Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-5sgv-7nsz-5fa8
Summary
Aliases
0
alias CVE-2025-24813
1
alias GHSA-83qj-6fr2-vhqg
Fixed_packages
0
url pkg:apache/tomcat@9.0.99
purl pkg:apache/tomcat@9.0.99
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@9.0.99
1
url pkg:apache/tomcat@10.1.35
purl pkg:apache/tomcat@10.1.35
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@10.1.35
2
url pkg:apache/tomcat@11.0.3
purl pkg:apache/tomcat@11.0.3
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@11.0.3
3
url pkg:deb/debian/tomcat10@10.1.34-0%2Bdeb12u2?distro=trixie
purl pkg:deb/debian/tomcat10@10.1.34-0%2Bdeb12u2?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2rmy-13ym-3bgm
1
vulnerability VCID-35xg-a746-5qgc
2
vulnerability VCID-74tx-sx8a-guhs
3
vulnerability VCID-8e1c-rbkg-v7c2
4
vulnerability VCID-d1fm-vbd1-n7au
5
vulnerability VCID-gyed-x6s8-ybhr
6
vulnerability VCID-rsxs-u5cc-rkgj
7
vulnerability VCID-yrzk-1dbk-muhy
8
vulnerability VCID-zw2q-kna8-mqcm
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat10@10.1.34-0%252Bdeb12u2%3Fdistro=trixie
4
url pkg:deb/debian/tomcat10@10.1.35-1?distro=trixie
purl pkg:deb/debian/tomcat10@10.1.35-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat10@10.1.35-1%3Fdistro=trixie
5
url pkg:deb/debian/tomcat10@10.1.52-1~deb13u1?distro=trixie
purl pkg:deb/debian/tomcat10@10.1.52-1~deb13u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2rmy-13ym-3bgm
1
vulnerability VCID-35xg-a746-5qgc
2
vulnerability VCID-74tx-sx8a-guhs
3
vulnerability VCID-8e1c-rbkg-v7c2
4
vulnerability VCID-d1fm-vbd1-n7au
5
vulnerability VCID-gyed-x6s8-ybhr
6
vulnerability VCID-rsxs-u5cc-rkgj
7
vulnerability VCID-yrzk-1dbk-muhy
8
vulnerability VCID-zw2q-kna8-mqcm
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat10@10.1.52-1~deb13u1%3Fdistro=trixie
6
url pkg:deb/debian/tomcat10@10.1.52-1?distro=trixie
purl pkg:deb/debian/tomcat10@10.1.52-1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2rmy-13ym-3bgm
1
vulnerability VCID-35xg-a746-5qgc
2
vulnerability VCID-74tx-sx8a-guhs
3
vulnerability VCID-8e1c-rbkg-v7c2
4
vulnerability VCID-d1fm-vbd1-n7au
5
vulnerability VCID-gyed-x6s8-ybhr
6
vulnerability VCID-rsxs-u5cc-rkgj
7
vulnerability VCID-yrzk-1dbk-muhy
8
vulnerability VCID-zw2q-kna8-mqcm
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat10@10.1.52-1%3Fdistro=trixie
7
url pkg:deb/debian/tomcat10@10.1.52-2?distro=trixie
purl pkg:deb/debian/tomcat10@10.1.52-2?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat10@10.1.52-2%3Fdistro=trixie
8
url pkg:deb/debian/tomcat10@10.1.54-1?distro=trixie
purl pkg:deb/debian/tomcat10@10.1.54-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat10@10.1.54-1%3Fdistro=trixie
9
url pkg:deb/debian/tomcat9@9.0.43-2~deb11u10?distro=trixie
purl pkg:deb/debian/tomcat9@9.0.43-2~deb11u10?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat9@9.0.43-2~deb11u10%3Fdistro=trixie
10
url pkg:deb/debian/tomcat9@9.0.43-2~deb11u12?distro=trixie
purl pkg:deb/debian/tomcat9@9.0.43-2~deb11u12?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat9@9.0.43-2~deb11u12%3Fdistro=trixie
11
url pkg:deb/debian/tomcat9@9.0.70-2
purl pkg:deb/debian/tomcat9@9.0.70-2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-246u-a4rh-yyd4
1
vulnerability VCID-2x6a-3gh1-rkhs
2
vulnerability VCID-2zq1-na8s-mfdd
3
vulnerability VCID-4cag-c4pb-dfaz
4
vulnerability VCID-8myk-ac5b-huh8
5
vulnerability VCID-9kfe-1esf-uydm
6
vulnerability VCID-cfhw-vmcp-y3bc
7
vulnerability VCID-fpgj-82wf-ykbw
8
vulnerability VCID-gb2v-96xj-ybad
9
vulnerability VCID-gvhy-d4gm-57d3
10
vulnerability VCID-k59r-wjt3-wqe5
11
vulnerability VCID-kukv-k3z7-7fgs
12
vulnerability VCID-sr8e-w1qk-r7fz
13
vulnerability VCID-xqjr-7xfw-mbh2
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat9@9.0.70-2
12
url pkg:deb/debian/tomcat9@9.0.70-2?distro=trixie
purl pkg:deb/debian/tomcat9@9.0.70-2?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat9@9.0.70-2%3Fdistro=trixie
13
url pkg:deb/debian/tomcat9@9.0.95-1?distro=trixie
purl pkg:deb/debian/tomcat9@9.0.95-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat9@9.0.95-1%3Fdistro=trixie
14
url pkg:deb/debian/tomcat9@9.0.115-1?distro=trixie
purl pkg:deb/debian/tomcat9@9.0.115-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat9@9.0.115-1%3Fdistro=trixie
15
url pkg:maven/org.apache.tomcat/tomcat@9.0.99
purl pkg:maven/org.apache.tomcat/tomcat@9.0.99
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-8war-4v58-eub2
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@9.0.99
16
url pkg:maven/org.apache.tomcat/tomcat@10.1.35
purl pkg:maven/org.apache.tomcat/tomcat@10.1.35
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-8war-4v58-eub2
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@10.1.35
17
url pkg:maven/org.apache.tomcat/tomcat@11.0.3
purl pkg:maven/org.apache.tomcat/tomcat@11.0.3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-8war-4v58-eub2
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@11.0.3
18
url pkg:maven/org.apache.tomcat/tomcat-catalina@9.0.99
purl pkg:maven/org.apache.tomcat/tomcat-catalina@9.0.99
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat-catalina@9.0.99
19
url pkg:maven/org.apache.tomcat/tomcat-catalina@10.1.35
purl pkg:maven/org.apache.tomcat/tomcat-catalina@10.1.35
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat-catalina@10.1.35
20
url pkg:maven/org.apache.tomcat/tomcat-catalina@11.0.3
purl pkg:maven/org.apache.tomcat/tomcat-catalina@11.0.3
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat-catalina@11.0.3
21
url pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@9.0.99
purl pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@9.0.99
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-fpgj-82wf-ykbw
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@9.0.99
22
url pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@10.1.35
purl pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@10.1.35
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-fpgj-82wf-ykbw
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@10.1.35
23
url pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@11.0.3
purl pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@11.0.3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-fpgj-82wf-ykbw
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@11.0.3
Affected_packages
0
url pkg:apache/tomcat@9.0.0%2BM1
purl pkg:apache/tomcat@9.0.0%2BM1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-18q4-zark-s7a7
1
vulnerability VCID-1e6p-cppr-2bh2
2
vulnerability VCID-1hdb-24e3-f3d6
3
vulnerability VCID-1k8f-vsg1-k3d6
4
vulnerability VCID-246u-a4rh-yyd4
5
vulnerability VCID-2kku-pzer-9ufv
6
vulnerability VCID-2sbh-sy57-3uez
7
vulnerability VCID-2x6a-3gh1-rkhs
8
vulnerability VCID-39e3-jfbg-s3hk
9
vulnerability VCID-3cr9-g81m-4ugy
10
vulnerability VCID-3n4t-bvb1-5qer
11
vulnerability VCID-3r3s-q21j-c3au
12
vulnerability VCID-43j2-w5xt-43g9
13
vulnerability VCID-46bv-6b7y-3bca
14
vulnerability VCID-4aaa-errb-2qdw
15
vulnerability VCID-4cag-c4pb-dfaz
16
vulnerability VCID-4tf3-7f5b-2ffu
17
vulnerability VCID-5sgv-7nsz-5fa8
18
vulnerability VCID-66kh-s6cr-tqf9
19
vulnerability VCID-68fk-4g86-ekbp
20
vulnerability VCID-885s-t4dx-dybv
21
vulnerability VCID-95d1-arxd-hkd1
22
vulnerability VCID-9exq-fhv6-bbea
23
vulnerability VCID-9kfe-1esf-uydm
24
vulnerability VCID-a8gk-n8bq-87cp
25
vulnerability VCID-aeeu-fpay-wufz
26
vulnerability VCID-arkn-bca7-hqam
27
vulnerability VCID-ayrd-8ntf-hkh3
28
vulnerability VCID-dzpn-w4b3-vbcm
29
vulnerability VCID-eb37-mkxf-7fgw
30
vulnerability VCID-enaj-f97c-jbh7
31
vulnerability VCID-f77q-v5xp-e7dy
32
vulnerability VCID-fpgj-82wf-ykbw
33
vulnerability VCID-fyfz-6tr5-2fc7
34
vulnerability VCID-g7bk-891a-uufy
35
vulnerability VCID-gb2v-96xj-ybad
36
vulnerability VCID-gvhy-d4gm-57d3
37
vulnerability VCID-gyed-x6s8-ybhr
38
vulnerability VCID-hmbm-5ysw-77bu
39
vulnerability VCID-hves-r5bg-yfes
40
vulnerability VCID-k59r-wjt3-wqe5
41
vulnerability VCID-kagr-74d9-kyhx
42
vulnerability VCID-kukv-k3z7-7fgs
43
vulnerability VCID-kwab-3s4q-eka4
44
vulnerability VCID-kyb8-rvyw-s7b1
45
vulnerability VCID-m1zd-uytj-3bej
46
vulnerability VCID-m2zn-ja8d-7kg8
47
vulnerability VCID-maw6-4qs5-ykae
48
vulnerability VCID-n3ab-nk7c-hqc9
49
vulnerability VCID-n3zn-tuck-gkfe
50
vulnerability VCID-nvbx-q971-skgm
51
vulnerability VCID-pqxe-tfhk-47b7
52
vulnerability VCID-ruuh-g3fa-m7d8
53
vulnerability VCID-sr8e-w1qk-r7fz
54
vulnerability VCID-t2ne-75ck-eqcr
55
vulnerability VCID-tfrs-d458-tfaq
56
vulnerability VCID-u3ck-cvgt-fuhd
57
vulnerability VCID-v8ku-sjc8-wfga
58
vulnerability VCID-vdnj-sqmx-e3ep
59
vulnerability VCID-vhjj-dnft-kkf4
60
vulnerability VCID-wbaq-j85q-y3c6
61
vulnerability VCID-wgsc-dnn1-ukeq
62
vulnerability VCID-xf8r-kqxb-7qdy
63
vulnerability VCID-y9ne-rw7e-vugf
64
vulnerability VCID-yfx4-4gsc-2kgh
65
vulnerability VCID-yxpq-rrry-j3h8
resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@9.0.0%252BM1
1
url pkg:apache/tomcat@9.0.98
purl pkg:apache/tomcat@9.0.98
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-5sgv-7nsz-5fa8
resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@9.0.98
2
url pkg:apache/tomcat@10.1.0-M1
purl pkg:apache/tomcat@10.1.0-M1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1e6p-cppr-2bh2
1
vulnerability VCID-246u-a4rh-yyd4
2
vulnerability VCID-2kku-pzer-9ufv
3
vulnerability VCID-2rmy-13ym-3bgm
4
vulnerability VCID-2x6a-3gh1-rkhs
5
vulnerability VCID-3vdn-j7sj-dfdn
6
vulnerability VCID-43j2-w5xt-43g9
7
vulnerability VCID-4cag-c4pb-dfaz
8
vulnerability VCID-56jv-htmt-rkew
9
vulnerability VCID-5781-s1ny-q7ey
10
vulnerability VCID-5sgv-7nsz-5fa8
11
vulnerability VCID-6pm1-byhk-eqfg
12
vulnerability VCID-8mns-kw6c-a7dk
13
vulnerability VCID-8myk-ac5b-huh8
14
vulnerability VCID-b3bb-9ajg-sfc9
15
vulnerability VCID-cfhw-vmcp-y3bc
16
vulnerability VCID-d1fm-vbd1-n7au
17
vulnerability VCID-fpgj-82wf-ykbw
18
vulnerability VCID-gb2v-96xj-ybad
19
vulnerability VCID-gvhy-d4gm-57d3
20
vulnerability VCID-gyed-x6s8-ybhr
21
vulnerability VCID-j6cj-ftyd-3ffa
22
vulnerability VCID-j8tk-s915-pbfy
23
vulnerability VCID-k59r-wjt3-wqe5
24
vulnerability VCID-kukv-k3z7-7fgs
25
vulnerability VCID-maw6-4qs5-ykae
26
vulnerability VCID-n9yk-e49f-n7e7
27
vulnerability VCID-nmq2-8ysj-4fbc
28
vulnerability VCID-p6pa-f1fg-hbhg
29
vulnerability VCID-p8q2-pt96-5ye8
30
vulnerability VCID-qkx6-32cj-jfbp
31
vulnerability VCID-rzj2-4kcj-43dq
32
vulnerability VCID-sr8e-w1qk-r7fz
33
vulnerability VCID-stds-vw5z-auhp
34
vulnerability VCID-v7tp-1t4h-zqeg
35
vulnerability VCID-v8ku-sjc8-wfga
36
vulnerability VCID-vsdf-4tfj-uybe
37
vulnerability VCID-wptr-hkjx-s7c3
38
vulnerability VCID-xqjr-7xfw-mbh2
39
vulnerability VCID-y9ne-rw7e-vugf
40
vulnerability VCID-zw2q-kna8-mqcm
resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@10.1.0-M1
3
url pkg:apache/tomcat@10.1.34
purl pkg:apache/tomcat@10.1.34
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-5sgv-7nsz-5fa8
resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@10.1.34
4
url pkg:apache/tomcat@11.0.0-M1
purl pkg:apache/tomcat@11.0.0-M1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1e6p-cppr-2bh2
1
vulnerability VCID-246u-a4rh-yyd4
2
vulnerability VCID-2kku-pzer-9ufv
3
vulnerability VCID-2rmy-13ym-3bgm
4
vulnerability VCID-2x6a-3gh1-rkhs
5
vulnerability VCID-3vdn-j7sj-dfdn
6
vulnerability VCID-43j2-w5xt-43g9
7
vulnerability VCID-4cag-c4pb-dfaz
8
vulnerability VCID-5781-s1ny-q7ey
9
vulnerability VCID-5sgv-7nsz-5fa8
10
vulnerability VCID-74tx-sx8a-guhs
11
vulnerability VCID-8mns-kw6c-a7dk
12
vulnerability VCID-8myk-ac5b-huh8
13
vulnerability VCID-8war-4v58-eub2
14
vulnerability VCID-b3bb-9ajg-sfc9
15
vulnerability VCID-bks8-nvm9-vbgy
16
vulnerability VCID-cfhw-vmcp-y3bc
17
vulnerability VCID-d1fm-vbd1-n7au
18
vulnerability VCID-fpgj-82wf-ykbw
19
vulnerability VCID-gb2v-96xj-ybad
20
vulnerability VCID-gvhy-d4gm-57d3
21
vulnerability VCID-gyed-x6s8-ybhr
22
vulnerability VCID-j6cj-ftyd-3ffa
23
vulnerability VCID-k59r-wjt3-wqe5
24
vulnerability VCID-kukv-k3z7-7fgs
25
vulnerability VCID-maw6-4qs5-ykae
26
vulnerability VCID-n9yk-e49f-n7e7
27
vulnerability VCID-p6pa-f1fg-hbhg
28
vulnerability VCID-rzj2-4kcj-43dq
29
vulnerability VCID-sr8e-w1qk-r7fz
30
vulnerability VCID-v7tp-1t4h-zqeg
31
vulnerability VCID-v8ku-sjc8-wfga
32
vulnerability VCID-vsdf-4tfj-uybe
33
vulnerability VCID-xqjr-7xfw-mbh2
34
vulnerability VCID-y9ne-rw7e-vugf
35
vulnerability VCID-yrzk-1dbk-muhy
36
vulnerability VCID-zw2q-kna8-mqcm
resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@11.0.0-M1
5
url pkg:apache/tomcat@11.0.2
purl pkg:apache/tomcat@11.0.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-5sgv-7nsz-5fa8
resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@11.0.2
6
url pkg:deb/debian/tomcat9@9.0.31-1~deb10u6
purl pkg:deb/debian/tomcat9@9.0.31-1~deb10u6
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1e6p-cppr-2bh2
1
vulnerability VCID-246u-a4rh-yyd4
2
vulnerability VCID-2kku-pzer-9ufv
3
vulnerability VCID-2rmy-13ym-3bgm
4
vulnerability VCID-2x6a-3gh1-rkhs
5
vulnerability VCID-2zq1-na8s-mfdd
6
vulnerability VCID-35xg-a746-5qgc
7
vulnerability VCID-3vdn-j7sj-dfdn
8
vulnerability VCID-43j2-w5xt-43g9
9
vulnerability VCID-46bv-6b7y-3bca
10
vulnerability VCID-4cag-c4pb-dfaz
11
vulnerability VCID-56jv-htmt-rkew
12
vulnerability VCID-5781-s1ny-q7ey
13
vulnerability VCID-5sgv-7nsz-5fa8
14
vulnerability VCID-66kh-s6cr-tqf9
15
vulnerability VCID-6pm1-byhk-eqfg
16
vulnerability VCID-74tx-sx8a-guhs
17
vulnerability VCID-885s-t4dx-dybv
18
vulnerability VCID-8e1c-rbkg-v7c2
19
vulnerability VCID-8mns-kw6c-a7dk
20
vulnerability VCID-8myk-ac5b-huh8
21
vulnerability VCID-8war-4v58-eub2
22
vulnerability VCID-9kfe-1esf-uydm
23
vulnerability VCID-a8gk-n8bq-87cp
24
vulnerability VCID-b3bb-9ajg-sfc9
25
vulnerability VCID-cfhw-vmcp-y3bc
26
vulnerability VCID-d1fm-vbd1-n7au
27
vulnerability VCID-dy6m-zt6r-9ubd
28
vulnerability VCID-dzan-r49k-kqab
29
vulnerability VCID-dzpn-w4b3-vbcm
30
vulnerability VCID-eb37-mkxf-7fgw
31
vulnerability VCID-fpgj-82wf-ykbw
32
vulnerability VCID-gb2v-96xj-ybad
33
vulnerability VCID-gvhy-d4gm-57d3
34
vulnerability VCID-gyed-x6s8-ybhr
35
vulnerability VCID-j6cj-ftyd-3ffa
36
vulnerability VCID-j8tk-s915-pbfy
37
vulnerability VCID-k59r-wjt3-wqe5
38
vulnerability VCID-k9cg-ehdw-dbh6
39
vulnerability VCID-kukv-k3z7-7fgs
40
vulnerability VCID-kwab-3s4q-eka4
41
vulnerability VCID-maw6-4qs5-ykae
42
vulnerability VCID-n3ab-nk7c-hqc9
43
vulnerability VCID-n9yk-e49f-n7e7
44
vulnerability VCID-nmq2-8ysj-4fbc
45
vulnerability VCID-nvbx-q971-skgm
46
vulnerability VCID-p6pa-f1fg-hbhg
47
vulnerability VCID-p8q2-pt96-5ye8
48
vulnerability VCID-qkx6-32cj-jfbp
49
vulnerability VCID-ran8-rnqn-tkbc
50
vulnerability VCID-rq42-qvsy-hue6
51
vulnerability VCID-rsxs-u5cc-rkgj
52
vulnerability VCID-ruuh-g3fa-m7d8
53
vulnerability VCID-rzj2-4kcj-43dq
54
vulnerability VCID-sr8e-w1qk-r7fz
55
vulnerability VCID-stds-vw5z-auhp
56
vulnerability VCID-t2ne-75ck-eqcr
57
vulnerability VCID-v7tp-1t4h-zqeg
58
vulnerability VCID-v8ku-sjc8-wfga
59
vulnerability VCID-vsdf-4tfj-uybe
60
vulnerability VCID-wgsc-dnn1-ukeq
61
vulnerability VCID-wptr-hkjx-s7c3
62
vulnerability VCID-xqjr-7xfw-mbh2
63
vulnerability VCID-xt59-cnmj-2bf8
64
vulnerability VCID-y9ne-rw7e-vugf
65
vulnerability VCID-yfx4-4gsc-2kgh
66
vulnerability VCID-yrzk-1dbk-muhy
67
vulnerability VCID-z2pq-cv2w-nfdk
68
vulnerability VCID-zw2q-kna8-mqcm
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat9@9.0.31-1~deb10u6
7
url pkg:deb/debian/tomcat9@9.0.43-2~deb11u10
purl pkg:deb/debian/tomcat9@9.0.43-2~deb11u10
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1e6p-cppr-2bh2
1
vulnerability VCID-246u-a4rh-yyd4
2
vulnerability VCID-2kku-pzer-9ufv
3
vulnerability VCID-2rmy-13ym-3bgm
4
vulnerability VCID-2x6a-3gh1-rkhs
5
vulnerability VCID-2zq1-na8s-mfdd
6
vulnerability VCID-35xg-a746-5qgc
7
vulnerability VCID-3vdn-j7sj-dfdn
8
vulnerability VCID-43j2-w5xt-43g9
9
vulnerability VCID-4cag-c4pb-dfaz
10
vulnerability VCID-5sgv-7nsz-5fa8
11
vulnerability VCID-74tx-sx8a-guhs
12
vulnerability VCID-8e1c-rbkg-v7c2
13
vulnerability VCID-8mns-kw6c-a7dk
14
vulnerability VCID-8myk-ac5b-huh8
15
vulnerability VCID-8war-4v58-eub2
16
vulnerability VCID-9kfe-1esf-uydm
17
vulnerability VCID-cfhw-vmcp-y3bc
18
vulnerability VCID-d1fm-vbd1-n7au
19
vulnerability VCID-fpgj-82wf-ykbw
20
vulnerability VCID-gb2v-96xj-ybad
21
vulnerability VCID-gvhy-d4gm-57d3
22
vulnerability VCID-gyed-x6s8-ybhr
23
vulnerability VCID-k59r-wjt3-wqe5
24
vulnerability VCID-k9cg-ehdw-dbh6
25
vulnerability VCID-kukv-k3z7-7fgs
26
vulnerability VCID-maw6-4qs5-ykae
27
vulnerability VCID-p8q2-pt96-5ye8
28
vulnerability VCID-rsxs-u5cc-rkgj
29
vulnerability VCID-sr8e-w1qk-r7fz
30
vulnerability VCID-v8ku-sjc8-wfga
31
vulnerability VCID-xqjr-7xfw-mbh2
32
vulnerability VCID-y9ne-rw7e-vugf
33
vulnerability VCID-yrzk-1dbk-muhy
34
vulnerability VCID-zw2q-kna8-mqcm
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat9@9.0.43-2~deb11u10
8
url pkg:maven/org.apache.tomcat/tomcat@9.0.0.M1
purl pkg:maven/org.apache.tomcat/tomcat@9.0.0.M1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-18q4-zark-s7a7
1
vulnerability VCID-1e6p-cppr-2bh2
2
vulnerability VCID-1hdb-24e3-f3d6
3
vulnerability VCID-1k8f-vsg1-k3d6
4
vulnerability VCID-246u-a4rh-yyd4
5
vulnerability VCID-2kku-pzer-9ufv
6
vulnerability VCID-2sbh-sy57-3uez
7
vulnerability VCID-2x6a-3gh1-rkhs
8
vulnerability VCID-39e3-jfbg-s3hk
9
vulnerability VCID-3cr9-g81m-4ugy
10
vulnerability VCID-3n4t-bvb1-5qer
11
vulnerability VCID-3r3s-q21j-c3au
12
vulnerability VCID-43j2-w5xt-43g9
13
vulnerability VCID-46bv-6b7y-3bca
14
vulnerability VCID-4aaa-errb-2qdw
15
vulnerability VCID-4cag-c4pb-dfaz
16
vulnerability VCID-4tf3-7f5b-2ffu
17
vulnerability VCID-5sgv-7nsz-5fa8
18
vulnerability VCID-66kh-s6cr-tqf9
19
vulnerability VCID-68fk-4g86-ekbp
20
vulnerability VCID-885s-t4dx-dybv
21
vulnerability VCID-95d1-arxd-hkd1
22
vulnerability VCID-9exq-fhv6-bbea
23
vulnerability VCID-9kfe-1esf-uydm
24
vulnerability VCID-a8gk-n8bq-87cp
25
vulnerability VCID-aeeu-fpay-wufz
26
vulnerability VCID-arkn-bca7-hqam
27
vulnerability VCID-ayrd-8ntf-hkh3
28
vulnerability VCID-dzpn-w4b3-vbcm
29
vulnerability VCID-eb37-mkxf-7fgw
30
vulnerability VCID-enaj-f97c-jbh7
31
vulnerability VCID-f77q-v5xp-e7dy
32
vulnerability VCID-fpgj-82wf-ykbw
33
vulnerability VCID-fyfz-6tr5-2fc7
34
vulnerability VCID-g7bk-891a-uufy
35
vulnerability VCID-gb2v-96xj-ybad
36
vulnerability VCID-gvhy-d4gm-57d3
37
vulnerability VCID-gyed-x6s8-ybhr
38
vulnerability VCID-hmbm-5ysw-77bu
39
vulnerability VCID-hves-r5bg-yfes
40
vulnerability VCID-k59r-wjt3-wqe5
41
vulnerability VCID-k9cg-ehdw-dbh6
42
vulnerability VCID-kagr-74d9-kyhx
43
vulnerability VCID-kukv-k3z7-7fgs
44
vulnerability VCID-kwab-3s4q-eka4
45
vulnerability VCID-kyb8-rvyw-s7b1
46
vulnerability VCID-m1zd-uytj-3bej
47
vulnerability VCID-m2zn-ja8d-7kg8
48
vulnerability VCID-maw6-4qs5-ykae
49
vulnerability VCID-n3ab-nk7c-hqc9
50
vulnerability VCID-n3zn-tuck-gkfe
51
vulnerability VCID-nvbx-q971-skgm
52
vulnerability VCID-pqxe-tfhk-47b7
53
vulnerability VCID-ruuh-g3fa-m7d8
54
vulnerability VCID-sr8e-w1qk-r7fz
55
vulnerability VCID-t2ne-75ck-eqcr
56
vulnerability VCID-tfrs-d458-tfaq
57
vulnerability VCID-u3ck-cvgt-fuhd
58
vulnerability VCID-v8ku-sjc8-wfga
59
vulnerability VCID-vdnj-sqmx-e3ep
60
vulnerability VCID-vhjj-dnft-kkf4
61
vulnerability VCID-wbaq-j85q-y3c6
62
vulnerability VCID-wgsc-dnn1-ukeq
63
vulnerability VCID-xf8r-kqxb-7qdy
64
vulnerability VCID-y9ne-rw7e-vugf
65
vulnerability VCID-yfx4-4gsc-2kgh
66
vulnerability VCID-yxpq-rrry-j3h8
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@9.0.0.M1
9
url pkg:maven/org.apache.tomcat/tomcat@9.0.98
purl pkg:maven/org.apache.tomcat/tomcat@9.0.98
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-5sgv-7nsz-5fa8
1
vulnerability VCID-8war-4v58-eub2
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@9.0.98
10
url pkg:maven/org.apache.tomcat/tomcat@10.1.0-M1
purl pkg:maven/org.apache.tomcat/tomcat@10.1.0-M1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1e6p-cppr-2bh2
1
vulnerability VCID-246u-a4rh-yyd4
2
vulnerability VCID-2kku-pzer-9ufv
3
vulnerability VCID-2rmy-13ym-3bgm
4
vulnerability VCID-2x6a-3gh1-rkhs
5
vulnerability VCID-3vdn-j7sj-dfdn
6
vulnerability VCID-43j2-w5xt-43g9
7
vulnerability VCID-4cag-c4pb-dfaz
8
vulnerability VCID-56jv-htmt-rkew
9
vulnerability VCID-5781-s1ny-q7ey
10
vulnerability VCID-5sgv-7nsz-5fa8
11
vulnerability VCID-6pm1-byhk-eqfg
12
vulnerability VCID-8mns-kw6c-a7dk
13
vulnerability VCID-8myk-ac5b-huh8
14
vulnerability VCID-b3bb-9ajg-sfc9
15
vulnerability VCID-cfhw-vmcp-y3bc
16
vulnerability VCID-d1fm-vbd1-n7au
17
vulnerability VCID-fpgj-82wf-ykbw
18
vulnerability VCID-gb2v-96xj-ybad
19
vulnerability VCID-gvhy-d4gm-57d3
20
vulnerability VCID-gyed-x6s8-ybhr
21
vulnerability VCID-j6cj-ftyd-3ffa
22
vulnerability VCID-j8tk-s915-pbfy
23
vulnerability VCID-k59r-wjt3-wqe5
24
vulnerability VCID-kukv-k3z7-7fgs
25
vulnerability VCID-maw6-4qs5-ykae
26
vulnerability VCID-n9yk-e49f-n7e7
27
vulnerability VCID-nmq2-8ysj-4fbc
28
vulnerability VCID-p6pa-f1fg-hbhg
29
vulnerability VCID-p8q2-pt96-5ye8
30
vulnerability VCID-qkx6-32cj-jfbp
31
vulnerability VCID-rzj2-4kcj-43dq
32
vulnerability VCID-sr8e-w1qk-r7fz
33
vulnerability VCID-stds-vw5z-auhp
34
vulnerability VCID-v7tp-1t4h-zqeg
35
vulnerability VCID-v8ku-sjc8-wfga
36
vulnerability VCID-vsdf-4tfj-uybe
37
vulnerability VCID-wptr-hkjx-s7c3
38
vulnerability VCID-xqjr-7xfw-mbh2
39
vulnerability VCID-y9ne-rw7e-vugf
40
vulnerability VCID-zw2q-kna8-mqcm
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@10.1.0-M1
11
url pkg:maven/org.apache.tomcat/tomcat@10.1.34
purl pkg:maven/org.apache.tomcat/tomcat@10.1.34
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-5sgv-7nsz-5fa8
1
vulnerability VCID-8war-4v58-eub2
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@10.1.34
12
url pkg:maven/org.apache.tomcat/tomcat@11.0.0-M1
purl pkg:maven/org.apache.tomcat/tomcat@11.0.0-M1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1e6p-cppr-2bh2
1
vulnerability VCID-246u-a4rh-yyd4
2
vulnerability VCID-2kku-pzer-9ufv
3
vulnerability VCID-2rmy-13ym-3bgm
4
vulnerability VCID-2x6a-3gh1-rkhs
5
vulnerability VCID-3vdn-j7sj-dfdn
6
vulnerability VCID-43j2-w5xt-43g9
7
vulnerability VCID-4cag-c4pb-dfaz
8
vulnerability VCID-5781-s1ny-q7ey
9
vulnerability VCID-5sgv-7nsz-5fa8
10
vulnerability VCID-74tx-sx8a-guhs
11
vulnerability VCID-8mns-kw6c-a7dk
12
vulnerability VCID-8myk-ac5b-huh8
13
vulnerability VCID-8war-4v58-eub2
14
vulnerability VCID-b3bb-9ajg-sfc9
15
vulnerability VCID-bks8-nvm9-vbgy
16
vulnerability VCID-cfhw-vmcp-y3bc
17
vulnerability VCID-d1fm-vbd1-n7au
18
vulnerability VCID-fpgj-82wf-ykbw
19
vulnerability VCID-gb2v-96xj-ybad
20
vulnerability VCID-gvhy-d4gm-57d3
21
vulnerability VCID-gyed-x6s8-ybhr
22
vulnerability VCID-j6cj-ftyd-3ffa
23
vulnerability VCID-k59r-wjt3-wqe5
24
vulnerability VCID-kukv-k3z7-7fgs
25
vulnerability VCID-maw6-4qs5-ykae
26
vulnerability VCID-n9yk-e49f-n7e7
27
vulnerability VCID-p6pa-f1fg-hbhg
28
vulnerability VCID-rzj2-4kcj-43dq
29
vulnerability VCID-sr8e-w1qk-r7fz
30
vulnerability VCID-v7tp-1t4h-zqeg
31
vulnerability VCID-v8ku-sjc8-wfga
32
vulnerability VCID-vsdf-4tfj-uybe
33
vulnerability VCID-xqjr-7xfw-mbh2
34
vulnerability VCID-y9ne-rw7e-vugf
35
vulnerability VCID-yrzk-1dbk-muhy
36
vulnerability VCID-zw2q-kna8-mqcm
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@11.0.0-M1
13
url pkg:maven/org.apache.tomcat/tomcat@11.0.2
purl pkg:maven/org.apache.tomcat/tomcat@11.0.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-5sgv-7nsz-5fa8
1
vulnerability VCID-8war-4v58-eub2
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@11.0.2
14
url pkg:maven/org.apache.tomcat/tomcat-catalina@8.5.0
purl pkg:maven/org.apache.tomcat/tomcat-catalina@8.5.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-246u-a4rh-yyd4
1
vulnerability VCID-3cr9-g81m-4ugy
2
vulnerability VCID-4cag-c4pb-dfaz
3
vulnerability VCID-5sgv-7nsz-5fa8
4
vulnerability VCID-66kh-s6cr-tqf9
5
vulnerability VCID-8mns-kw6c-a7dk
6
vulnerability VCID-95d1-arxd-hkd1
7
vulnerability VCID-a8gk-n8bq-87cp
8
vulnerability VCID-ayrd-8ntf-hkh3
9
vulnerability VCID-b3bb-9ajg-sfc9
10
vulnerability VCID-c12c-fsy1-17ee
11
vulnerability VCID-enaj-f97c-jbh7
12
vulnerability VCID-gb2v-96xj-ybad
13
vulnerability VCID-gvhy-d4gm-57d3
14
vulnerability VCID-hmbm-5ysw-77bu
15
vulnerability VCID-hves-r5bg-yfes
16
vulnerability VCID-j6cj-ftyd-3ffa
17
vulnerability VCID-j8tk-s915-pbfy
18
vulnerability VCID-k59r-wjt3-wqe5
19
vulnerability VCID-kukv-k3z7-7fgs
20
vulnerability VCID-pqxe-tfhk-47b7
21
vulnerability VCID-sr8e-w1qk-r7fz
22
vulnerability VCID-v7tp-1t4h-zqeg
23
vulnerability VCID-v8ku-sjc8-wfga
24
vulnerability VCID-vdnj-sqmx-e3ep
25
vulnerability VCID-xf8r-kqxb-7qdy
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat-catalina@8.5.0
15
url pkg:maven/org.apache.tomcat/tomcat-catalina@8.5.100
purl pkg:maven/org.apache.tomcat/tomcat-catalina@8.5.100
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-246u-a4rh-yyd4
1
vulnerability VCID-4cag-c4pb-dfaz
2
vulnerability VCID-5sgv-7nsz-5fa8
3
vulnerability VCID-8mns-kw6c-a7dk
4
vulnerability VCID-cfhw-vmcp-y3bc
5
vulnerability VCID-gb2v-96xj-ybad
6
vulnerability VCID-gvhy-d4gm-57d3
7
vulnerability VCID-k59r-wjt3-wqe5
8
vulnerability VCID-kukv-k3z7-7fgs
9
vulnerability VCID-sr8e-w1qk-r7fz
10
vulnerability VCID-v8ku-sjc8-wfga
11
vulnerability VCID-xqjr-7xfw-mbh2
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat-catalina@8.5.100
16
url pkg:maven/org.apache.tomcat/tomcat-catalina@9.0.0.M1
purl pkg:maven/org.apache.tomcat/tomcat-catalina@9.0.0.M1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-246u-a4rh-yyd4
1
vulnerability VCID-2kku-pzer-9ufv
2
vulnerability VCID-3cr9-g81m-4ugy
3
vulnerability VCID-4cag-c4pb-dfaz
4
vulnerability VCID-5sgv-7nsz-5fa8
5
vulnerability VCID-8mns-kw6c-a7dk
6
vulnerability VCID-95d1-arxd-hkd1
7
vulnerability VCID-enaj-f97c-jbh7
8
vulnerability VCID-gb2v-96xj-ybad
9
vulnerability VCID-gvhy-d4gm-57d3
10
vulnerability VCID-hmbm-5ysw-77bu
11
vulnerability VCID-hves-r5bg-yfes
12
vulnerability VCID-k59r-wjt3-wqe5
13
vulnerability VCID-pqxe-tfhk-47b7
14
vulnerability VCID-sr8e-w1qk-r7fz
15
vulnerability VCID-v8ku-sjc8-wfga
16
vulnerability VCID-vdnj-sqmx-e3ep
17
vulnerability VCID-xf8r-kqxb-7qdy
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat-catalina@9.0.0.M1
17
url pkg:maven/org.apache.tomcat/tomcat-catalina@10.1.0-M1
purl pkg:maven/org.apache.tomcat/tomcat-catalina@10.1.0-M1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-246u-a4rh-yyd4
1
vulnerability VCID-2kku-pzer-9ufv
2
vulnerability VCID-2rmy-13ym-3bgm
3
vulnerability VCID-43j2-w5xt-43g9
4
vulnerability VCID-4cag-c4pb-dfaz
5
vulnerability VCID-5sgv-7nsz-5fa8
6
vulnerability VCID-8mns-kw6c-a7dk
7
vulnerability VCID-b3bb-9ajg-sfc9
8
vulnerability VCID-cfhw-vmcp-y3bc
9
vulnerability VCID-d1fm-vbd1-n7au
10
vulnerability VCID-gb2v-96xj-ybad
11
vulnerability VCID-gvhy-d4gm-57d3
12
vulnerability VCID-gyed-x6s8-ybhr
13
vulnerability VCID-k59r-wjt3-wqe5
14
vulnerability VCID-maw6-4qs5-ykae
15
vulnerability VCID-sr8e-w1qk-r7fz
16
vulnerability VCID-v7tp-1t4h-zqeg
17
vulnerability VCID-v8ku-sjc8-wfga
18
vulnerability VCID-xqjr-7xfw-mbh2
19
vulnerability VCID-y9ne-rw7e-vugf
20
vulnerability VCID-zw2q-kna8-mqcm
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat-catalina@10.1.0-M1
18
url pkg:maven/org.apache.tomcat/tomcat-catalina@11.0.0-M1
purl pkg:maven/org.apache.tomcat/tomcat-catalina@11.0.0-M1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-246u-a4rh-yyd4
1
vulnerability VCID-2kku-pzer-9ufv
2
vulnerability VCID-2rmy-13ym-3bgm
3
vulnerability VCID-43j2-w5xt-43g9
4
vulnerability VCID-4cag-c4pb-dfaz
5
vulnerability VCID-5sgv-7nsz-5fa8
6
vulnerability VCID-74tx-sx8a-guhs
7
vulnerability VCID-8mns-kw6c-a7dk
8
vulnerability VCID-b3bb-9ajg-sfc9
9
vulnerability VCID-bks8-nvm9-vbgy
10
vulnerability VCID-cfhw-vmcp-y3bc
11
vulnerability VCID-d1fm-vbd1-n7au
12
vulnerability VCID-gb2v-96xj-ybad
13
vulnerability VCID-gvhy-d4gm-57d3
14
vulnerability VCID-gyed-x6s8-ybhr
15
vulnerability VCID-k59r-wjt3-wqe5
16
vulnerability VCID-maw6-4qs5-ykae
17
vulnerability VCID-sr8e-w1qk-r7fz
18
vulnerability VCID-v7tp-1t4h-zqeg
19
vulnerability VCID-v8ku-sjc8-wfga
20
vulnerability VCID-xqjr-7xfw-mbh2
21
vulnerability VCID-y9ne-rw7e-vugf
22
vulnerability VCID-yrzk-1dbk-muhy
23
vulnerability VCID-zw2q-kna8-mqcm
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat-catalina@11.0.0-M1
19
url pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@8.5.0
purl pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@8.5.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-18q4-zark-s7a7
1
vulnerability VCID-1hdb-24e3-f3d6
2
vulnerability VCID-246u-a4rh-yyd4
3
vulnerability VCID-2sbh-sy57-3uez
4
vulnerability VCID-2zq1-na8s-mfdd
5
vulnerability VCID-39e3-jfbg-s3hk
6
vulnerability VCID-46bv-6b7y-3bca
7
vulnerability VCID-4cag-c4pb-dfaz
8
vulnerability VCID-4tf3-7f5b-2ffu
9
vulnerability VCID-5781-s1ny-q7ey
10
vulnerability VCID-5etb-njwf-rfdu
11
vulnerability VCID-5sgv-7nsz-5fa8
12
vulnerability VCID-66kh-s6cr-tqf9
13
vulnerability VCID-8myk-ac5b-huh8
14
vulnerability VCID-a8gk-n8bq-87cp
15
vulnerability VCID-aeeu-fpay-wufz
16
vulnerability VCID-ayrd-8ntf-hkh3
17
vulnerability VCID-b3bb-9ajg-sfc9
18
vulnerability VCID-dy6m-zt6r-9ubd
19
vulnerability VCID-dzpn-w4b3-vbcm
20
vulnerability VCID-f77q-v5xp-e7dy
21
vulnerability VCID-fpgj-82wf-ykbw
22
vulnerability VCID-fyfz-6tr5-2fc7
23
vulnerability VCID-g7bk-891a-uufy
24
vulnerability VCID-gb2v-96xj-ybad
25
vulnerability VCID-hmbm-5ysw-77bu
26
vulnerability VCID-hves-r5bg-yfes
27
vulnerability VCID-j6cj-ftyd-3ffa
28
vulnerability VCID-j8tk-s915-pbfy
29
vulnerability VCID-k59r-wjt3-wqe5
30
vulnerability VCID-kukv-k3z7-7fgs
31
vulnerability VCID-kwab-3s4q-eka4
32
vulnerability VCID-m2zn-ja8d-7kg8
33
vulnerability VCID-n3ab-nk7c-hqc9
34
vulnerability VCID-n3zn-tuck-gkfe
35
vulnerability VCID-n9yk-e49f-n7e7
36
vulnerability VCID-nmq2-8ysj-4fbc
37
vulnerability VCID-ruuh-g3fa-m7d8
38
vulnerability VCID-rzj2-4kcj-43dq
39
vulnerability VCID-sr8e-w1qk-r7fz
40
vulnerability VCID-t2ne-75ck-eqcr
41
vulnerability VCID-u3ck-cvgt-fuhd
42
vulnerability VCID-v7tp-1t4h-zqeg
43
vulnerability VCID-v8ku-sjc8-wfga
44
vulnerability VCID-vdnj-sqmx-e3ep
45
vulnerability VCID-vsdf-4tfj-uybe
46
vulnerability VCID-yfx4-4gsc-2kgh
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@8.5.0
20
url pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@8.5.100
purl pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@8.5.100
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-246u-a4rh-yyd4
1
vulnerability VCID-2zq1-na8s-mfdd
2
vulnerability VCID-4cag-c4pb-dfaz
3
vulnerability VCID-5sgv-7nsz-5fa8
4
vulnerability VCID-8myk-ac5b-huh8
5
vulnerability VCID-cfhw-vmcp-y3bc
6
vulnerability VCID-fpgj-82wf-ykbw
7
vulnerability VCID-gb2v-96xj-ybad
8
vulnerability VCID-k59r-wjt3-wqe5
9
vulnerability VCID-kukv-k3z7-7fgs
10
vulnerability VCID-sr8e-w1qk-r7fz
11
vulnerability VCID-v8ku-sjc8-wfga
12
vulnerability VCID-xqjr-7xfw-mbh2
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@8.5.100
21
url pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@9.0.0.M1
purl pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@9.0.0.M1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1e6p-cppr-2bh2
1
vulnerability VCID-1hdb-24e3-f3d6
2
vulnerability VCID-246u-a4rh-yyd4
3
vulnerability VCID-39e3-jfbg-s3hk
4
vulnerability VCID-43j2-w5xt-43g9
5
vulnerability VCID-4aaa-errb-2qdw
6
vulnerability VCID-4cag-c4pb-dfaz
7
vulnerability VCID-5etb-njwf-rfdu
8
vulnerability VCID-5sgv-7nsz-5fa8
9
vulnerability VCID-fpgj-82wf-ykbw
10
vulnerability VCID-gb2v-96xj-ybad
11
vulnerability VCID-hmbm-5ysw-77bu
12
vulnerability VCID-j6cj-ftyd-3ffa
13
vulnerability VCID-k59r-wjt3-wqe5
14
vulnerability VCID-n3zn-tuck-gkfe
15
vulnerability VCID-sr8e-w1qk-r7fz
16
vulnerability VCID-v7tp-1t4h-zqeg
17
vulnerability VCID-v8ku-sjc8-wfga
18
vulnerability VCID-vdnj-sqmx-e3ep
19
vulnerability VCID-vsdf-4tfj-uybe
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@9.0.0.M1
22
url pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@10.1.0-M1
purl pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@10.1.0-M1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1e6p-cppr-2bh2
1
vulnerability VCID-246u-a4rh-yyd4
2
vulnerability VCID-2rmy-13ym-3bgm
3
vulnerability VCID-43j2-w5xt-43g9
4
vulnerability VCID-4cag-c4pb-dfaz
5
vulnerability VCID-56jv-htmt-rkew
6
vulnerability VCID-5sgv-7nsz-5fa8
7
vulnerability VCID-8myk-ac5b-huh8
8
vulnerability VCID-b3bb-9ajg-sfc9
9
vulnerability VCID-cfhw-vmcp-y3bc
10
vulnerability VCID-d1fm-vbd1-n7au
11
vulnerability VCID-fpgj-82wf-ykbw
12
vulnerability VCID-gb2v-96xj-ybad
13
vulnerability VCID-gyed-x6s8-ybhr
14
vulnerability VCID-j6cj-ftyd-3ffa
15
vulnerability VCID-k59r-wjt3-wqe5
16
vulnerability VCID-maw6-4qs5-ykae
17
vulnerability VCID-n9yk-e49f-n7e7
18
vulnerability VCID-nmq2-8ysj-4fbc
19
vulnerability VCID-rzj2-4kcj-43dq
20
vulnerability VCID-sr8e-w1qk-r7fz
21
vulnerability VCID-v7tp-1t4h-zqeg
22
vulnerability VCID-v8ku-sjc8-wfga
23
vulnerability VCID-vsdf-4tfj-uybe
24
vulnerability VCID-wptr-hkjx-s7c3
25
vulnerability VCID-xqjr-7xfw-mbh2
26
vulnerability VCID-y9ne-rw7e-vugf
27
vulnerability VCID-zw2q-kna8-mqcm
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@10.1.0-M1
23
url pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@11.0.0-M1
purl pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@11.0.0-M1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1e6p-cppr-2bh2
1
vulnerability VCID-246u-a4rh-yyd4
2
vulnerability VCID-2rmy-13ym-3bgm
3
vulnerability VCID-43j2-w5xt-43g9
4
vulnerability VCID-4cag-c4pb-dfaz
5
vulnerability VCID-5781-s1ny-q7ey
6
vulnerability VCID-5sgv-7nsz-5fa8
7
vulnerability VCID-74tx-sx8a-guhs
8
vulnerability VCID-8myk-ac5b-huh8
9
vulnerability VCID-8war-4v58-eub2
10
vulnerability VCID-b3bb-9ajg-sfc9
11
vulnerability VCID-bks8-nvm9-vbgy
12
vulnerability VCID-cfhw-vmcp-y3bc
13
vulnerability VCID-d1fm-vbd1-n7au
14
vulnerability VCID-fpgj-82wf-ykbw
15
vulnerability VCID-gb2v-96xj-ybad
16
vulnerability VCID-gyed-x6s8-ybhr
17
vulnerability VCID-j6cj-ftyd-3ffa
18
vulnerability VCID-k59r-wjt3-wqe5
19
vulnerability VCID-maw6-4qs5-ykae
20
vulnerability VCID-n9yk-e49f-n7e7
21
vulnerability VCID-rzj2-4kcj-43dq
22
vulnerability VCID-sr8e-w1qk-r7fz
23
vulnerability VCID-v7tp-1t4h-zqeg
24
vulnerability VCID-v8ku-sjc8-wfga
25
vulnerability VCID-vsdf-4tfj-uybe
26
vulnerability VCID-xqjr-7xfw-mbh2
27
vulnerability VCID-y9ne-rw7e-vugf
28
vulnerability VCID-yrzk-1dbk-muhy
29
vulnerability VCID-zw2q-kna8-mqcm
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@11.0.0-M1
24
url pkg:rpm/redhat/jws5-tomcat@9.0.87-8.redhat_00008.1?arch=el9jws
purl pkg:rpm/redhat/jws5-tomcat@9.0.87-8.redhat_00008.1?arch=el9jws
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-5sgv-7nsz-5fa8
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jws5-tomcat@9.0.87-8.redhat_00008.1%3Farch=el9jws
25
url pkg:rpm/redhat/jws5-tomcat@9.0.87-8.redhat_00008.1?arch=el7jws
purl pkg:rpm/redhat/jws5-tomcat@9.0.87-8.redhat_00008.1?arch=el7jws
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-5sgv-7nsz-5fa8
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jws5-tomcat@9.0.87-8.redhat_00008.1%3Farch=el7jws
26
url pkg:rpm/redhat/jws5-tomcat@9.0.87-8.redhat_00008.1?arch=el8jws
purl pkg:rpm/redhat/jws5-tomcat@9.0.87-8.redhat_00008.1?arch=el8jws
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-5sgv-7nsz-5fa8
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jws5-tomcat@9.0.87-8.redhat_00008.1%3Farch=el8jws
27
url pkg:rpm/redhat/jws6-tomcat@10.1.36-6.redhat_00007.1?arch=el8jws
purl pkg:rpm/redhat/jws6-tomcat@10.1.36-6.redhat_00007.1?arch=el8jws
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2zq1-na8s-mfdd
1
vulnerability VCID-5sgv-7nsz-5fa8
2
vulnerability VCID-8mns-kw6c-a7dk
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jws6-tomcat@10.1.36-6.redhat_00007.1%3Farch=el8jws
28
url pkg:rpm/redhat/jws6-tomcat@10.1.36-6.redhat_00007.1?arch=el9jws
purl pkg:rpm/redhat/jws6-tomcat@10.1.36-6.redhat_00007.1?arch=el9jws
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2zq1-na8s-mfdd
1
vulnerability VCID-5sgv-7nsz-5fa8
2
vulnerability VCID-8mns-kw6c-a7dk
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jws6-tomcat@10.1.36-6.redhat_00007.1%3Farch=el9jws
29
url pkg:rpm/redhat/tomcat@1:9.0.87-1.el8_8?arch=4
purl pkg:rpm/redhat/tomcat@1:9.0.87-1.el8_8?arch=4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-5sgv-7nsz-5fa8
1
vulnerability VCID-v8ku-sjc8-wfga
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/tomcat@1:9.0.87-1.el8_8%3Farch=4
30
url pkg:rpm/redhat/tomcat@1:9.0.87-1.el8_10?arch=3
purl pkg:rpm/redhat/tomcat@1:9.0.87-1.el8_10?arch=3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-5sgv-7nsz-5fa8
1
vulnerability VCID-v8ku-sjc8-wfga
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/tomcat@1:9.0.87-1.el8_10%3Farch=3
31
url pkg:rpm/redhat/tomcat@1:9.0.87-1.el9_2?arch=3
purl pkg:rpm/redhat/tomcat@1:9.0.87-1.el9_2?arch=3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-5sgv-7nsz-5fa8
1
vulnerability VCID-v8ku-sjc8-wfga
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/tomcat@1:9.0.87-1.el9_2%3Farch=3
32
url pkg:rpm/redhat/tomcat@1:9.0.87-1.el9_4?arch=3
purl pkg:rpm/redhat/tomcat@1:9.0.87-1.el9_4?arch=3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-5sgv-7nsz-5fa8
1
vulnerability VCID-v8ku-sjc8-wfga
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/tomcat@1:9.0.87-1.el9_4%3Farch=3
33
url pkg:rpm/redhat/tomcat@1:9.0.87-2.el9_5?arch=1
purl pkg:rpm/redhat/tomcat@1:9.0.87-2.el9_5?arch=1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-5sgv-7nsz-5fa8
1
vulnerability VCID-v8ku-sjc8-wfga
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/tomcat@1:9.0.87-2.el9_5%3Farch=1
34
url pkg:rpm/redhat/tomcat@1:10.1.36-1?arch=el10_0
purl pkg:rpm/redhat/tomcat@1:10.1.36-1?arch=el10_0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-5sgv-7nsz-5fa8
1
vulnerability VCID-8mns-kw6c-a7dk
2
vulnerability VCID-gvhy-d4gm-57d3
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/tomcat@1:10.1.36-1%3Farch=el10_0
35
url pkg:rpm/redhat/tomcat9@1:9.0.87-5?arch=el10_0
purl pkg:rpm/redhat/tomcat9@1:9.0.87-5?arch=el10_0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-5sgv-7nsz-5fa8
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/tomcat9@1:9.0.87-5%3Farch=el10_0
References
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-24813.json
reference_id
reference_type
scores
0
value 8.6
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-24813.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-24813
reference_id
reference_type
scores
0
value 0.94165
scoring_system epss
scoring_elements 0.99918
published_at 2026-04-16T12:55:00Z
1
value 0.94165
scoring_system epss
scoring_elements 0.99917
published_at 2026-04-12T12:55:00Z
2
value 0.94165
scoring_system epss
scoring_elements 0.99916
published_at 2026-04-04T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-24813
2
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
3
reference_url https://github.com/absholi7ly/POC-CVE-2025-24813/blob/main/README.md
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:H
1
value 9.2
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:A
2
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://github.com/absholi7ly/POC-CVE-2025-24813/blob/main/README.md
4
reference_url https://github.com/apache/tomcat
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:H
1
value 9.2
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:A
2
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://github.com/apache/tomcat
5
reference_url https://github.com/apache/tomcat/commit/0a668e0c27f2b7ca0cc7c6eea32253b9b5ecb29c
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:H
1
value 9.2
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:A
2
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://github.com/apache/tomcat/commit/0a668e0c27f2b7ca0cc7c6eea32253b9b5ecb29c
6
reference_url https://github.com/apache/tomcat/commit/eb61aade8f8daccaecabf07d428b877975622f72
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:H
1
value 9.2
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:A
2
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://github.com/apache/tomcat/commit/eb61aade8f8daccaecabf07d428b877975622f72
7
reference_url https://github.com/apache/tomcat/commit/f6c01d6577cf9a1e06792be47e623d36acc3b5dc
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:H
1
value 9.2
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:A
2
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://github.com/apache/tomcat/commit/f6c01d6577cf9a1e06792be47e623d36acc3b5dc
8
reference_url https://lists.apache.org/thread/j5fkjv2k477os90nczf2v9l61fb0kkgq
reference_id
reference_type
scores
0
value 10
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
1
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:H
2
value 9.2
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:A
3
value CRITICAL
scoring_system generic_textual
scoring_elements
4
value Attend
scoring_system ssvc
scoring_elements SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-04-01T19:37:06Z/
url https://lists.apache.org/thread/j5fkjv2k477os90nczf2v9l61fb0kkgq
9
reference_url https://lists.debian.org/debian-lts-announce/2025/04/msg00003.html
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:H
1
value 9.2
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:A
2
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://lists.debian.org/debian-lts-announce/2025/04/msg00003.html
10
reference_url https://nvd.nist.gov/vuln/detail/CVE-2025-24813
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:H
1
value 9.2
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:A
2
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2025-24813
11
reference_url https://security.netapp.com/advisory/ntap-20250321-0001
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:H
1
value 9.2
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:A
2
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://security.netapp.com/advisory/ntap-20250321-0001
12
reference_url https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2025-24813
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:H
1
value 9.2
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:A
2
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2025-24813
13
reference_url https://www.vicarius.io/vsociety/posts/cve-2025-24813-detect-apache-tomcat-rce
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:H
1
value 9.2
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:A
2
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://www.vicarius.io/vsociety/posts/cve-2025-24813-detect-apache-tomcat-rce
14
reference_url https://www.vicarius.io/vsociety/posts/cve-2025-24813-mitigate-apache-tomcat-rce
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:H
1
value 9.2
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:A
2
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://www.vicarius.io/vsociety/posts/cve-2025-24813-mitigate-apache-tomcat-rce
15
reference_url https://www.vicarius.io/vsociety/posts/cve-2025-24813-tomcat-detect-vulnerability
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:H
1
value 9.2
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:A
2
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://www.vicarius.io/vsociety/posts/cve-2025-24813-tomcat-detect-vulnerability
16
reference_url https://www.vicarius.io/vsociety/posts/cve-2025-24813-tomcat-mitigation-vulnerability
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:H
1
value 9.2
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:A
2
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://www.vicarius.io/vsociety/posts/cve-2025-24813-tomcat-mitigation-vulnerability
17
reference_url http://www.openwall.com/lists/oss-security/2025/03/10/5
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:H
1
value 9.2
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:A
2
value CRITICAL
scoring_system generic_textual
scoring_elements
url http://www.openwall.com/lists/oss-security/2025/03/10/5
18
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2351129
reference_id 2351129
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2351129
19
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-24813
reference_id CVE-2025-24813
reference_type
scores
0
value Important
scoring_system apache_tomcat
scoring_elements
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-24813
20
reference_url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/webapps/52134.txt
reference_id CVE-2025-24813
reference_type exploit
scores
url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/webapps/52134.txt
21
reference_url https://github.com/advisories/GHSA-83qj-6fr2-vhqg
reference_id GHSA-83qj-6fr2-vhqg
reference_type
scores
0
value CRITICAL
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-83qj-6fr2-vhqg
22
reference_url https://access.redhat.com/errata/RHSA-2025:3454
reference_id RHSA-2025:3454
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:3454
23
reference_url https://access.redhat.com/errata/RHSA-2025:3455
reference_id RHSA-2025:3455
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:3455
24
reference_url https://access.redhat.com/errata/RHSA-2025:3608
reference_id RHSA-2025:3608
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:3608
25
reference_url https://access.redhat.com/errata/RHSA-2025:3609
reference_id RHSA-2025:3609
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:3609
26
reference_url https://access.redhat.com/errata/RHSA-2025:3645
reference_id RHSA-2025:3645
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:3645
27
reference_url https://access.redhat.com/errata/RHSA-2025:3646
reference_id RHSA-2025:3646
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:3646
28
reference_url https://access.redhat.com/errata/RHSA-2025:3647
reference_id RHSA-2025:3647
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:3647
29
reference_url https://access.redhat.com/errata/RHSA-2025:3683
reference_id RHSA-2025:3683
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:3683
30
reference_url https://access.redhat.com/errata/RHSA-2025:3684
reference_id RHSA-2025:3684
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:3684
31
reference_url https://access.redhat.com/errata/RHSA-2025:7494
reference_id RHSA-2025:7494
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:7494
32
reference_url https://access.redhat.com/errata/RHSA-2025:7497
reference_id RHSA-2025:7497
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:7497
33
reference_url https://usn.ubuntu.com/7525-1/
reference_id USN-7525-1
reference_type
scores
url https://usn.ubuntu.com/7525-1/
34
reference_url https://usn.ubuntu.com/7525-2/
reference_id USN-7525-2
reference_type
scores
url https://usn.ubuntu.com/7525-2/
Weaknesses
0
cwe_id 44
name Path Equivalence: 'file.name' (Internal Dot)
description The product accepts path input in the form of internal dot ('file.ordir') without appropriate validation, which can lead to ambiguous path resolution and allow an attacker to traverse the file system to unintended locations or access arbitrary files.
1
cwe_id 502
name Deserialization of Untrusted Data
description The product deserializes untrusted data without sufficiently verifying that the resulting data will be valid.
2
cwe_id 41
name Improper Resolution of Path Equivalence
description The product is vulnerable to file system contents disclosure through path equivalence. Path equivalence involves the use of special characters in file and directory names. The associated manipulations are intended to generate multiple names for the same object.
3
cwe_id 937
name OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities
description Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2013.
4
cwe_id 1035
name OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities
description Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2017.
Exploits
0
date_added 2025-04-07
description Apache Tomcat 11.0.3 - Remote Code Execution
required_action null
due_date null
notes null
known_ransomware_campaign_use false
source_date_published 2025-04-07
exploit_type webapps
platform multiple
source_date_updated 2025-04-07
data_source Exploit-DB
source_url
1
date_added null
description 
This module exploits a Java deserialization vulnerability in Apache
          Tomcat's session restoration functionality that can be exploited with a partial HTTP PUT request to
          place an attacker controlled deserialization payload in the <tomcat_root_dir>/webapps/ROOT/ directory.

          For the exploit to succeed, writes must be enabled for the default servlet,
          and org.apache.catalina.session.PersistentManager must be configured to use
          org.apache.catalina.session.FileStore.

          Verified working on 10.1.16-1
required_action null
due_date null
notes 
Stability:
  - crash-safe
Reliability:
  - repeatable-session
SideEffects:
  - ioc-in-logs
  - artifacts-on-disk
known_ransomware_campaign_use false
source_date_published 2025-03-10
exploit_type null
platform Linux,Unix,Windows
source_date_updated null
data_source Metasploit
source_url https://github.com/rapid7/metasploit-framework/tree/master/modules/exploits/multi/http/tomcat_partial_put_deserialization.rb
2
date_added 2025-04-01
description Apache Tomcat contains a path equivalence vulnerability that allows a remote attacker to execute code, disclose information, or inject malicious content via a partial PUT request.
required_action Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
due_date 2025-04-22
notes This vulnerability affects a common open-source component, third-party library, or a protocol used by different products. Please check with specific vendors for information on patching status. For more information, please see: https://lists.apache.org/thread/j5fkjv2k477os90nczf2v9l61fb0kkgq ; https://nvd.nist.gov/vuln/detail/CVE-2025-24813
known_ransomware_campaign_use false
source_date_published null
exploit_type null
platform null
source_date_updated null
data_source KEV
source_url null
Severity_range_score7.0 - 10.0
Exploitability2.0
Weighted_severity9.0
Risk_score10.0
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-5sgv-7nsz-5fa8