Django REST framework

Lookup for vulnerabilities affecting packages.

Vulnerability_id VCID-v8ku-sjc8-wfga

Summary

Aliases

alias	CVE-2024-50379

alias	GHSA-5j33-cvvr-w245

Fixed_packages

url pkg:apache/tomcat@9.0.98

purl pkg:apache/tomcat@9.0.98

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5sgv-7nsz-5fa8

resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@9.0.98

url pkg:apache/tomcat@10.1.34

purl pkg:apache/tomcat@10.1.34

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5sgv-7nsz-5fa8

resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@10.1.34

url pkg:apache/tomcat@11.0.2

purl pkg:apache/tomcat@11.0.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5sgv-7nsz-5fa8

resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@11.0.2

url	pkg:deb/debian/tomcat10@10.1.34-0%2Bdeb12u1?distro=trixie
purl	pkg:deb/debian/tomcat10@10.1.34-0%2Bdeb12u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat10@10.1.34-0%252Bdeb12u1%3Fdistro=trixie

url pkg:deb/debian/tomcat10@10.1.34-0%2Bdeb12u2?distro=trixie

purl pkg:deb/debian/tomcat10@10.1.34-0%2Bdeb12u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2rmy-13ym-3bgm

vulnerability	VCID-35xg-a746-5qgc

vulnerability	VCID-74tx-sx8a-guhs

vulnerability	VCID-8e1c-rbkg-v7c2

vulnerability	VCID-d1fm-vbd1-n7au

vulnerability	VCID-gyed-x6s8-ybhr

vulnerability	VCID-rsxs-u5cc-rkgj

vulnerability	VCID-yrzk-1dbk-muhy

vulnerability	VCID-zw2q-kna8-mqcm

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat10@10.1.34-0%252Bdeb12u2%3Fdistro=trixie

url	pkg:deb/debian/tomcat10@10.1.34-1?distro=trixie
purl	pkg:deb/debian/tomcat10@10.1.34-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat10@10.1.34-1%3Fdistro=trixie

url pkg:deb/debian/tomcat10@10.1.52-1~deb13u1?distro=trixie

purl pkg:deb/debian/tomcat10@10.1.52-1~deb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2rmy-13ym-3bgm

vulnerability	VCID-35xg-a746-5qgc

vulnerability	VCID-74tx-sx8a-guhs

vulnerability	VCID-8e1c-rbkg-v7c2

vulnerability	VCID-d1fm-vbd1-n7au

vulnerability	VCID-gyed-x6s8-ybhr

vulnerability	VCID-rsxs-u5cc-rkgj

vulnerability	VCID-yrzk-1dbk-muhy

vulnerability	VCID-zw2q-kna8-mqcm

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat10@10.1.52-1~deb13u1%3Fdistro=trixie

url pkg:deb/debian/tomcat10@10.1.52-1?distro=trixie

purl pkg:deb/debian/tomcat10@10.1.52-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2rmy-13ym-3bgm

vulnerability	VCID-35xg-a746-5qgc

vulnerability	VCID-74tx-sx8a-guhs

vulnerability	VCID-8e1c-rbkg-v7c2

vulnerability	VCID-d1fm-vbd1-n7au

vulnerability	VCID-gyed-x6s8-ybhr

vulnerability	VCID-rsxs-u5cc-rkgj

vulnerability	VCID-yrzk-1dbk-muhy

vulnerability	VCID-zw2q-kna8-mqcm

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat10@10.1.52-1%3Fdistro=trixie

url	pkg:deb/debian/tomcat10@10.1.52-2?distro=trixie
purl	pkg:deb/debian/tomcat10@10.1.52-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat10@10.1.52-2%3Fdistro=trixie

url	pkg:deb/debian/tomcat10@10.1.54-1?distro=trixie
purl	pkg:deb/debian/tomcat10@10.1.54-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat10@10.1.54-1%3Fdistro=trixie

url	pkg:deb/debian/tomcat9@9.0.43-2~deb11u10?distro=trixie
purl	pkg:deb/debian/tomcat9@9.0.43-2~deb11u10?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat9@9.0.43-2~deb11u10%3Fdistro=trixie

url	pkg:deb/debian/tomcat9@9.0.43-2~deb11u11?distro=trixie
purl	pkg:deb/debian/tomcat9@9.0.43-2~deb11u11?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat9@9.0.43-2~deb11u11%3Fdistro=trixie

url pkg:deb/debian/tomcat9@9.0.70-2

purl pkg:deb/debian/tomcat9@9.0.70-2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-246u-a4rh-yyd4

vulnerability	VCID-2x6a-3gh1-rkhs

vulnerability	VCID-2zq1-na8s-mfdd

vulnerability	VCID-4cag-c4pb-dfaz

vulnerability	VCID-8myk-ac5b-huh8

vulnerability	VCID-9kfe-1esf-uydm

vulnerability	VCID-cfhw-vmcp-y3bc

vulnerability	VCID-fpgj-82wf-ykbw

vulnerability	VCID-gb2v-96xj-ybad

vulnerability	VCID-gvhy-d4gm-57d3

vulnerability	VCID-k59r-wjt3-wqe5

vulnerability	VCID-kukv-k3z7-7fgs

vulnerability	VCID-sr8e-w1qk-r7fz

vulnerability	VCID-xqjr-7xfw-mbh2

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat9@9.0.70-2

url	pkg:deb/debian/tomcat9@9.0.70-2?distro=trixie
purl	pkg:deb/debian/tomcat9@9.0.70-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat9@9.0.70-2%3Fdistro=trixie

url	pkg:deb/debian/tomcat9@9.0.95-1?distro=trixie
purl	pkg:deb/debian/tomcat9@9.0.95-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat9@9.0.95-1%3Fdistro=trixie

url	pkg:deb/debian/tomcat9@9.0.115-1?distro=trixie
purl	pkg:deb/debian/tomcat9@9.0.115-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat9@9.0.115-1%3Fdistro=trixie

url pkg:maven/org.apache.tomcat/tomcat@9.0.98

purl pkg:maven/org.apache.tomcat/tomcat@9.0.98

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5sgv-7nsz-5fa8

vulnerability	VCID-8war-4v58-eub2

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@9.0.98

url pkg:maven/org.apache.tomcat/tomcat@10.1.34

purl pkg:maven/org.apache.tomcat/tomcat@10.1.34

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5sgv-7nsz-5fa8

vulnerability	VCID-8war-4v58-eub2

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@10.1.34

url pkg:maven/org.apache.tomcat/tomcat@11.0.2

purl pkg:maven/org.apache.tomcat/tomcat@11.0.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5sgv-7nsz-5fa8

vulnerability	VCID-8war-4v58-eub2

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@11.0.2

url	pkg:maven/org.apache.tomcat/tomcat-catalina@9.0.98
purl	pkg:maven/org.apache.tomcat/tomcat-catalina@9.0.98
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat-catalina@9.0.98

url	pkg:maven/org.apache.tomcat/tomcat-catalina@10.1.34
purl	pkg:maven/org.apache.tomcat/tomcat-catalina@10.1.34
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat-catalina@10.1.34

url	pkg:maven/org.apache.tomcat/tomcat-catalina@11.0.2
purl	pkg:maven/org.apache.tomcat/tomcat-catalina@11.0.2
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat-catalina@11.0.2

url pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@9.0.98

purl pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@9.0.98

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-fpgj-82wf-ykbw

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@9.0.98

url pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@10.1.34

purl pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@10.1.34

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-fpgj-82wf-ykbw

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@10.1.34

url pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@11.0.2

purl pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@11.0.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-fpgj-82wf-ykbw

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@11.0.2

Affected_packages

url pkg:apache/tomcat@9.0.0%2BM1

purl pkg:apache/tomcat@9.0.0%2BM1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-18q4-zark-s7a7

vulnerability	VCID-1e6p-cppr-2bh2

vulnerability	VCID-1hdb-24e3-f3d6

vulnerability	VCID-1k8f-vsg1-k3d6

vulnerability	VCID-246u-a4rh-yyd4

vulnerability	VCID-2kku-pzer-9ufv

vulnerability	VCID-2sbh-sy57-3uez

vulnerability	VCID-2x6a-3gh1-rkhs

vulnerability	VCID-39e3-jfbg-s3hk

vulnerability	VCID-3cr9-g81m-4ugy

vulnerability	VCID-3n4t-bvb1-5qer

vulnerability	VCID-3r3s-q21j-c3au

vulnerability	VCID-43j2-w5xt-43g9

vulnerability	VCID-46bv-6b7y-3bca

vulnerability	VCID-4aaa-errb-2qdw

vulnerability	VCID-4cag-c4pb-dfaz

vulnerability	VCID-4tf3-7f5b-2ffu

vulnerability	VCID-5sgv-7nsz-5fa8

vulnerability	VCID-66kh-s6cr-tqf9

vulnerability	VCID-68fk-4g86-ekbp

vulnerability	VCID-885s-t4dx-dybv

vulnerability	VCID-95d1-arxd-hkd1

vulnerability	VCID-9exq-fhv6-bbea

vulnerability	VCID-9kfe-1esf-uydm

vulnerability	VCID-a8gk-n8bq-87cp

vulnerability	VCID-aeeu-fpay-wufz

vulnerability	VCID-arkn-bca7-hqam

vulnerability	VCID-ayrd-8ntf-hkh3

vulnerability	VCID-dzpn-w4b3-vbcm

vulnerability	VCID-eb37-mkxf-7fgw

vulnerability	VCID-enaj-f97c-jbh7

vulnerability	VCID-f77q-v5xp-e7dy

vulnerability	VCID-fpgj-82wf-ykbw

vulnerability	VCID-fyfz-6tr5-2fc7

vulnerability	VCID-g7bk-891a-uufy

vulnerability	VCID-gb2v-96xj-ybad

vulnerability	VCID-gvhy-d4gm-57d3

vulnerability	VCID-gyed-x6s8-ybhr

vulnerability	VCID-hmbm-5ysw-77bu

vulnerability	VCID-hves-r5bg-yfes

vulnerability	VCID-k59r-wjt3-wqe5

vulnerability	VCID-kagr-74d9-kyhx

vulnerability	VCID-kukv-k3z7-7fgs

vulnerability	VCID-kwab-3s4q-eka4

vulnerability	VCID-kyb8-rvyw-s7b1

vulnerability	VCID-m1zd-uytj-3bej

vulnerability	VCID-m2zn-ja8d-7kg8

vulnerability	VCID-maw6-4qs5-ykae

vulnerability	VCID-n3ab-nk7c-hqc9

vulnerability	VCID-n3zn-tuck-gkfe

vulnerability	VCID-nvbx-q971-skgm

vulnerability	VCID-pqxe-tfhk-47b7

vulnerability	VCID-ruuh-g3fa-m7d8

vulnerability	VCID-sr8e-w1qk-r7fz

vulnerability	VCID-t2ne-75ck-eqcr

vulnerability	VCID-tfrs-d458-tfaq

vulnerability	VCID-u3ck-cvgt-fuhd

vulnerability	VCID-v8ku-sjc8-wfga

vulnerability	VCID-vdnj-sqmx-e3ep

vulnerability	VCID-vhjj-dnft-kkf4

vulnerability	VCID-wbaq-j85q-y3c6

vulnerability	VCID-wgsc-dnn1-ukeq

vulnerability	VCID-xf8r-kqxb-7qdy

vulnerability	VCID-y9ne-rw7e-vugf

vulnerability	VCID-yfx4-4gsc-2kgh

vulnerability	VCID-yxpq-rrry-j3h8

resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@9.0.0%252BM1

url pkg:apache/tomcat@9.0.97

purl pkg:apache/tomcat@9.0.97

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-43j2-w5xt-43g9

vulnerability	VCID-gvhy-d4gm-57d3

vulnerability	VCID-v8ku-sjc8-wfga

resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@9.0.97

url pkg:apache/tomcat@10.1.0-M1

purl pkg:apache/tomcat@10.1.0-M1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1e6p-cppr-2bh2

vulnerability	VCID-246u-a4rh-yyd4

vulnerability	VCID-2kku-pzer-9ufv

vulnerability	VCID-2rmy-13ym-3bgm

vulnerability	VCID-2x6a-3gh1-rkhs

vulnerability	VCID-3vdn-j7sj-dfdn

vulnerability	VCID-43j2-w5xt-43g9

vulnerability	VCID-4cag-c4pb-dfaz

vulnerability	VCID-56jv-htmt-rkew

vulnerability	VCID-5781-s1ny-q7ey

vulnerability	VCID-5sgv-7nsz-5fa8

vulnerability	VCID-6pm1-byhk-eqfg

vulnerability	VCID-8mns-kw6c-a7dk

vulnerability	VCID-8myk-ac5b-huh8

vulnerability	VCID-b3bb-9ajg-sfc9

vulnerability	VCID-cfhw-vmcp-y3bc

vulnerability	VCID-d1fm-vbd1-n7au

vulnerability	VCID-fpgj-82wf-ykbw

vulnerability	VCID-gb2v-96xj-ybad

vulnerability	VCID-gvhy-d4gm-57d3

vulnerability	VCID-gyed-x6s8-ybhr

vulnerability	VCID-j6cj-ftyd-3ffa

vulnerability	VCID-j8tk-s915-pbfy

vulnerability	VCID-k59r-wjt3-wqe5

vulnerability	VCID-kukv-k3z7-7fgs

vulnerability	VCID-maw6-4qs5-ykae

vulnerability	VCID-n9yk-e49f-n7e7

vulnerability	VCID-nmq2-8ysj-4fbc

vulnerability	VCID-p6pa-f1fg-hbhg

vulnerability	VCID-p8q2-pt96-5ye8

vulnerability	VCID-qkx6-32cj-jfbp

vulnerability	VCID-rzj2-4kcj-43dq

vulnerability	VCID-sr8e-w1qk-r7fz

vulnerability	VCID-stds-vw5z-auhp

vulnerability	VCID-v7tp-1t4h-zqeg

vulnerability	VCID-v8ku-sjc8-wfga

vulnerability	VCID-vsdf-4tfj-uybe

vulnerability	VCID-wptr-hkjx-s7c3

vulnerability	VCID-xqjr-7xfw-mbh2

vulnerability	VCID-y9ne-rw7e-vugf

vulnerability	VCID-zw2q-kna8-mqcm

resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@10.1.0-M1

url pkg:apache/tomcat@10.1.33

purl pkg:apache/tomcat@10.1.33

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-43j2-w5xt-43g9

vulnerability	VCID-gvhy-d4gm-57d3

vulnerability	VCID-v8ku-sjc8-wfga

resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@10.1.33

url pkg:apache/tomcat@11.0.0-M1

purl pkg:apache/tomcat@11.0.0-M1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1e6p-cppr-2bh2

vulnerability	VCID-246u-a4rh-yyd4

vulnerability	VCID-2kku-pzer-9ufv

vulnerability	VCID-2rmy-13ym-3bgm

vulnerability	VCID-2x6a-3gh1-rkhs

vulnerability	VCID-3vdn-j7sj-dfdn

vulnerability	VCID-43j2-w5xt-43g9

vulnerability	VCID-4cag-c4pb-dfaz

vulnerability	VCID-5781-s1ny-q7ey

vulnerability	VCID-5sgv-7nsz-5fa8

vulnerability	VCID-74tx-sx8a-guhs

vulnerability	VCID-8mns-kw6c-a7dk

vulnerability	VCID-8myk-ac5b-huh8

vulnerability	VCID-8war-4v58-eub2

vulnerability	VCID-b3bb-9ajg-sfc9

vulnerability	VCID-bks8-nvm9-vbgy

vulnerability	VCID-cfhw-vmcp-y3bc

vulnerability	VCID-d1fm-vbd1-n7au

vulnerability	VCID-fpgj-82wf-ykbw

vulnerability	VCID-gb2v-96xj-ybad

vulnerability	VCID-gvhy-d4gm-57d3

vulnerability	VCID-gyed-x6s8-ybhr

vulnerability	VCID-j6cj-ftyd-3ffa

vulnerability	VCID-k59r-wjt3-wqe5

vulnerability	VCID-kukv-k3z7-7fgs

vulnerability	VCID-maw6-4qs5-ykae

vulnerability	VCID-n9yk-e49f-n7e7

vulnerability	VCID-p6pa-f1fg-hbhg

vulnerability	VCID-rzj2-4kcj-43dq

vulnerability	VCID-sr8e-w1qk-r7fz

vulnerability	VCID-v7tp-1t4h-zqeg

vulnerability	VCID-v8ku-sjc8-wfga

vulnerability	VCID-vsdf-4tfj-uybe

vulnerability	VCID-xqjr-7xfw-mbh2

vulnerability	VCID-y9ne-rw7e-vugf

vulnerability	VCID-yrzk-1dbk-muhy

vulnerability	VCID-zw2q-kna8-mqcm

resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@11.0.0-M1

url pkg:apache/tomcat@11.0.1

purl pkg:apache/tomcat@11.0.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-43j2-w5xt-43g9

vulnerability	VCID-gvhy-d4gm-57d3

vulnerability	VCID-v8ku-sjc8-wfga

resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@11.0.1

url pkg:deb/debian/tomcat9@9.0.31-1~deb10u6

purl pkg:deb/debian/tomcat9@9.0.31-1~deb10u6

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1e6p-cppr-2bh2

vulnerability	VCID-246u-a4rh-yyd4

vulnerability	VCID-2kku-pzer-9ufv

vulnerability	VCID-2rmy-13ym-3bgm

vulnerability	VCID-2x6a-3gh1-rkhs

vulnerability	VCID-2zq1-na8s-mfdd

vulnerability	VCID-35xg-a746-5qgc

vulnerability	VCID-3vdn-j7sj-dfdn

vulnerability	VCID-43j2-w5xt-43g9

vulnerability	VCID-46bv-6b7y-3bca

vulnerability	VCID-4cag-c4pb-dfaz

vulnerability	VCID-56jv-htmt-rkew

vulnerability	VCID-5781-s1ny-q7ey

vulnerability	VCID-5sgv-7nsz-5fa8

vulnerability	VCID-66kh-s6cr-tqf9

vulnerability	VCID-6pm1-byhk-eqfg

vulnerability	VCID-74tx-sx8a-guhs

vulnerability	VCID-885s-t4dx-dybv

vulnerability	VCID-8e1c-rbkg-v7c2

vulnerability	VCID-8mns-kw6c-a7dk

vulnerability	VCID-8myk-ac5b-huh8

vulnerability	VCID-8war-4v58-eub2

vulnerability	VCID-9kfe-1esf-uydm

vulnerability	VCID-a8gk-n8bq-87cp

vulnerability	VCID-b3bb-9ajg-sfc9

vulnerability	VCID-cfhw-vmcp-y3bc

vulnerability	VCID-d1fm-vbd1-n7au

vulnerability	VCID-dy6m-zt6r-9ubd

vulnerability	VCID-dzan-r49k-kqab

vulnerability	VCID-dzpn-w4b3-vbcm

vulnerability	VCID-eb37-mkxf-7fgw

vulnerability	VCID-fpgj-82wf-ykbw

vulnerability	VCID-gb2v-96xj-ybad

vulnerability	VCID-gvhy-d4gm-57d3

vulnerability	VCID-gyed-x6s8-ybhr

vulnerability	VCID-j6cj-ftyd-3ffa

vulnerability	VCID-j8tk-s915-pbfy

vulnerability	VCID-k59r-wjt3-wqe5

vulnerability	VCID-k9cg-ehdw-dbh6

vulnerability	VCID-kukv-k3z7-7fgs

vulnerability	VCID-kwab-3s4q-eka4

vulnerability	VCID-maw6-4qs5-ykae

vulnerability	VCID-n3ab-nk7c-hqc9

vulnerability	VCID-n9yk-e49f-n7e7

vulnerability	VCID-nmq2-8ysj-4fbc

vulnerability	VCID-nvbx-q971-skgm

vulnerability	VCID-p6pa-f1fg-hbhg

vulnerability	VCID-p8q2-pt96-5ye8

vulnerability	VCID-qkx6-32cj-jfbp

vulnerability	VCID-ran8-rnqn-tkbc

vulnerability	VCID-rq42-qvsy-hue6

vulnerability	VCID-rsxs-u5cc-rkgj

vulnerability	VCID-ruuh-g3fa-m7d8

vulnerability	VCID-rzj2-4kcj-43dq

vulnerability	VCID-sr8e-w1qk-r7fz

vulnerability	VCID-stds-vw5z-auhp

vulnerability	VCID-t2ne-75ck-eqcr

vulnerability	VCID-v7tp-1t4h-zqeg

vulnerability	VCID-v8ku-sjc8-wfga

vulnerability	VCID-vsdf-4tfj-uybe

vulnerability	VCID-wgsc-dnn1-ukeq

vulnerability	VCID-wptr-hkjx-s7c3

vulnerability	VCID-xqjr-7xfw-mbh2

vulnerability	VCID-xt59-cnmj-2bf8

vulnerability	VCID-y9ne-rw7e-vugf

vulnerability	VCID-yfx4-4gsc-2kgh

vulnerability	VCID-yrzk-1dbk-muhy

vulnerability	VCID-z2pq-cv2w-nfdk

vulnerability	VCID-zw2q-kna8-mqcm

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat9@9.0.31-1~deb10u6

url pkg:deb/debian/tomcat9@9.0.43-2~deb11u10

purl pkg:deb/debian/tomcat9@9.0.43-2~deb11u10

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1e6p-cppr-2bh2

vulnerability	VCID-246u-a4rh-yyd4

vulnerability	VCID-2kku-pzer-9ufv

vulnerability	VCID-2rmy-13ym-3bgm

vulnerability	VCID-2x6a-3gh1-rkhs

vulnerability	VCID-2zq1-na8s-mfdd

vulnerability	VCID-35xg-a746-5qgc

vulnerability	VCID-3vdn-j7sj-dfdn

vulnerability	VCID-43j2-w5xt-43g9

vulnerability	VCID-4cag-c4pb-dfaz

vulnerability	VCID-5sgv-7nsz-5fa8

vulnerability	VCID-74tx-sx8a-guhs

vulnerability	VCID-8e1c-rbkg-v7c2

vulnerability	VCID-8mns-kw6c-a7dk

vulnerability	VCID-8myk-ac5b-huh8

vulnerability	VCID-8war-4v58-eub2

vulnerability	VCID-9kfe-1esf-uydm

vulnerability	VCID-cfhw-vmcp-y3bc

vulnerability	VCID-d1fm-vbd1-n7au

vulnerability	VCID-fpgj-82wf-ykbw

vulnerability	VCID-gb2v-96xj-ybad

vulnerability	VCID-gvhy-d4gm-57d3

vulnerability	VCID-gyed-x6s8-ybhr

vulnerability	VCID-k59r-wjt3-wqe5

vulnerability	VCID-k9cg-ehdw-dbh6

vulnerability	VCID-kukv-k3z7-7fgs

vulnerability	VCID-maw6-4qs5-ykae

vulnerability	VCID-p8q2-pt96-5ye8

vulnerability	VCID-rsxs-u5cc-rkgj

vulnerability	VCID-sr8e-w1qk-r7fz

vulnerability	VCID-v8ku-sjc8-wfga

vulnerability	VCID-xqjr-7xfw-mbh2

vulnerability	VCID-y9ne-rw7e-vugf

vulnerability	VCID-yrzk-1dbk-muhy

vulnerability	VCID-zw2q-kna8-mqcm

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat9@9.0.43-2~deb11u10

url pkg:maven/org.apache.tomcat/tomcat@9.0.0.M1

purl pkg:maven/org.apache.tomcat/tomcat@9.0.0.M1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-18q4-zark-s7a7

vulnerability	VCID-1e6p-cppr-2bh2

vulnerability	VCID-1hdb-24e3-f3d6

vulnerability	VCID-1k8f-vsg1-k3d6

vulnerability	VCID-246u-a4rh-yyd4

vulnerability	VCID-2kku-pzer-9ufv

vulnerability	VCID-2sbh-sy57-3uez

vulnerability	VCID-2x6a-3gh1-rkhs

vulnerability	VCID-39e3-jfbg-s3hk

vulnerability	VCID-3cr9-g81m-4ugy

vulnerability	VCID-3n4t-bvb1-5qer

vulnerability	VCID-3r3s-q21j-c3au

vulnerability	VCID-43j2-w5xt-43g9

vulnerability	VCID-46bv-6b7y-3bca

vulnerability	VCID-4aaa-errb-2qdw

vulnerability	VCID-4cag-c4pb-dfaz

vulnerability	VCID-4tf3-7f5b-2ffu

vulnerability	VCID-5sgv-7nsz-5fa8

vulnerability	VCID-66kh-s6cr-tqf9

vulnerability	VCID-68fk-4g86-ekbp

vulnerability	VCID-885s-t4dx-dybv

vulnerability	VCID-95d1-arxd-hkd1

vulnerability	VCID-9exq-fhv6-bbea

vulnerability	VCID-9kfe-1esf-uydm

vulnerability	VCID-a8gk-n8bq-87cp

vulnerability	VCID-aeeu-fpay-wufz

vulnerability	VCID-arkn-bca7-hqam

vulnerability	VCID-ayrd-8ntf-hkh3

vulnerability	VCID-dzpn-w4b3-vbcm

vulnerability	VCID-eb37-mkxf-7fgw

vulnerability	VCID-enaj-f97c-jbh7

vulnerability	VCID-f77q-v5xp-e7dy

vulnerability	VCID-fpgj-82wf-ykbw

vulnerability	VCID-fyfz-6tr5-2fc7

vulnerability	VCID-g7bk-891a-uufy

vulnerability	VCID-gb2v-96xj-ybad

vulnerability	VCID-gvhy-d4gm-57d3

vulnerability	VCID-gyed-x6s8-ybhr

vulnerability	VCID-hmbm-5ysw-77bu

vulnerability	VCID-hves-r5bg-yfes

vulnerability	VCID-k59r-wjt3-wqe5

vulnerability	VCID-k9cg-ehdw-dbh6

vulnerability	VCID-kagr-74d9-kyhx

vulnerability	VCID-kukv-k3z7-7fgs

vulnerability	VCID-kwab-3s4q-eka4

vulnerability	VCID-kyb8-rvyw-s7b1

vulnerability	VCID-m1zd-uytj-3bej

vulnerability	VCID-m2zn-ja8d-7kg8

vulnerability	VCID-maw6-4qs5-ykae

vulnerability	VCID-n3ab-nk7c-hqc9

vulnerability	VCID-n3zn-tuck-gkfe

vulnerability	VCID-nvbx-q971-skgm

vulnerability	VCID-pqxe-tfhk-47b7

vulnerability	VCID-ruuh-g3fa-m7d8

vulnerability	VCID-sr8e-w1qk-r7fz

vulnerability	VCID-t2ne-75ck-eqcr

vulnerability	VCID-tfrs-d458-tfaq

vulnerability	VCID-u3ck-cvgt-fuhd

vulnerability	VCID-v8ku-sjc8-wfga

vulnerability	VCID-vdnj-sqmx-e3ep

vulnerability	VCID-vhjj-dnft-kkf4

vulnerability	VCID-wbaq-j85q-y3c6

vulnerability	VCID-wgsc-dnn1-ukeq

vulnerability	VCID-xf8r-kqxb-7qdy

vulnerability	VCID-y9ne-rw7e-vugf

vulnerability	VCID-yfx4-4gsc-2kgh

vulnerability	VCID-yxpq-rrry-j3h8

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@9.0.0.M1

url pkg:maven/org.apache.tomcat/tomcat@9.0.97

purl pkg:maven/org.apache.tomcat/tomcat@9.0.97

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-43j2-w5xt-43g9

vulnerability	VCID-8war-4v58-eub2

vulnerability	VCID-gvhy-d4gm-57d3

vulnerability	VCID-v8ku-sjc8-wfga

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@9.0.97

url pkg:maven/org.apache.tomcat/tomcat@10.1.0-M1

purl pkg:maven/org.apache.tomcat/tomcat@10.1.0-M1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1e6p-cppr-2bh2

vulnerability	VCID-246u-a4rh-yyd4

vulnerability	VCID-2kku-pzer-9ufv

vulnerability	VCID-2rmy-13ym-3bgm

vulnerability	VCID-2x6a-3gh1-rkhs

vulnerability	VCID-3vdn-j7sj-dfdn

vulnerability	VCID-43j2-w5xt-43g9

vulnerability	VCID-4cag-c4pb-dfaz

vulnerability	VCID-56jv-htmt-rkew

vulnerability	VCID-5781-s1ny-q7ey

vulnerability	VCID-5sgv-7nsz-5fa8

vulnerability	VCID-6pm1-byhk-eqfg

vulnerability	VCID-8mns-kw6c-a7dk

vulnerability	VCID-8myk-ac5b-huh8

vulnerability	VCID-b3bb-9ajg-sfc9

vulnerability	VCID-cfhw-vmcp-y3bc

vulnerability	VCID-d1fm-vbd1-n7au

vulnerability	VCID-fpgj-82wf-ykbw

vulnerability	VCID-gb2v-96xj-ybad

vulnerability	VCID-gvhy-d4gm-57d3

vulnerability	VCID-gyed-x6s8-ybhr

vulnerability	VCID-j6cj-ftyd-3ffa

vulnerability	VCID-j8tk-s915-pbfy

vulnerability	VCID-k59r-wjt3-wqe5

vulnerability	VCID-kukv-k3z7-7fgs

vulnerability	VCID-maw6-4qs5-ykae

vulnerability	VCID-n9yk-e49f-n7e7

vulnerability	VCID-nmq2-8ysj-4fbc

vulnerability	VCID-p6pa-f1fg-hbhg

vulnerability	VCID-p8q2-pt96-5ye8

vulnerability	VCID-qkx6-32cj-jfbp

vulnerability	VCID-rzj2-4kcj-43dq

vulnerability	VCID-sr8e-w1qk-r7fz

vulnerability	VCID-stds-vw5z-auhp

vulnerability	VCID-v7tp-1t4h-zqeg

vulnerability	VCID-v8ku-sjc8-wfga

vulnerability	VCID-vsdf-4tfj-uybe

vulnerability	VCID-wptr-hkjx-s7c3

vulnerability	VCID-xqjr-7xfw-mbh2

vulnerability	VCID-y9ne-rw7e-vugf

vulnerability	VCID-zw2q-kna8-mqcm

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@10.1.0-M1

url pkg:maven/org.apache.tomcat/tomcat@10.1.33

purl pkg:maven/org.apache.tomcat/tomcat@10.1.33

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-43j2-w5xt-43g9

vulnerability	VCID-8war-4v58-eub2

vulnerability	VCID-gvhy-d4gm-57d3

vulnerability	VCID-v8ku-sjc8-wfga

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@10.1.33

url pkg:maven/org.apache.tomcat/tomcat@11.0.0-M1

purl pkg:maven/org.apache.tomcat/tomcat@11.0.0-M1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1e6p-cppr-2bh2

vulnerability	VCID-246u-a4rh-yyd4

vulnerability	VCID-2kku-pzer-9ufv

vulnerability	VCID-2rmy-13ym-3bgm

vulnerability	VCID-2x6a-3gh1-rkhs

vulnerability	VCID-3vdn-j7sj-dfdn

vulnerability	VCID-43j2-w5xt-43g9

vulnerability	VCID-4cag-c4pb-dfaz

vulnerability	VCID-5781-s1ny-q7ey

vulnerability	VCID-5sgv-7nsz-5fa8

vulnerability	VCID-74tx-sx8a-guhs

vulnerability	VCID-8mns-kw6c-a7dk

vulnerability	VCID-8myk-ac5b-huh8

vulnerability	VCID-8war-4v58-eub2

vulnerability	VCID-b3bb-9ajg-sfc9

vulnerability	VCID-bks8-nvm9-vbgy

vulnerability	VCID-cfhw-vmcp-y3bc

vulnerability	VCID-d1fm-vbd1-n7au

vulnerability	VCID-fpgj-82wf-ykbw

vulnerability	VCID-gb2v-96xj-ybad

vulnerability	VCID-gvhy-d4gm-57d3

vulnerability	VCID-gyed-x6s8-ybhr

vulnerability	VCID-j6cj-ftyd-3ffa

vulnerability	VCID-k59r-wjt3-wqe5

vulnerability	VCID-kukv-k3z7-7fgs

vulnerability	VCID-maw6-4qs5-ykae

vulnerability	VCID-n9yk-e49f-n7e7

vulnerability	VCID-p6pa-f1fg-hbhg

vulnerability	VCID-rzj2-4kcj-43dq

vulnerability	VCID-sr8e-w1qk-r7fz

vulnerability	VCID-v7tp-1t4h-zqeg

vulnerability	VCID-v8ku-sjc8-wfga

vulnerability	VCID-vsdf-4tfj-uybe

vulnerability	VCID-xqjr-7xfw-mbh2

vulnerability	VCID-y9ne-rw7e-vugf

vulnerability	VCID-yrzk-1dbk-muhy

vulnerability	VCID-zw2q-kna8-mqcm

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@11.0.0-M1

url pkg:maven/org.apache.tomcat/tomcat@11.0.1

purl pkg:maven/org.apache.tomcat/tomcat@11.0.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-43j2-w5xt-43g9

vulnerability	VCID-8war-4v58-eub2

vulnerability	VCID-gvhy-d4gm-57d3

vulnerability	VCID-v8ku-sjc8-wfga

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@11.0.1

url pkg:maven/org.apache.tomcat/tomcat-catalina@8.5.0

purl pkg:maven/org.apache.tomcat/tomcat-catalina@8.5.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-246u-a4rh-yyd4

vulnerability	VCID-3cr9-g81m-4ugy

vulnerability	VCID-4cag-c4pb-dfaz

vulnerability	VCID-5sgv-7nsz-5fa8

vulnerability	VCID-66kh-s6cr-tqf9

vulnerability	VCID-8mns-kw6c-a7dk

vulnerability	VCID-95d1-arxd-hkd1

vulnerability	VCID-a8gk-n8bq-87cp

vulnerability	VCID-ayrd-8ntf-hkh3

vulnerability	VCID-b3bb-9ajg-sfc9

vulnerability	VCID-c12c-fsy1-17ee

vulnerability	VCID-enaj-f97c-jbh7

vulnerability	VCID-gb2v-96xj-ybad

vulnerability	VCID-gvhy-d4gm-57d3

vulnerability	VCID-hmbm-5ysw-77bu

vulnerability	VCID-hves-r5bg-yfes

vulnerability	VCID-j6cj-ftyd-3ffa

vulnerability	VCID-j8tk-s915-pbfy

vulnerability	VCID-k59r-wjt3-wqe5

vulnerability	VCID-kukv-k3z7-7fgs

vulnerability	VCID-pqxe-tfhk-47b7

vulnerability	VCID-sr8e-w1qk-r7fz

vulnerability	VCID-v7tp-1t4h-zqeg

vulnerability	VCID-v8ku-sjc8-wfga

vulnerability	VCID-vdnj-sqmx-e3ep

vulnerability	VCID-xf8r-kqxb-7qdy

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat-catalina@8.5.0

url pkg:maven/org.apache.tomcat/tomcat-catalina@8.5.100

purl pkg:maven/org.apache.tomcat/tomcat-catalina@8.5.100

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-246u-a4rh-yyd4

vulnerability	VCID-4cag-c4pb-dfaz

vulnerability	VCID-5sgv-7nsz-5fa8

vulnerability	VCID-8mns-kw6c-a7dk

vulnerability	VCID-cfhw-vmcp-y3bc

vulnerability	VCID-gb2v-96xj-ybad

vulnerability	VCID-gvhy-d4gm-57d3

vulnerability	VCID-k59r-wjt3-wqe5

vulnerability	VCID-kukv-k3z7-7fgs

vulnerability	VCID-sr8e-w1qk-r7fz

vulnerability	VCID-v8ku-sjc8-wfga

vulnerability	VCID-xqjr-7xfw-mbh2

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat-catalina@8.5.100

url pkg:maven/org.apache.tomcat/tomcat-catalina@9.0.0.M1

purl pkg:maven/org.apache.tomcat/tomcat-catalina@9.0.0.M1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-246u-a4rh-yyd4

vulnerability	VCID-2kku-pzer-9ufv

vulnerability	VCID-3cr9-g81m-4ugy

vulnerability	VCID-4cag-c4pb-dfaz

vulnerability	VCID-5sgv-7nsz-5fa8

vulnerability	VCID-8mns-kw6c-a7dk

vulnerability	VCID-95d1-arxd-hkd1

vulnerability	VCID-enaj-f97c-jbh7

vulnerability	VCID-gb2v-96xj-ybad

vulnerability	VCID-gvhy-d4gm-57d3

vulnerability	VCID-hmbm-5ysw-77bu

vulnerability	VCID-hves-r5bg-yfes

vulnerability	VCID-k59r-wjt3-wqe5

vulnerability	VCID-pqxe-tfhk-47b7

vulnerability	VCID-sr8e-w1qk-r7fz

vulnerability	VCID-v8ku-sjc8-wfga

vulnerability	VCID-vdnj-sqmx-e3ep

vulnerability	VCID-xf8r-kqxb-7qdy

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat-catalina@9.0.0.M1

url pkg:maven/org.apache.tomcat/tomcat-catalina@10.1.0-M1

purl pkg:maven/org.apache.tomcat/tomcat-catalina@10.1.0-M1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-246u-a4rh-yyd4

vulnerability	VCID-2kku-pzer-9ufv

vulnerability	VCID-2rmy-13ym-3bgm

vulnerability	VCID-43j2-w5xt-43g9

vulnerability	VCID-4cag-c4pb-dfaz

vulnerability	VCID-5sgv-7nsz-5fa8

vulnerability	VCID-8mns-kw6c-a7dk

vulnerability	VCID-b3bb-9ajg-sfc9

vulnerability	VCID-cfhw-vmcp-y3bc

vulnerability	VCID-d1fm-vbd1-n7au

vulnerability	VCID-gb2v-96xj-ybad

vulnerability	VCID-gvhy-d4gm-57d3

vulnerability	VCID-gyed-x6s8-ybhr

vulnerability	VCID-k59r-wjt3-wqe5

vulnerability	VCID-maw6-4qs5-ykae

vulnerability	VCID-sr8e-w1qk-r7fz

vulnerability	VCID-v7tp-1t4h-zqeg

vulnerability	VCID-v8ku-sjc8-wfga

vulnerability	VCID-xqjr-7xfw-mbh2

vulnerability	VCID-y9ne-rw7e-vugf

vulnerability	VCID-zw2q-kna8-mqcm

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat-catalina@10.1.0-M1

url pkg:maven/org.apache.tomcat/tomcat-catalina@11.0.0-M1

purl pkg:maven/org.apache.tomcat/tomcat-catalina@11.0.0-M1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-246u-a4rh-yyd4

vulnerability	VCID-2kku-pzer-9ufv

vulnerability	VCID-2rmy-13ym-3bgm

vulnerability	VCID-43j2-w5xt-43g9

vulnerability	VCID-4cag-c4pb-dfaz

vulnerability	VCID-5sgv-7nsz-5fa8

vulnerability	VCID-74tx-sx8a-guhs

vulnerability	VCID-8mns-kw6c-a7dk

vulnerability	VCID-b3bb-9ajg-sfc9

vulnerability	VCID-bks8-nvm9-vbgy

vulnerability	VCID-cfhw-vmcp-y3bc

vulnerability	VCID-d1fm-vbd1-n7au

vulnerability	VCID-gb2v-96xj-ybad

vulnerability	VCID-gvhy-d4gm-57d3

vulnerability	VCID-gyed-x6s8-ybhr

vulnerability	VCID-k59r-wjt3-wqe5

vulnerability	VCID-maw6-4qs5-ykae

vulnerability	VCID-sr8e-w1qk-r7fz

vulnerability	VCID-v7tp-1t4h-zqeg

vulnerability	VCID-v8ku-sjc8-wfga

vulnerability	VCID-xqjr-7xfw-mbh2

vulnerability	VCID-y9ne-rw7e-vugf

vulnerability	VCID-yrzk-1dbk-muhy

vulnerability	VCID-zw2q-kna8-mqcm

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat-catalina@11.0.0-M1

url pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@8.5.0

purl pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@8.5.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-18q4-zark-s7a7

vulnerability	VCID-1hdb-24e3-f3d6

vulnerability	VCID-246u-a4rh-yyd4

vulnerability	VCID-2sbh-sy57-3uez

vulnerability	VCID-2zq1-na8s-mfdd

vulnerability	VCID-39e3-jfbg-s3hk

vulnerability	VCID-46bv-6b7y-3bca

vulnerability	VCID-4cag-c4pb-dfaz

vulnerability	VCID-4tf3-7f5b-2ffu

vulnerability	VCID-5781-s1ny-q7ey

vulnerability	VCID-5etb-njwf-rfdu

vulnerability	VCID-5sgv-7nsz-5fa8

vulnerability	VCID-66kh-s6cr-tqf9

vulnerability	VCID-8myk-ac5b-huh8

vulnerability	VCID-a8gk-n8bq-87cp

vulnerability	VCID-aeeu-fpay-wufz

vulnerability	VCID-ayrd-8ntf-hkh3

vulnerability	VCID-b3bb-9ajg-sfc9

vulnerability	VCID-dy6m-zt6r-9ubd

vulnerability	VCID-dzpn-w4b3-vbcm

vulnerability	VCID-f77q-v5xp-e7dy

vulnerability	VCID-fpgj-82wf-ykbw

vulnerability	VCID-fyfz-6tr5-2fc7

vulnerability	VCID-g7bk-891a-uufy

vulnerability	VCID-gb2v-96xj-ybad

vulnerability	VCID-hmbm-5ysw-77bu

vulnerability	VCID-hves-r5bg-yfes

vulnerability	VCID-j6cj-ftyd-3ffa

vulnerability	VCID-j8tk-s915-pbfy

vulnerability	VCID-k59r-wjt3-wqe5

vulnerability	VCID-kukv-k3z7-7fgs

vulnerability	VCID-kwab-3s4q-eka4

vulnerability	VCID-m2zn-ja8d-7kg8

vulnerability	VCID-n3ab-nk7c-hqc9

vulnerability	VCID-n3zn-tuck-gkfe

vulnerability	VCID-n9yk-e49f-n7e7

vulnerability	VCID-nmq2-8ysj-4fbc

vulnerability	VCID-ruuh-g3fa-m7d8

vulnerability	VCID-rzj2-4kcj-43dq

vulnerability	VCID-sr8e-w1qk-r7fz

vulnerability	VCID-t2ne-75ck-eqcr

vulnerability	VCID-u3ck-cvgt-fuhd

vulnerability	VCID-v7tp-1t4h-zqeg

vulnerability	VCID-v8ku-sjc8-wfga

vulnerability	VCID-vdnj-sqmx-e3ep

vulnerability	VCID-vsdf-4tfj-uybe

vulnerability	VCID-yfx4-4gsc-2kgh

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@8.5.0

url pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@8.5.100

purl pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@8.5.100

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-246u-a4rh-yyd4

vulnerability	VCID-2zq1-na8s-mfdd

vulnerability	VCID-4cag-c4pb-dfaz

vulnerability	VCID-5sgv-7nsz-5fa8

vulnerability	VCID-8myk-ac5b-huh8

vulnerability	VCID-cfhw-vmcp-y3bc

vulnerability	VCID-fpgj-82wf-ykbw

vulnerability	VCID-gb2v-96xj-ybad

vulnerability	VCID-k59r-wjt3-wqe5

vulnerability	VCID-kukv-k3z7-7fgs

vulnerability	VCID-sr8e-w1qk-r7fz

vulnerability	VCID-v8ku-sjc8-wfga

vulnerability	VCID-xqjr-7xfw-mbh2

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@8.5.100

url pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@9.0.0.M1

purl pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@9.0.0.M1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1e6p-cppr-2bh2

vulnerability	VCID-1hdb-24e3-f3d6

vulnerability	VCID-246u-a4rh-yyd4

vulnerability	VCID-39e3-jfbg-s3hk

vulnerability	VCID-43j2-w5xt-43g9

vulnerability	VCID-4aaa-errb-2qdw

vulnerability	VCID-4cag-c4pb-dfaz

vulnerability	VCID-5etb-njwf-rfdu

vulnerability	VCID-5sgv-7nsz-5fa8

vulnerability	VCID-fpgj-82wf-ykbw

vulnerability	VCID-gb2v-96xj-ybad

vulnerability	VCID-hmbm-5ysw-77bu

vulnerability	VCID-j6cj-ftyd-3ffa

vulnerability	VCID-k59r-wjt3-wqe5

vulnerability	VCID-n3zn-tuck-gkfe

vulnerability	VCID-sr8e-w1qk-r7fz

vulnerability	VCID-v7tp-1t4h-zqeg

vulnerability	VCID-v8ku-sjc8-wfga

vulnerability	VCID-vdnj-sqmx-e3ep

vulnerability	VCID-vsdf-4tfj-uybe

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@9.0.0.M1

url pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@10.1.0-M1

purl pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@10.1.0-M1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1e6p-cppr-2bh2

vulnerability	VCID-246u-a4rh-yyd4

vulnerability	VCID-2rmy-13ym-3bgm

vulnerability	VCID-43j2-w5xt-43g9

vulnerability	VCID-4cag-c4pb-dfaz

vulnerability	VCID-56jv-htmt-rkew

vulnerability	VCID-5sgv-7nsz-5fa8

vulnerability	VCID-8myk-ac5b-huh8

vulnerability	VCID-b3bb-9ajg-sfc9

vulnerability	VCID-cfhw-vmcp-y3bc

vulnerability	VCID-d1fm-vbd1-n7au

vulnerability	VCID-fpgj-82wf-ykbw

vulnerability	VCID-gb2v-96xj-ybad

vulnerability	VCID-gyed-x6s8-ybhr

vulnerability	VCID-j6cj-ftyd-3ffa

vulnerability	VCID-k59r-wjt3-wqe5

vulnerability	VCID-maw6-4qs5-ykae

vulnerability	VCID-n9yk-e49f-n7e7

vulnerability	VCID-nmq2-8ysj-4fbc

vulnerability	VCID-rzj2-4kcj-43dq

vulnerability	VCID-sr8e-w1qk-r7fz

vulnerability	VCID-v7tp-1t4h-zqeg

vulnerability	VCID-v8ku-sjc8-wfga

vulnerability	VCID-vsdf-4tfj-uybe

vulnerability	VCID-wptr-hkjx-s7c3

vulnerability	VCID-xqjr-7xfw-mbh2

vulnerability	VCID-y9ne-rw7e-vugf

vulnerability	VCID-zw2q-kna8-mqcm

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@10.1.0-M1

url pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@11.0.0-M1

purl pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@11.0.0-M1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1e6p-cppr-2bh2

vulnerability	VCID-246u-a4rh-yyd4

vulnerability	VCID-2rmy-13ym-3bgm

vulnerability	VCID-43j2-w5xt-43g9

vulnerability	VCID-4cag-c4pb-dfaz

vulnerability	VCID-5781-s1ny-q7ey

vulnerability	VCID-5sgv-7nsz-5fa8

vulnerability	VCID-74tx-sx8a-guhs

vulnerability	VCID-8myk-ac5b-huh8

vulnerability	VCID-8war-4v58-eub2

vulnerability	VCID-b3bb-9ajg-sfc9

vulnerability	VCID-bks8-nvm9-vbgy

vulnerability	VCID-cfhw-vmcp-y3bc

vulnerability	VCID-d1fm-vbd1-n7au

vulnerability	VCID-fpgj-82wf-ykbw

vulnerability	VCID-gb2v-96xj-ybad

vulnerability	VCID-gyed-x6s8-ybhr

vulnerability	VCID-j6cj-ftyd-3ffa

vulnerability	VCID-k59r-wjt3-wqe5

vulnerability	VCID-maw6-4qs5-ykae

vulnerability	VCID-n9yk-e49f-n7e7

vulnerability	VCID-rzj2-4kcj-43dq

vulnerability	VCID-sr8e-w1qk-r7fz

vulnerability	VCID-v7tp-1t4h-zqeg

vulnerability	VCID-v8ku-sjc8-wfga

vulnerability	VCID-vsdf-4tfj-uybe

vulnerability	VCID-xqjr-7xfw-mbh2

vulnerability	VCID-y9ne-rw7e-vugf

vulnerability	VCID-yrzk-1dbk-muhy

vulnerability	VCID-zw2q-kna8-mqcm

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@11.0.0-M1

url pkg:rpm/redhat/jws5-tomcat@9.0.87-6.redhat_00006.1?arch=el9jws

purl pkg:rpm/redhat/jws5-tomcat@9.0.87-6.redhat_00006.1?arch=el9jws

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-v8ku-sjc8-wfga

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jws5-tomcat@9.0.87-6.redhat_00006.1%3Farch=el9jws

url pkg:rpm/redhat/jws5-tomcat@9.0.87-6.redhat_00006.1?arch=el7jws

purl pkg:rpm/redhat/jws5-tomcat@9.0.87-6.redhat_00006.1?arch=el7jws

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-v8ku-sjc8-wfga

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jws5-tomcat@9.0.87-6.redhat_00006.1%3Farch=el7jws

url pkg:rpm/redhat/jws5-tomcat@9.0.87-6.redhat_00006.1?arch=el8jws

purl pkg:rpm/redhat/jws5-tomcat@9.0.87-6.redhat_00006.1?arch=el8jws

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-v8ku-sjc8-wfga

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jws5-tomcat@9.0.87-6.redhat_00006.1%3Farch=el8jws

url pkg:rpm/redhat/jws6-tomcat@10.1.8-15.redhat_00022.1?arch=el8jws

purl pkg:rpm/redhat/jws6-tomcat@10.1.8-15.redhat_00022.1?arch=el8jws

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-v8ku-sjc8-wfga

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jws6-tomcat@10.1.8-15.redhat_00022.1%3Farch=el8jws

url pkg:rpm/redhat/jws6-tomcat@10.1.8-15.redhat_00022.1?arch=el9jws

purl pkg:rpm/redhat/jws6-tomcat@10.1.8-15.redhat_00022.1?arch=el9jws

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-v8ku-sjc8-wfga

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jws6-tomcat@10.1.8-15.redhat_00022.1%3Farch=el9jws

url pkg:rpm/redhat/pki-servlet-engine@1:9.0.50-1.el9_2?arch=2

purl pkg:rpm/redhat/pki-servlet-engine@1:9.0.50-1.el9_2?arch=2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-v8ku-sjc8-wfga

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/pki-servlet-engine@1:9.0.50-1.el9_2%3Farch=2

url pkg:rpm/redhat/tomcat@1:9.0.87-1.el8_8?arch=4

purl pkg:rpm/redhat/tomcat@1:9.0.87-1.el8_8?arch=4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5sgv-7nsz-5fa8

vulnerability	VCID-v8ku-sjc8-wfga

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/tomcat@1:9.0.87-1.el8_8%3Farch=4

url pkg:rpm/redhat/tomcat@1:9.0.87-1.el8_10?arch=3

purl pkg:rpm/redhat/tomcat@1:9.0.87-1.el8_10?arch=3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5sgv-7nsz-5fa8

vulnerability	VCID-v8ku-sjc8-wfga

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/tomcat@1:9.0.87-1.el8_10%3Farch=3

url pkg:rpm/redhat/tomcat@1:9.0.87-1.el9_2?arch=3

purl pkg:rpm/redhat/tomcat@1:9.0.87-1.el9_2?arch=3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5sgv-7nsz-5fa8

vulnerability	VCID-v8ku-sjc8-wfga

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/tomcat@1:9.0.87-1.el9_2%3Farch=3

url pkg:rpm/redhat/tomcat@1:9.0.87-1.el9_4?arch=3

purl pkg:rpm/redhat/tomcat@1:9.0.87-1.el9_4?arch=3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5sgv-7nsz-5fa8

vulnerability	VCID-v8ku-sjc8-wfga

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/tomcat@1:9.0.87-1.el9_4%3Farch=3

url pkg:rpm/redhat/tomcat@1:9.0.87-2.el9_5?arch=1

purl pkg:rpm/redhat/tomcat@1:9.0.87-2.el9_5?arch=1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5sgv-7nsz-5fa8

vulnerability	VCID-v8ku-sjc8-wfga

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/tomcat@1:9.0.87-2.el9_5%3Farch=1

References

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-50379.json

reference_id

reference_type

scores

value	8.1
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-50379.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2024-50379

reference_id

reference_type

scores

value	0.86495
scoring_system	epss
scoring_elements	0.99417
published_at	2026-04-16T12:55:00Z

value	0.86495
scoring_system	epss
scoring_elements	0.99414
published_at	2026-04-13T12:55:00Z

value	0.86495
scoring_system	epss
scoring_elements	0.99413
published_at	2026-04-12T12:55:00Z

value	0.86495
scoring_system	epss
scoring_elements	0.99409
published_at	2026-04-07T12:55:00Z

value	0.86495
scoring_system	epss
scoring_elements	0.99408
published_at	2026-04-04T12:55:00Z

value	0.86495
scoring_system	epss
scoring_elements	0.9941
published_at	2026-04-08T12:55:00Z

value	0.86495
scoring_system	epss
scoring_elements	0.99411
published_at	2026-04-09T12:55:00Z

value	0.86495
scoring_system	epss
scoring_elements	0.99412
published_at	2026-04-11T12:55:00Z

value	0.87447
scoring_system	epss
scoring_elements	0.99451
published_at	2026-04-02T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2024-50379

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://github.com/apache/tomcat

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	7.2
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/apache/tomcat

reference_url

https://github.com/apache/tomcat/commit/05ddeeaa54df1e2dc427d0164bedd6b79f78d81f

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	7.2
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/apache/tomcat/commit/05ddeeaa54df1e2dc427d0164bedd6b79f78d81f

reference_url

https://github.com/apache/tomcat/commit/43b507ebac9d268b1ea3d908e296cc6e46795c00

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	7.2
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/apache/tomcat/commit/43b507ebac9d268b1ea3d908e296cc6e46795c00

reference_url

https://github.com/apache/tomcat/commit/631500b0c9b2a2a2abb707e3de2e10a5936e5d41

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	7.2
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/apache/tomcat/commit/631500b0c9b2a2a2abb707e3de2e10a5936e5d41

reference_url

https://github.com/apache/tomcat/commit/684247ae85fa633b9197b32391de59fc54703842

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	7.2
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/apache/tomcat/commit/684247ae85fa633b9197b32391de59fc54703842

reference_url

https://github.com/apache/tomcat/commit/8554f6b1722b33a2ce8b0a3fad37825f3a75f2d2

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	7.2
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/apache/tomcat/commit/8554f6b1722b33a2ce8b0a3fad37825f3a75f2d2

reference_url

https://github.com/apache/tomcat/commit/cc7a98b57c6dc1df21979fcff94a36e068f4456c

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	7.2
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/apache/tomcat/commit/cc7a98b57c6dc1df21979fcff94a36e068f4456c

reference_url

https://lists.apache.org/thread/y6lj6q1xnp822g6ro70tn19sgtjmr80r

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	7.2
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U

value	HIGH
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2024-12-17T16:54:54Z/

url

https://lists.apache.org/thread/y6lj6q1xnp822g6ro70tn19sgtjmr80r

reference_url

https://lists.debian.org/debian-lts-announce/2025/01/msg00009.html

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	7.2
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://lists.debian.org/debian-lts-announce/2025/01/msg00009.html

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2024-50379

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	7.2
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2024-50379

reference_url

https://security.netapp.com/advisory/ntap-20250103-0003

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	7.2
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://security.netapp.com/advisory/ntap-20250103-0003

reference_url

https://tomcat.apache.org/security-10.html#Fixed_in_Apache_Tomcat_10.1.34

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	7.2
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://tomcat.apache.org/security-10.html#Fixed_in_Apache_Tomcat_10.1.34

reference_url

https://tomcat.apache.org/security-11.html#Fixed_in_Apache_Tomcat_11.0.2

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	7.2
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://tomcat.apache.org/security-11.html#Fixed_in_Apache_Tomcat_11.0.2

reference_url

https://tomcat.apache.org/security-9.html#Fixed_in_Apache_Tomcat_9.0.98

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	7.2
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://tomcat.apache.org/security-9.html#Fixed_in_Apache_Tomcat_9.0.98

reference_url

http://www.openwall.com/lists/oss-security/2024/12/17/4

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	7.2
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U

value	HIGH
scoring_system	generic_textual
scoring_elements

url

http://www.openwall.com/lists/oss-security/2024/12/17/4

reference_url

http://www.openwall.com/lists/oss-security/2024/12/18/2

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	7.2
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U

value	HIGH
scoring_system	generic_textual
scoring_elements

url

http://www.openwall.com/lists/oss-security/2024/12/18/2

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2332817
reference_id	2332817
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2332817

reference_url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-50379

reference_id

CVE-2024-50379

reference_type

scores

value	Important
scoring_system	apache_tomcat
scoring_elements

url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-50379

reference_url

https://github.com/advisories/GHSA-5j33-cvvr-w245

reference_id

GHSA-5j33-cvvr-w245

reference_type

scores

value	HIGH
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-5j33-cvvr-w245

reference_url	https://access.redhat.com/errata/RHSA-2025:0342
reference_id	RHSA-2025:0342
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:0342

reference_url	https://access.redhat.com/errata/RHSA-2025:0343
reference_id	RHSA-2025:0343
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:0343

reference_url	https://access.redhat.com/errata/RHSA-2025:0361
reference_id	RHSA-2025:0361
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:0361

reference_url	https://access.redhat.com/errata/RHSA-2025:0362
reference_id	RHSA-2025:0362
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:0362

reference_url	https://access.redhat.com/errata/RHSA-2025:1920
reference_id	RHSA-2025:1920
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:1920

reference_url	https://access.redhat.com/errata/RHSA-2025:3645
reference_id	RHSA-2025:3645
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:3645

reference_url	https://access.redhat.com/errata/RHSA-2025:3646
reference_id	RHSA-2025:3646
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:3646

reference_url	https://access.redhat.com/errata/RHSA-2025:3647
reference_id	RHSA-2025:3647
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:3647

reference_url	https://access.redhat.com/errata/RHSA-2025:3683
reference_id	RHSA-2025:3683
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:3683

reference_url	https://access.redhat.com/errata/RHSA-2025:3684
reference_id	RHSA-2025:3684
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:3684

reference_url	https://usn.ubuntu.com/7705-1/
reference_id	USN-7705-1
reference_type
scores
url	https://usn.ubuntu.com/7705-1/

Weaknesses

cwe_id	367
name	Time-of-check Time-of-use (TOCTOU) Race Condition
description	The product checks the state of a resource before using that resource, but the resource's state can change between the check and the use in a way that invalidates the results of the check. This can cause the product to perform invalid actions when the resource is in an unexpected state.

cwe_id	937
name	OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities
description	Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2013.

cwe_id	1035
name	OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities
description	Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2017.

Exploits

Severity_range_score 7.0 - 9.8

Exploitability 2.0

Weighted_severity 8.8

Risk_score 10.0

Resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-v8ku-sjc8-wfga

Vulnerability Instance