
vulnerability VCID-pqxe-tfhk-47b7
21
vulnerability VCID-sr8e-w1qk-r7fz
22
vulnerability VCID-v7tp-1t4h-zqeg
23
vulnerability VCID-v8ku-sjc8-wfga
24
vulnerability VCID-vdnj-sqmx-e3ep
25
vulnerability VCID-xf8r-kqxb-7qdy
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat-catalina@8.5.0
17
url pkg:maven/org.apache.tomcat/tomcat-catalina@8.5.100
purl pkg:maven/org.apache.tomcat/tomcat-catalina@8.5.100
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-246u-a4rh-yyd4
1
vulnerability VCID-4cag-c4pb-dfaz
2
vulnerability VCID-5sgv-7nsz-5fa8
3
vulnerability VCID-8mns-kw6c-a7dk
4
vulnerability VCID-cfhw-vmcp-y3bc
5
vulnerability VCID-gb2v-96xj-ybad
6
vulnerability VCID-gvhy-d4gm-57d3
7
vulnerability VCID-k59r-wjt3-wqe5
8
vulnerability VCID-kukv-k3z7-7fgs
9
vulnerability VCID-sr8e-w1qk-r7fz
10
vulnerability VCID-v8ku-sjc8-wfga
11
vulnerability VCID-xqjr-7xfw-mbh2
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat-catalina@8.5.100
18
url pkg:maven/org.apache.tomcat/tomcat-catalina@9.0.76
purl pkg:maven/org.apache.tomcat/tomcat-catalina@9.0.76
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-8mns-kw6c-a7dk
1
vulnerability VCID-j6cj-ftyd-3ffa
2
vulnerability VCID-kukv-k3z7-7fgs
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat-catalina@9.0.76
19
url pkg:maven/org.apache.tomcat/tomcat-catalina@9.0.102
purl pkg:maven/org.apache.tomcat/tomcat-catalina@9.0.102
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-kukv-k3z7-7fgs
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat-catalina@9.0.102
20
url pkg:maven/org.apache.tomcat/tomcat-catalina@10.1.10
purl pkg:maven/org.apache.tomcat/tomcat-catalina@10.1.10
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-8mns-kw6c-a7dk
1
vulnerability VCID-j6cj-ftyd-3ffa
2
vulnerability VCID-kukv-k3z7-7fgs
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat-catalina@10.1.10
21
url pkg:maven/org.apache.tomcat/tomcat-catalina@11.0.0-M2
purl pkg:maven/org.apache.tomcat/tomcat-catalina@11.0.0-M2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-kukv-k3z7-7fgs
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat-catalina@11.0.0-M2
22
url pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@8.5.0
purl pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@8.5.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-18q4-zark-s7a7
1
vulnerability VCID-1hdb-24e3-f3d6
2
vulnerability VCID-246u-a4rh-yyd4
3
vulnerability VCID-2sbh-sy57-3uez
4
vulnerability VCID-2zq1-na8s-mfdd
5
vulnerability VCID-39e3-jfbg-s3hk
6
vulnerability VCID-46bv-6b7y-3bca
7
vulnerability VCID-4cag-c4pb-dfaz
8
vulnerability VCID-4tf3-7f5b-2ffu
9
vulnerability VCID-5781-s1ny-q7ey
10
vulnerability VCID-5etb-njwf-rfdu
11
vulnerability VCID-5sgv-7nsz-5fa8
12
vulnerability VCID-66kh-s6cr-tqf9
13
vulnerability VCID-8myk-ac5b-huh8
14
vulnerability VCID-a8gk-n8bq-87cp
15
vulnerability VCID-aeeu-fpay-wufz
16
vulnerability VCID-ayrd-8ntf-hkh3
17
vulnerability VCID-b3bb-9ajg-sfc9
18
vulnerability VCID-dy6m-zt6r-9ubd
19
vulnerability VCID-dzpn-w4b3-vbcm
20
vulnerability VCID-f77q-v5xp-e7dy
21
vulnerability VCID-fpgj-82wf-ykbw
22
vulnerability VCID-fyfz-6tr5-2fc7
23
vulnerability VCID-g7bk-891a-uufy
24
vulnerability VCID-gb2v-96xj-ybad
25
vulnerability VCID-hmbm-5ysw-77bu
26
vulnerability VCID-hves-r5bg-yfes
27
vulnerability VCID-j6cj-ftyd-3ffa
28
vulnerability VCID-j8tk-s915-pbfy
29
vulnerability VCID-k59r-wjt3-wqe5
30
vulnerability VCID-kukv-k3z7-7fgs
31
vulnerability VCID-kwab-3s4q-eka4
32
vulnerability VCID-m2zn-ja8d-7kg8
33
vulnerability VCID-n3ab-nk7c-hqc9
34
vulnerability VCID-n3zn-tuck-gkfe
35
vulnerability VCID-n9yk-e49f-n7e7
36
vulnerability VCID-nmq2-8ysj-4fbc
37
vulnerability VCID-ruuh-g3fa-m7d8
38
vulnerability VCID-rzj2-4kcj-43dq
39
vulnerability VCID-sr8e-w1qk-r7fz
40
vulnerability VCID-t2ne-75ck-eqcr
41
vulnerability VCID-u3ck-cvgt-fuhd
42
vulnerability VCID-v7tp-1t4h-zqeg
43
vulnerability VCID-v8ku-sjc8-wfga
44
vulnerability VCID-vdnj-sqmx-e3ep
45
vulnerability VCID-vsdf-4tfj-uybe
46
vulnerability VCID-yfx4-4gsc-2kgh
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@8.5.0
23
url pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@8.5.100
purl pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@8.5.100
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-246u-a4rh-yyd4
1
vulnerability VCID-2zq1-na8s-mfdd
2
vulnerability VCID-4cag-c4pb-dfaz
3
vulnerability VCID-5sgv-7nsz-5fa8
4
vulnerability VCID-8myk-ac5b-huh8
5
vulnerability VCID-cfhw-vmcp-y3bc
6
vulnerability VCID-fpgj-82wf-ykbw
7
vulnerability VCID-gb2v-96xj-ybad
8
vulnerability VCID-k59r-wjt3-wqe5
9
vulnerability VCID-kukv-k3z7-7fgs
10
vulnerability VCID-sr8e-w1qk-r7fz
11
vulnerability VCID-v8ku-sjc8-wfga
12
vulnerability VCID-xqjr-7xfw-mbh2
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@8.5.100
24
url pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@9.0.76
purl pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@9.0.76
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2zq1-na8s-mfdd
1
vulnerability VCID-6kcx-vptm-zbds
2
vulnerability VCID-fpgj-82wf-ykbw
3
vulnerability VCID-j6cj-ftyd-3ffa
4
vulnerability VCID-kukv-k3z7-7fgs
5
vulnerability VCID-vsdf-4tfj-uybe
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@9.0.76
25
url pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@9.0.102
purl pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@9.0.102
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2zq1-na8s-mfdd
1
vulnerability VCID-fpgj-82wf-ykbw
2
vulnerability VCID-kukv-k3z7-7fgs
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@9.0.102
26
url pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@10.1.10
purl pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@10.1.10
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2zq1-na8s-mfdd
1
vulnerability VCID-fpgj-82wf-ykbw
2
vulnerability VCID-j6cj-ftyd-3ffa
3
vulnerability VCID-kukv-k3z7-7fgs
4
vulnerability VCID-vsdf-4tfj-uybe
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@10.1.10
27
url pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@11.0.0-M2
purl pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@11.0.0-M2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2zq1-na8s-mfdd
1
vulnerability VCID-56jv-htmt-rkew
2
vulnerability VCID-kukv-k3z7-7fgs
3
vulnerability VCID-xgr8-tpv5-q3b2
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@11.0.0-M2
28
url pkg:rpm/redhat/jws5-tomcat@9.0.87-14.redhat_00013.1?arch=el8jws
purl pkg:rpm/redhat/jws5-tomcat@9.0.87-14.redhat_00013.1?arch=el8jws
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1e6p-cppr-2bh2
1
vulnerability VCID-kukv-k3z7-7fgs
2
vulnerability VCID-xqjr-7xfw-mbh2
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jws5-tomcat@9.0.87-14.redhat_00013.1%3Farch=el8jws
29
url pkg:rpm/redhat/jws5-tomcat@9.0.87-14.redhat_00013.1?arch=el9jws
purl pkg:rpm/redhat/jws5-tomcat@9.0.87-14.redhat_00013.1?arch=el9jws
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1e6p-cppr-2bh2
1
vulnerability VCID-kukv-k3z7-7fgs
2
vulnerability VCID-xqjr-7xfw-mbh2
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jws5-tomcat@9.0.87-14.redhat_00013.1%3Farch=el9jws
30
url pkg:rpm/redhat/jws5-tomcat@9.0.87-14.redhat_00013.1?arch=el7jws
purl pkg:rpm/redhat/jws5-tomcat@9.0.87-14.redhat_00013.1?arch=el7jws
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1e6p-cppr-2bh2
1
vulnerability VCID-kukv-k3z7-7fgs
2
vulnerability VCID-xqjr-7xfw-mbh2
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jws5-tomcat@9.0.87-14.redhat_00013.1%3Farch=el7jws
31
url pkg:rpm/redhat/jws6-tomcat@10.1.36-19.redhat_00018.1?arch=el9jws
purl pkg:rpm/redhat/jws6-tomcat@10.1.36-19.redhat_00018.1?arch=el9jws
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4cag-c4pb-dfaz
1
vulnerability VCID-kukv-k3z7-7fgs
2
vulnerability VCID-xqjr-7xfw-mbh2
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jws6-tomcat@10.1.36-19.redhat_00018.1%3Farch=el9jws
32
url pkg:rpm/redhat/jws6-tomcat@10.1.36-19.redhat_00018.1?arch=el8jws
purl pkg:rpm/redhat/jws6-tomcat@10.1.36-19.redhat_00018.1?arch=el8jws
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4cag-c4pb-dfaz
1
vulnerability VCID-kukv-k3z7-7fgs
2
vulnerability VCID-xqjr-7xfw-mbh2
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jws6-tomcat@10.1.36-19.redhat_00018.1%3Farch=el8jws
33
url pkg:rpm/redhat/jws6-tomcat@10.1.36-19.redhat_00018.1?arch=el10jws
purl pkg:rpm/redhat/jws6-tomcat@10.1.36-19.redhat_00018.1?arch=el10jws
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4cag-c4pb-dfaz
1
vulnerability VCID-kukv-k3z7-7fgs
2
vulnerability VCID-xqjr-7xfw-mbh2
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jws6-tomcat@10.1.36-19.redhat_00018.1%3Farch=el10jws
34
url pkg:rpm/redhat/pki-servlet-engine@1:9.0.43-4.el9_0?arch=2
purl pkg:rpm/redhat/pki-servlet-engine@1:9.0.43-4.el9_0?arch=2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-kukv-k3z7-7fgs
1
vulnerability VCID-xqjr-7xfw-mbh2
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/pki-servlet-engine@1:9.0.43-4.el9_0%3Farch=2
35
url pkg:rpm/redhat/pki-servlet-engine@1:9.0.50-1.el9_2?arch=3
purl pkg:rpm/redhat/pki-servlet-engine@1:9.0.50-1.el9_2?arch=3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-kukv-k3z7-7fgs
1
vulnerability VCID-xqjr-7xfw-mbh2
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/pki-servlet-engine@1:9.0.50-1.el9_2%3Farch=3
36
url pkg:rpm/redhat/tomcat@1:9.0.87-1.el8_8?arch=8
purl pkg:rpm/redhat/tomcat@1:9.0.87-1.el8_8?arch=8
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-kukv-k3z7-7fgs
1
vulnerability VCID-xqjr-7xfw-mbh2
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/tomcat@1:9.0.87-1.el8_8%3Farch=8
37
url pkg:rpm/redhat/tomcat@1:9.0.87-1.el8_10?arch=7
purl pkg:rpm/redhat/tomcat@1:9.0.87-1.el8_10?arch=7
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-kukv-k3z7-7fgs
1
vulnerability VCID-xqjr-7xfw-mbh2
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/tomcat@1:9.0.87-1.el8_10%3Farch=7
38
url pkg:rpm/redhat/tomcat@1:9.0.87-1.el9_2?arch=7
purl pkg:rpm/redhat/tomcat@1:9.0.87-1.el9_2?arch=7
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-kukv-k3z7-7fgs
1
vulnerability VCID-xqjr-7xfw-mbh2
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/tomcat@1:9.0.87-1.el9_2%3Farch=7
39
url pkg:rpm/redhat/tomcat@1:9.0.87-1.el9_4?arch=7
purl pkg:rpm/redhat/tomcat@1:9.0.87-1.el9_4?arch=7
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-kukv-k3z7-7fgs
1
vulnerability VCID-xqjr-7xfw-mbh2
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/tomcat@1:9.0.87-1.el9_4%3Farch=7
40
url pkg:rpm/redhat/tomcat@1:9.0.87-3.el9_6?arch=4
purl pkg:rpm/redhat/tomcat@1:9.0.87-3.el9_6?arch=4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-kukv-k3z7-7fgs
1
vulnerability VCID-xqjr-7xfw-mbh2
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/tomcat@1:9.0.87-3.el9_6%3Farch=4
41
url pkg:rpm/redhat/tomcat@1:9.0.87-6.el9_7?arch=1
purl pkg:rpm/redhat/tomcat@1:9.0.87-6.el9_7?arch=1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-kukv-k3z7-7fgs
1
vulnerability VCID-xqjr-7xfw-mbh2
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/tomcat@1:9.0.87-6.el9_7%3Farch=1
42
url pkg:rpm/redhat/tomcat@1:10.1.36-1.el10_0?arch=3
purl pkg:rpm/redhat/tomcat@1:10.1.36-1.el10_0?arch=3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4cag-c4pb-dfaz
1
vulnerability VCID-kukv-k3z7-7fgs
2
vulnerability VCID-xqjr-7xfw-mbh2
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/tomcat@1:10.1.36-1.el10_0%3Farch=3
43
url pkg:rpm/redhat/tomcat@1:10.1.36-3.el10_1?arch=1
purl pkg:rpm/redhat/tomcat@1:10.1.36-3.el10_1?arch=1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4cag-c4pb-dfaz
1
vulnerability VCID-kukv-k3z7-7fgs
2
vulnerability VCID-xqjr-7xfw-mbh2
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/tomcat@1:10.1.36-3.el10_1%3Farch=1
44
url pkg:rpm/redhat/tomcat9@1:9.0.87-5.el10_0?arch=4
purl pkg:rpm/redhat/tomcat9@1:9.0.87-5.el10_0?arch=4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-kukv-k3z7-7fgs
1
vulnerability VCID-xqjr-7xfw-mbh2
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/tomcat9@1:9.0.87-5.el10_0%3Farch=4
45
url pkg:rpm/redhat/tomcat9@1:9.0.87-8.el10_1?arch=1
purl pkg:rpm/redhat/tomcat9@1:9.0.87-8.el10_1?arch=1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-kukv-k3z7-7fgs
1
vulnerability VCID-xqjr-7xfw-mbh2
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/tomcat9@1:9.0.87-8.el10_1%3Farch=1
References
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-31651.json
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-31651.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-31651
reference_id
reference_type
scores
0
value 0.0037
scoring_system epss
scoring_elements 0.58893
published_at 2026-04-16T12:55:00Z
1
value 0.0037
scoring_system epss
scoring_elements 0.58859
published_at 2026-04-13T12:55:00Z
2
value 0.0037
scoring_system epss
scoring_elements 0.58879
published_at 2026-04-12T12:55:00Z
3
value 0.0037
scoring_system epss
scoring_elements 0.58896
published_at 2026-04-11T12:55:00Z
4
value 0.0037
scoring_system epss
scoring_elements 0.58878
published_at 2026-04-09T12:55:00Z
5
value 0.0037
scoring_system epss
scoring_elements 0.58872
published_at 2026-04-08T12:55:00Z
6
value 0.0037
scoring_system epss
scoring_elements 0.5882
published_at 2026-04-07T12:55:00Z
7
value 0.0037
scoring_system epss
scoring_elements 0.58852
published_at 2026-04-04T12:55:00Z
8
value 0.0037
scoring_system epss
scoring_elements 0.58829
published_at 2026-04-02T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-31651
2
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
3
reference_url https://github.com/apache/tomcat
reference_id
reference_type
scores
0
value 2.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:U
1
value LOW
scoring_system generic_textual
scoring_elements
url https://github.com/apache/tomcat
4
reference_url https://github.com/apache/tomcat/commit/066bf6b6a15a4e7e0941d4acf096841165b97098
reference_id
reference_type
scores
0
value 2.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:U
1
value LOW
scoring_system generic_textual
scoring_elements
url https://github.com/apache/tomcat/commit/066bf6b6a15a4e7e0941d4acf096841165b97098
5
reference_url https://github.com/apache/tomcat/commit/175dc75fc428930034a6c93fb52f830d955d8e64
reference_id
reference_type
scores
0
value 2.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:U
1
value LOW
scoring_system generic_textual
scoring_elements
url https://github.com/apache/tomcat/commit/175dc75fc428930034a6c93fb52f830d955d8e64
6
reference_url https://github.com/apache/tomcat/commit/ee3ab548e92345eca0cbd1f01649eb36c6f29454
reference_id
reference_type
scores
0
value 2.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:U
1
value LOW
scoring_system generic_textual
scoring_elements
url https://github.com/apache/tomcat/commit/ee3ab548e92345eca0cbd1f01649eb36c6f29454
7
reference_url https://github.com/apache/tomcat/commit/fbecc915a10c5a3d634c5e2c6ced4ff479ce9953
reference_id
reference_type
scores
0
value 2.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:U
1
value LOW
scoring_system generic_textual
scoring_elements
url https://github.com/apache/tomcat/commit/fbecc915a10c5a3d634c5e2c6ced4ff479ce9953
8
reference_url https://lists.apache.org/list.html?announce@tomcat.apache.org
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value 2.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:U
2
value LOW
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-07-30T03:55:44Z/
url https://lists.apache.org/list.html?announce@tomcat.apache.org
9
reference_url https://lists.debian.org/debian-lts-announce/2025/07/msg00009.html
reference_id
reference_type
scores
0
value 2.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:U
1
value LOW
scoring_system generic_textual
scoring_elements
url https://lists.debian.org/debian-lts-announce/2025/07/msg00009.html
10
reference_url https://nvd.nist.gov/vuln/detail/CVE-2025-31651
reference_id
reference_type
scores
0
value 2.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:U
1
value LOW
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2025-31651
11
reference_url https://tomcat.apache.org/security-10.html
reference_id
reference_type
scores
0
value 2.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:U
1
value LOW
scoring_system generic_textual
scoring_elements
url https://tomcat.apache.org/security-10.html
12
reference_url https://tomcat.apache.org/security-11.html
reference_id
reference_type
scores
0
value 2.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:U
1
value LOW
scoring_system generic_textual
scoring_elements
url https://tomcat.apache.org/security-11.html
13
reference_url https://tomcat.apache.org/security-9.html
reference_id
reference_type
scores
0
value 2.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:U
1
value LOW
scoring_system generic_textual
scoring_elements
url https://tomcat.apache.org/security-9.html
14
reference_url http://www.openwall.com/lists/oss-security/2025/04/28/3
reference_id
reference_type
scores
0
value 2.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:U
1
value LOW
scoring_system generic_textual
scoring_elements
url http://www.openwall.com/lists/oss-security/2025/04/28/3
15
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2362782
reference_id 2362782
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2362782
16
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-31651
reference_id CVE-2025-31651
reference_type
scores
0
value Low
scoring_system apache_tomcat
scoring_elements
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-31651
17
reference_url https://github.com/advisories/GHSA-ff77-26x5-69cr
reference_id GHSA-ff77-26x5-69cr
reference_type
scores
0
value LOW
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-ff77-26x5-69cr
18
reference_url https://access.redhat.com/errata/RHSA-2025:19809
reference_id RHSA-2025:19809
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:19809
19
reference_url https://access.redhat.com/errata/RHSA-2025:19810
reference_id RHSA-2025:19810
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:19810
20
reference_url https://access.redhat.com/errata/RHSA-2025:22924
reference_id RHSA-2025:22924
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:22924
21
reference_url https://access.redhat.com/errata/RHSA-2025:22925
reference_id RHSA-2025:22925
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:22925
22
reference_url https://access.redhat.com/errata/RHSA-2025:23044
reference_id RHSA-2025:23044
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:23044
23
reference_url https://access.redhat.com/errata/RHSA-2025:23045
reference_id RHSA-2025:23045
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:23045
24
reference_url https://access.redhat.com/errata/RHSA-2025:23046
reference_id RHSA-2025:23046
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:23046
25
reference_url https://access.redhat.com/errata/RHSA-2025:23047
reference_id RHSA-2025:23047
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:23047
26
reference_url https://access.redhat.com/errata/RHSA-2025:23048
reference_id RHSA-2025:23048
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:23048
27
reference_url https://access.redhat.com/errata/RHSA-2025:23049
reference_id RHSA-2025:23049
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:23049
28
reference_url https://access.redhat.com/errata/RHSA-2025:23050
reference_id RHSA-2025:23050
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:23050
29
reference_url https://access.redhat.com/errata/RHSA-2025:23051
reference_id RHSA-2025:23051
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:23051
30
reference_url https://access.redhat.com/errata/RHSA-2025:23052
reference_id RHSA-2025:23052
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:23052
31
reference_url https://access.redhat.com/errata/RHSA-2025:23053
reference_id RHSA-2025:23053
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:23053
32
reference_url https://access.redhat.com/errata/RHSA-2026:0292
reference_id RHSA-2026:0292
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:0292
33
reference_url https://access.redhat.com/errata/RHSA-2026:0293
reference_id RHSA-2026:0293
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:0293
34
reference_url https://access.redhat.com/errata/RHSA-2026:2724
reference_id RHSA-2026:2724
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:2724
35
reference_url https://access.redhat.com/errata/RHSA-2026:2725
reference_id RHSA-2026:2725
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:2725
36
reference_url https://access.redhat.com/errata/RHSA-2026:2726
reference_id RHSA-2026:2726
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:2726
37
reference_url https://usn.ubuntu.com/7705-1/
reference_id USN-7705-1
reference_type
scores
url https://usn.ubuntu.com/7705-1/
Weaknesses
0
cwe_id 116
name Improper Encoding or Escaping of Output
description The product prepares a structured message for communication with another component, but encoding or escaping of the data is either missing or done incorrectly. As a result, the intended structure of the message is not preserved.
1
cwe_id 150
name Improper Neutralization of Escape, Meta, or Control Sequences
description The product receives input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could be interpreted as escape, meta, or control character sequences when they are sent to a downstream component.
2
cwe_id 937
name OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities
description Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2013.
3
cwe_id 1035
name OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities
description Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2017.
Exploits
Severity_range_score0.1 - 9.8
Exploitability0.5
Weighted_severity8.8
Risk_score4.4
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-kukv-k3z7-7fgs