Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-dtvw-92bk-wbcf
SummaryA vulnerability in Apache Tomcat allows an attacker to remotely trigger a denial of service. An error introduced as part of a change to improve error handling during non-blocking I/O meant that the error flag associated with the Request object was not reset between requests. This meant that once a non-blocking I/O error occurred, all future requests handled by that request object would fail. Users were able to trigger non-blocking I/O errors, e.g. by dropping a connection, thereby creating the possibility of triggering a DoS. Applications that do not use non-blocking I/O are not exposed to this vulnerability. This issue affects Apache Tomcat 10.0.3 to 10.0.4; 9.0.44; 8.5.64.
Aliases
0
alias CVE-2021-30639
1
alias GHSA-44qp-qhfv-c7f6
Fixed_packages
0
url pkg:apache/tomcat@8.5.65
purl pkg:apache/tomcat@8.5.65
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-kwab-3s4q-eka4
resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@8.5.65
1
url pkg:apache/tomcat@9.0.45
purl pkg:apache/tomcat@9.0.45
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-kwab-3s4q-eka4
resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@9.0.45
2
url pkg:apache/tomcat@10.0.5
purl pkg:apache/tomcat@10.0.5
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-kwab-3s4q-eka4
resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@10.0.5
3
url pkg:deb/debian/tomcat9@0?distro=trixie
purl pkg:deb/debian/tomcat9@0?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat9@0%3Fdistro=trixie
4
url pkg:deb/debian/tomcat9@9.0.43-2~deb11u10?distro=trixie
purl pkg:deb/debian/tomcat9@9.0.43-2~deb11u10?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat9@9.0.43-2~deb11u10%3Fdistro=trixie
5
url pkg:deb/debian/tomcat9@9.0.70-2?distro=trixie
purl pkg:deb/debian/tomcat9@9.0.70-2?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat9@9.0.70-2%3Fdistro=trixie
6
url pkg:deb/debian/tomcat9@9.0.95-1?distro=trixie
purl pkg:deb/debian/tomcat9@9.0.95-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat9@9.0.95-1%3Fdistro=trixie
7
url pkg:deb/debian/tomcat9@9.0.115-1?distro=trixie
purl pkg:deb/debian/tomcat9@9.0.115-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat9@9.0.115-1%3Fdistro=trixie
8
url pkg:ebuild/www-servers/tomcat@8.5.82
purl pkg:ebuild/www-servers/tomcat@8.5.82
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:ebuild/www-servers/tomcat@8.5.82
9
url pkg:ebuild/www-servers/tomcat@9.0.65
purl pkg:ebuild/www-servers/tomcat@9.0.65
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:ebuild/www-servers/tomcat@9.0.65
10
url pkg:ebuild/www-servers/tomcat@10.0.23
purl pkg:ebuild/www-servers/tomcat@10.0.23
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:ebuild/www-servers/tomcat@10.0.23
11
url pkg:maven/org.apache.tomcat/tomcat@8.5.65
purl pkg:maven/org.apache.tomcat/tomcat@8.5.65
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-ayrd-8ntf-hkh3
1
vulnerability VCID-b3bb-9ajg-sfc9
2
vulnerability VCID-g7bk-891a-uufy
3
vulnerability VCID-j8tk-s915-pbfy
4
vulnerability VCID-kwab-3s4q-eka4
5
vulnerability VCID-nmq2-8ysj-4fbc
6
vulnerability VCID-p8q2-pt96-5ye8
7
vulnerability VCID-qkx6-32cj-jfbp
8
vulnerability VCID-wptr-hkjx-s7c3
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@8.5.65
12
url pkg:maven/org.apache.tomcat/tomcat@9.0.45
purl pkg:maven/org.apache.tomcat/tomcat@9.0.45
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-b3bb-9ajg-sfc9
1
vulnerability VCID-j8tk-s915-pbfy
2
vulnerability VCID-kwab-3s4q-eka4
3
vulnerability VCID-nmq2-8ysj-4fbc
4
vulnerability VCID-p8q2-pt96-5ye8
5
vulnerability VCID-qkx6-32cj-jfbp
6
vulnerability VCID-stds-vw5z-auhp
7
vulnerability VCID-wptr-hkjx-s7c3
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@9.0.45
13
url pkg:maven/org.apache.tomcat/tomcat@10.0.5
purl pkg:maven/org.apache.tomcat/tomcat@10.0.5
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-j8tk-s915-pbfy
1
vulnerability VCID-kwab-3s4q-eka4
2
vulnerability VCID-nmq2-8ysj-4fbc
3
vulnerability VCID-p8q2-pt96-5ye8
4
vulnerability VCID-qkx6-32cj-jfbp
5
vulnerability VCID-wptr-hkjx-s7c3
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@10.0.5
14
url pkg:maven/org.apache.tomcat/tomcat-coyote@8.5.65
purl pkg:maven/org.apache.tomcat/tomcat-coyote@8.5.65
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-885s-t4dx-dybv
1
vulnerability VCID-b3bb-9ajg-sfc9
2
vulnerability VCID-j6cj-ftyd-3ffa
3
vulnerability VCID-j8tk-s915-pbfy
4
vulnerability VCID-nmq2-8ysj-4fbc
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat-coyote@8.5.65
15
url pkg:maven/org.apache.tomcat/tomcat-coyote@9.0.45
purl pkg:maven/org.apache.tomcat/tomcat-coyote@9.0.45
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-885s-t4dx-dybv
1
vulnerability VCID-b3bb-9ajg-sfc9
2
vulnerability VCID-j6cj-ftyd-3ffa
3
vulnerability VCID-j8tk-s915-pbfy
4
vulnerability VCID-nmq2-8ysj-4fbc
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat-coyote@9.0.45
16
url pkg:maven/org.apache.tomcat/tomcat-coyote@10.0.5
purl pkg:maven/org.apache.tomcat/tomcat-coyote@10.0.5
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-885s-t4dx-dybv
1
vulnerability VCID-j8tk-s915-pbfy
2
vulnerability VCID-nmq2-8ysj-4fbc
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat-coyote@10.0.5
17
url pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@8.5.65
purl pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@8.5.65
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-ayrd-8ntf-hkh3
1
vulnerability VCID-fpgj-82wf-ykbw
2
vulnerability VCID-j6cj-ftyd-3ffa
3
vulnerability VCID-j8tk-s915-pbfy
4
vulnerability VCID-kwab-3s4q-eka4
5
vulnerability VCID-nmq2-8ysj-4fbc
6
vulnerability VCID-p8q2-pt96-5ye8
7
vulnerability VCID-qkx6-32cj-jfbp
8
vulnerability VCID-v7tp-1t4h-zqeg
9
vulnerability VCID-vsdf-4tfj-uybe
10
vulnerability VCID-wptr-hkjx-s7c3
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@8.5.65
18
url pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@9.0.45
purl pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@9.0.45
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-fpgj-82wf-ykbw
1
vulnerability VCID-j6cj-ftyd-3ffa
2
vulnerability VCID-j8tk-s915-pbfy
3
vulnerability VCID-kwab-3s4q-eka4
4
vulnerability VCID-nmq2-8ysj-4fbc
5
vulnerability VCID-p8q2-pt96-5ye8
6
vulnerability VCID-qkx6-32cj-jfbp
7
vulnerability VCID-stds-vw5z-auhp
8
vulnerability VCID-v7tp-1t4h-zqeg
9
vulnerability VCID-vsdf-4tfj-uybe
10
vulnerability VCID-wptr-hkjx-s7c3
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@9.0.45
19
url pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@10.0.5
purl pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@10.0.5
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-j8tk-s915-pbfy
1
vulnerability VCID-kwab-3s4q-eka4
2
vulnerability VCID-nmq2-8ysj-4fbc
3
vulnerability VCID-p8q2-pt96-5ye8
4
vulnerability VCID-qkx6-32cj-jfbp
5
vulnerability VCID-wptr-hkjx-s7c3
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@10.0.5
Affected_packages
0
url pkg:apache/tomcat@8.5.64
purl pkg:apache/tomcat@8.5.64
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-dtvw-92bk-wbcf
resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@8.5.64
1
url pkg:apache/tomcat@9.0.44
purl pkg:apache/tomcat@9.0.44
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-dtvw-92bk-wbcf
resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@9.0.44
2
url pkg:apache/tomcat@10.0.3
purl pkg:apache/tomcat@10.0.3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-dtvw-92bk-wbcf
resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@10.0.3
3
url pkg:apache/tomcat@10.0.4
purl pkg:apache/tomcat@10.0.4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-dtvw-92bk-wbcf
resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@10.0.4
4
url pkg:maven/org.apache.tomcat/tomcat@8.5.64
purl pkg:maven/org.apache.tomcat/tomcat@8.5.64
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-ayrd-8ntf-hkh3
1
vulnerability VCID-b3bb-9ajg-sfc9
2
vulnerability VCID-dtvw-92bk-wbcf
3
vulnerability VCID-g7bk-891a-uufy
4
vulnerability VCID-j8tk-s915-pbfy
5
vulnerability VCID-kwab-3s4q-eka4
6
vulnerability VCID-nmq2-8ysj-4fbc
7
vulnerability VCID-p8q2-pt96-5ye8
8
vulnerability VCID-qkx6-32cj-jfbp
9
vulnerability VCID-wptr-hkjx-s7c3
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@8.5.64
5
url pkg:maven/org.apache.tomcat/tomcat@9.0.0
purl pkg:maven/org.apache.tomcat/tomcat@9.0.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2sbh-sy57-3uez
1
vulnerability VCID-39e3-jfbg-s3hk
2
vulnerability VCID-46bv-6b7y-3bca
3
vulnerability VCID-4aaa-errb-2qdw
4
vulnerability VCID-6pm1-byhk-eqfg
5
vulnerability VCID-a8gk-n8bq-87cp
6
vulnerability VCID-aeeu-fpay-wufz
7
vulnerability VCID-arkn-bca7-hqam
8
vulnerability VCID-b3bb-9ajg-sfc9
9
vulnerability VCID-dtvw-92bk-wbcf
10
vulnerability VCID-dy6m-zt6r-9ubd
11
vulnerability VCID-e7kd-kk57-mkd6
12
vulnerability VCID-eb37-mkxf-7fgw
13
vulnerability VCID-enaj-f97c-jbh7
14
vulnerability VCID-f77q-v5xp-e7dy
15
vulnerability VCID-j8tk-s915-pbfy
16
vulnerability VCID-kwab-3s4q-eka4
17
vulnerability VCID-m2zn-ja8d-7kg8
18
vulnerability VCID-n3zn-tuck-gkfe
19
vulnerability VCID-nmq2-8ysj-4fbc
20
vulnerability VCID-qbfw-16rt-qyc7
21
vulnerability VCID-ran8-rnqn-tkbc
22
vulnerability VCID-vdnj-sqmx-e3ep
23
vulnerability VCID-xshb-a2kb-c7gs
24
vulnerability VCID-yfx4-4gsc-2kgh
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@9.0.0
6
url pkg:maven/org.apache.tomcat/tomcat@9.0.44
purl pkg:maven/org.apache.tomcat/tomcat@9.0.44
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-b3bb-9ajg-sfc9
1
vulnerability VCID-dtvw-92bk-wbcf
2
vulnerability VCID-j8tk-s915-pbfy
3
vulnerability VCID-kwab-3s4q-eka4
4
vulnerability VCID-nmq2-8ysj-4fbc
5
vulnerability VCID-p8q2-pt96-5ye8
6
vulnerability VCID-qkx6-32cj-jfbp
7
vulnerability VCID-stds-vw5z-auhp
8
vulnerability VCID-wptr-hkjx-s7c3
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@9.0.44
7
url pkg:maven/org.apache.tomcat/tomcat@10.0.3
purl pkg:maven/org.apache.tomcat/tomcat@10.0.3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-dtvw-92bk-wbcf
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@10.0.3
8
url pkg:maven/org.apache.tomcat/tomcat@10.0.4
purl pkg:maven/org.apache.tomcat/tomcat@10.0.4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-dtvw-92bk-wbcf
1
vulnerability VCID-j8tk-s915-pbfy
2
vulnerability VCID-kwab-3s4q-eka4
3
vulnerability VCID-nmq2-8ysj-4fbc
4
vulnerability VCID-p8q2-pt96-5ye8
5
vulnerability VCID-qkx6-32cj-jfbp
6
vulnerability VCID-wptr-hkjx-s7c3
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@10.0.4
9
url pkg:maven/org.apache.tomcat/tomcat-coyote@8.5.64
purl pkg:maven/org.apache.tomcat/tomcat-coyote@8.5.64
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-885s-t4dx-dybv
1
vulnerability VCID-b3bb-9ajg-sfc9
2
vulnerability VCID-dtvw-92bk-wbcf
3
vulnerability VCID-j6cj-ftyd-3ffa
4
vulnerability VCID-j8tk-s915-pbfy
5
vulnerability VCID-nmq2-8ysj-4fbc
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat-coyote@8.5.64
10
url pkg:maven/org.apache.tomcat/tomcat-coyote@9.0.44
purl pkg:maven/org.apache.tomcat/tomcat-coyote@9.0.44
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-885s-t4dx-dybv
1
vulnerability VCID-b3bb-9ajg-sfc9
2
vulnerability VCID-dtvw-92bk-wbcf
3
vulnerability VCID-j6cj-ftyd-3ffa
4
vulnerability VCID-j8tk-s915-pbfy
5
vulnerability VCID-nmq2-8ysj-4fbc
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat-coyote@9.0.44
11
url pkg:maven/org.apache.tomcat/tomcat-coyote@10.0.3
purl pkg:maven/org.apache.tomcat/tomcat-coyote@10.0.3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-dtvw-92bk-wbcf
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat-coyote@10.0.3
12
url pkg:maven/org.apache.tomcat/tomcat-coyote@10.0.4
purl pkg:maven/org.apache.tomcat/tomcat-coyote@10.0.4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-885s-t4dx-dybv
1
vulnerability VCID-dtvw-92bk-wbcf
2
vulnerability VCID-j8tk-s915-pbfy
3
vulnerability VCID-nmq2-8ysj-4fbc
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat-coyote@10.0.4
13
url pkg:maven/tomcat/catalina@8.5.64
purl pkg:maven/tomcat/catalina@8.5.64
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-dtvw-92bk-wbcf
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/tomcat/catalina@8.5.64
14
url pkg:maven/tomcat/catalina@9.0.44
purl pkg:maven/tomcat/catalina@9.0.44
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-dtvw-92bk-wbcf
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/tomcat/catalina@9.0.44
15
url pkg:maven/tomcat/catalina@10.0.3
purl pkg:maven/tomcat/catalina@10.0.3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-dtvw-92bk-wbcf
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/tomcat/catalina@10.0.3
16
url pkg:maven/tomcat/catalina@10.0.4
purl pkg:maven/tomcat/catalina@10.0.4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-dtvw-92bk-wbcf
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/tomcat/catalina@10.0.4
17
url pkg:maven/tomcat/jasper-runtime@8.5.64
purl pkg:maven/tomcat/jasper-runtime@8.5.64
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-dtvw-92bk-wbcf
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/tomcat/jasper-runtime@8.5.64
18
url pkg:maven/tomcat/jasper-runtime@9.0.44
purl pkg:maven/tomcat/jasper-runtime@9.0.44
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-dtvw-92bk-wbcf
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/tomcat/jasper-runtime@9.0.44
19
url pkg:maven/tomcat/jasper-runtime@10.0.3
purl pkg:maven/tomcat/jasper-runtime@10.0.3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-dtvw-92bk-wbcf
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/tomcat/jasper-runtime@10.0.3
20
url pkg:maven/tomcat/jasper-runtime@10.0.4
purl pkg:maven/tomcat/jasper-runtime@10.0.4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-dtvw-92bk-wbcf
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/tomcat/jasper-runtime@10.0.4
References
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-30639.json
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-30639.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2021-30639
reference_id
reference_type
scores
0
value 0.00422
scoring_system epss
scoring_elements 0.62108
published_at 2026-04-16T12:55:00Z
1
value 0.00422
scoring_system epss
scoring_elements 0.62065
published_at 2026-04-13T12:55:00Z
2
value 0.00422
scoring_system epss
scoring_elements 0.62087
published_at 2026-04-12T12:55:00Z
3
value 0.00422
scoring_system epss
scoring_elements 0.62097
published_at 2026-04-11T12:55:00Z
4
value 0.00422
scoring_system epss
scoring_elements 0.62077
published_at 2026-04-09T12:55:00Z
5
value 0.00422
scoring_system epss
scoring_elements 0.62059
published_at 2026-04-08T12:55:00Z
6
value 0.00422
scoring_system epss
scoring_elements 0.6204
published_at 2026-04-04T12:55:00Z
7
value 0.00422
scoring_system epss
scoring_elements 0.62009
published_at 2026-04-07T12:55:00Z
8
value 0.00422
scoring_system epss
scoring_elements 0.61938
published_at 2026-04-01T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2021-30639
2
reference_url https://github.com/apache/tomcat/commit/411caf29ac1c16e6ac291b6e5543b2371dbd25e2
reference_id
reference_type
scores
url https://github.com/apache/tomcat/commit/411caf29ac1c16e6ac291b6e5543b2371dbd25e2
3
reference_url https://github.com/apache/tomcat/commit/8ece47c4a9fb9349e8862c84358a4dd23c643a24
reference_id
reference_type
scores
url https://github.com/apache/tomcat/commit/8ece47c4a9fb9349e8862c84358a4dd23c643a24
4
reference_url https://github.com/apache/tomcat/commit/b59099e4ca501a039510334ebe1024971cd6f959
reference_id
reference_type
scores
url https://github.com/apache/tomcat/commit/b59099e4ca501a039510334ebe1024971cd6f959
5
reference_url https://kc.mcafee.com/corporate/index?page=content&id=SB10366
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://kc.mcafee.com/corporate/index?page=content&id=SB10366
6
reference_url https://lists.apache.org/thread.html/r79a7c019712b39aedf7cf4da9276d80610f04441b2a4f6506cb2daaf@%3Cdev.tomcat.apache.org%3E
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://lists.apache.org/thread.html/r79a7c019712b39aedf7cf4da9276d80610f04441b2a4f6506cb2daaf@%3Cdev.tomcat.apache.org%3E
7
reference_url https://lists.apache.org/thread.html/r79a7c019712b39aedf7cf4da9276d80610f04441b2a4f6506cb2daaf@%3Cusers.tomcat.apache.org%3E
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://lists.apache.org/thread.html/r79a7c019712b39aedf7cf4da9276d80610f04441b2a4f6506cb2daaf@%3Cusers.tomcat.apache.org%3E
8
reference_url https://lists.apache.org/thread.html/rd84fae1f474597bdf358f5bdc0a5c453c507bd527b83e8be6b5ea3f4%40%3Cannounce.tomcat.apache.org%3E
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://lists.apache.org/thread.html/rd84fae1f474597bdf358f5bdc0a5c453c507bd527b83e8be6b5ea3f4%40%3Cannounce.tomcat.apache.org%3E
9
reference_url https://security.gentoo.org/glsa/202208-34
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://security.gentoo.org/glsa/202208-34
10
reference_url https://security.netapp.com/advisory/ntap-20210827-0007
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://security.netapp.com/advisory/ntap-20210827-0007
11
reference_url https://security.netapp.com/advisory/ntap-20210827-0007/
reference_id
reference_type
scores
url https://security.netapp.com/advisory/ntap-20210827-0007/
12
reference_url https://www.oracle.com/security-alerts/cpujan2022.html
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://www.oracle.com/security-alerts/cpujan2022.html
13
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1981540
reference_id 1981540
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1981540
14
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30639
reference_id CVE-2021-30639
reference_type
scores
0
value Important
scoring_system apache_tomcat
scoring_elements
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30639
15
reference_url https://nvd.nist.gov/vuln/detail/CVE-2021-30639
reference_id CVE-2021-30639
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2021-30639
16
reference_url https://github.com/advisories/GHSA-44qp-qhfv-c7f6
reference_id GHSA-44qp-qhfv-c7f6
reference_type
scores
0
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-44qp-qhfv-c7f6
Weaknesses
0
cwe_id 1035
name OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities
description Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2017.
1
cwe_id 755
name Improper Handling of Exceptional Conditions
description The product does not handle or incorrectly handles an exceptional condition.
2
cwe_id 937
name OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities
description Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2013.
3
cwe_id 459
name Incomplete Cleanup
description The product does not properly clean up and remove temporary or supporting resources after they have been used.
Exploits
Severity_range_score7.0 - 8.9
Exploitability0.5
Weighted_severity8.0
Risk_score4.0
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-dtvw-92bk-wbcf