Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-ta1m-dh8x-nubc
Summaryorg/apache/catalina/filters/CsrfPreventionFilter.java in Apache Tomcat 6.x before 6.0.36 and 7.x before 7.0.32 allows remote attackers to bypass the cross-site request forgery (CSRF) protection mechanism via a request that lacks a session identifier.
Aliases
0
alias CVE-2012-4431
1
alias GHSA-76vr-72mv-mf3q
Fixed_packages
0
url pkg:apache/tomcat@6.0.36
purl pkg:apache/tomcat@6.0.36
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-p4dn-y54m-8fd1
1
vulnerability VCID-ryha-ndms-afbn
resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@6.0.36
1
url pkg:apache/tomcat@7.0.32
purl pkg:apache/tomcat@7.0.32
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-ryha-ndms-afbn
resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@7.0.32
2
url pkg:ebuild/www-servers/tomcat@7.0.56
purl pkg:ebuild/www-servers/tomcat@7.0.56
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:ebuild/www-servers/tomcat@7.0.56
Affected_packages
0
url pkg:apache/tomcat@6.0.30
purl pkg:apache/tomcat@6.0.30
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-618c-ar98-qfcr
1
vulnerability VCID-7ej8-5f77-cybb
2
vulnerability VCID-hxj6-mupf-abbc
3
vulnerability VCID-ta1m-dh8x-nubc
resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@6.0.30
1
url pkg:apache/tomcat@6.0.35
purl pkg:apache/tomcat@6.0.35
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-fpuc-fe6m-47c6
1
vulnerability VCID-mwk8-b5c9-kbb9
2
vulnerability VCID-n76n-ywja-rbhh
3
vulnerability VCID-ta1m-dh8x-nubc
4
vulnerability VCID-vd1s-m27a-8ucc
resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@6.0.35
2
url pkg:apache/tomcat@7.0.0
purl pkg:apache/tomcat@7.0.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-18q4-zark-s7a7
1
vulnerability VCID-1k8f-vsg1-k3d6
2
vulnerability VCID-241m-q6vd-kudk
3
vulnerability VCID-2sbh-sy57-3uez
4
vulnerability VCID-3cr9-g81m-4ugy
5
vulnerability VCID-3n4t-bvb1-5qer
6
vulnerability VCID-3r3s-q21j-c3au
7
vulnerability VCID-4aaa-errb-2qdw
8
vulnerability VCID-4mkw-7haq-pkgn
9
vulnerability VCID-5eqm-218u-p7gq
10
vulnerability VCID-618c-ar98-qfcr
11
vulnerability VCID-66kh-s6cr-tqf9
12
vulnerability VCID-68fk-4g86-ekbp
13
vulnerability VCID-7cpu-h5fr-8ffd
14
vulnerability VCID-7ej8-5f77-cybb
15
vulnerability VCID-886n-1vzv-syc6
16
vulnerability VCID-95d1-arxd-hkd1
17
vulnerability VCID-95fn-d2ad-qyg6
18
vulnerability VCID-9exq-fhv6-bbea
19
vulnerability VCID-a1by-zvtm-akdc
20
vulnerability VCID-a8gk-n8bq-87cp
21
vulnerability VCID-afm2-uj45-xkgx
22
vulnerability VCID-arkn-bca7-hqam
23
vulnerability VCID-c4jv-ws83-x7g2
24
vulnerability VCID-d9ys-kxh6-nkgr
25
vulnerability VCID-dhun-hj5q-dfch
26
vulnerability VCID-dzpn-w4b3-vbcm
27
vulnerability VCID-e2kr-7pmg-gfc9
28
vulnerability VCID-eb37-mkxf-7fgw
29
vulnerability VCID-f2zy-gq57-ufat
30
vulnerability VCID-fpuc-fe6m-47c6
31
vulnerability VCID-fyfz-6tr5-2fc7
32
vulnerability VCID-g7bk-891a-uufy
33
vulnerability VCID-gv12-4ruf-kfhq
34
vulnerability VCID-h9ds-trhx-m7aj
35
vulnerability VCID-hhk9-cr54-8fgc
36
vulnerability VCID-hmbm-5ysw-77bu
37
vulnerability VCID-hves-r5bg-yfes
38
vulnerability VCID-hxj6-mupf-abbc
39
vulnerability VCID-j2j9-avuw-n3eq
40
vulnerability VCID-jf7u-dvpd-b7f4
41
vulnerability VCID-kagr-74d9-kyhx
42
vulnerability VCID-kgd1-bzst-muh7
43
vulnerability VCID-kwab-3s4q-eka4
44
vulnerability VCID-kzzv-rhya-j7dd
45
vulnerability VCID-m1zd-uytj-3bej
46
vulnerability VCID-mctd-9zgv-5qgp
47
vulnerability VCID-mwk8-b5c9-kbb9
48
vulnerability VCID-n3ab-nk7c-hqc9
49
vulnerability VCID-n76n-ywja-rbhh
50
vulnerability VCID-p4dn-y54m-8fd1
51
vulnerability VCID-p6ch-pc73-b3ck
52
vulnerability VCID-pqxe-tfhk-47b7
53
vulnerability VCID-q6hm-mmfs-zka5
54
vulnerability VCID-quwu-ep21-cyew
55
vulnerability VCID-ruuh-g3fa-m7d8
56
vulnerability VCID-ryha-ndms-afbn
57
vulnerability VCID-ta1m-dh8x-nubc
58
vulnerability VCID-tcbc-3kgt-muam
59
vulnerability VCID-tfn5-6ckq-wyce
60
vulnerability VCID-tfrs-d458-tfaq
61
vulnerability VCID-vd1s-m27a-8ucc
62
vulnerability VCID-vdnj-sqmx-e3ep
63
vulnerability VCID-w82a-7kk2-p3f1
64
vulnerability VCID-xf8r-kqxb-7qdy
65
vulnerability VCID-xqrn-wuv5-x7de
66
vulnerability VCID-yfx4-4gsc-2kgh
67
vulnerability VCID-ygvw-69am-s7ae
resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@7.0.0
3
url pkg:apache/tomcat@7.0.31
purl pkg:apache/tomcat@7.0.31
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-ta1m-dh8x-nubc
resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@7.0.31
4
url pkg:maven/org.apache.tomcat/tomcat@6.0.0
purl pkg:maven/org.apache.tomcat/tomcat@6.0.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-12du-1vyt-bkgx
1
vulnerability VCID-18q4-zark-s7a7
2
vulnerability VCID-1k8f-vsg1-k3d6
3
vulnerability VCID-1qt3-ctae-sfgw
4
vulnerability VCID-1v6c-f56v-hqh1
5
vulnerability VCID-241m-q6vd-kudk
6
vulnerability VCID-27q8-96un-9fbk
7
vulnerability VCID-3cr9-g81m-4ugy
8
vulnerability VCID-3n4t-bvb1-5qer
9
vulnerability VCID-3r3s-q21j-c3au
10
vulnerability VCID-4mkw-7haq-pkgn
11
vulnerability VCID-4rcx-xfn5-7kdb
12
vulnerability VCID-68fk-4g86-ekbp
13
vulnerability VCID-6epr-2hbd-skcz
14
vulnerability VCID-6p3e-4u8s-17ep
15
vulnerability VCID-7969-7a8h-zyhh
16
vulnerability VCID-7cpu-h5fr-8ffd
17
vulnerability VCID-7ej8-5f77-cybb
18
vulnerability VCID-7kjm-p97s-zuh8
19
vulnerability VCID-7pd9-1r19-73fe
20
vulnerability VCID-87p8-zvvf-y7dm
21
vulnerability VCID-88v7-kc2y-bfd7
22
vulnerability VCID-8ebv-6941-jqdy
23
vulnerability VCID-95d1-arxd-hkd1
24
vulnerability VCID-a1by-zvtm-akdc
25
vulnerability VCID-a9cu-fxqw-xkdg
26
vulnerability VCID-acmu-9eqb-fya5
27
vulnerability VCID-bung-pa58-ayfv
28
vulnerability VCID-d9ys-kxh6-nkgr
29
vulnerability VCID-dcrp-rae1-zfcm
30
vulnerability VCID-dhun-hj5q-dfch
31
vulnerability VCID-egup-27ub-6uaf
32
vulnerability VCID-egye-da2v-4ybh
33
vulnerability VCID-f2zy-gq57-ufat
34
vulnerability VCID-fpuc-fe6m-47c6
35
vulnerability VCID-g7eg-s99s-xqe7
36
vulnerability VCID-g998-xymt-fudu
37
vulnerability VCID-h9ds-trhx-m7aj
38
vulnerability VCID-hhk9-cr54-8fgc
39
vulnerability VCID-hhkg-mfp5-2kax
40
vulnerability VCID-jau7-gfz8-dkfa
41
vulnerability VCID-jf7u-dvpd-b7f4
42
vulnerability VCID-jtg7-217a-qqhk
43
vulnerability VCID-kagr-74d9-kyhx
44
vulnerability VCID-kgd1-bzst-muh7
45
vulnerability VCID-kzzv-rhya-j7dd
46
vulnerability VCID-m1zd-uytj-3bej
47
vulnerability VCID-mctd-9zgv-5qgp
48
vulnerability VCID-mnf8-t3ew-4fgb
49
vulnerability VCID-mwk8-b5c9-kbb9
50
vulnerability VCID-n76n-ywja-rbhh
51
vulnerability VCID-p4dn-y54m-8fd1
52
vulnerability VCID-p6ch-pc73-b3ck
53
vulnerability VCID-peya-mr7j-vugf
54
vulnerability VCID-qdck-q54n-rkcv
55
vulnerability VCID-quwu-ep21-cyew
56
vulnerability VCID-qxkf-4ddv-j3b7
57
vulnerability VCID-r5rc-rdd9-bfbk
58
vulnerability VCID-r84b-7ay9-ekcm
59
vulnerability VCID-rrdj-ssn7-zfdj
60
vulnerability VCID-rwvj-tq6x-2ubs
61
vulnerability VCID-su1y-2bxh-9qe2
62
vulnerability VCID-t9y6-suc2-2kcg
63
vulnerability VCID-ta1m-dh8x-nubc
64
vulnerability VCID-tcbc-3kgt-muam
65
vulnerability VCID-tcju-3rvu-wkht
66
vulnerability VCID-tfn5-6ckq-wyce
67
vulnerability VCID-tfrs-d458-tfaq
68
vulnerability VCID-twh8-87va-juf9
69
vulnerability VCID-v94p-bxm3-akfd
70
vulnerability VCID-vd1s-m27a-8ucc
71
vulnerability VCID-vm4b-26sq-tfev
72
vulnerability VCID-w82a-7kk2-p3f1
73
vulnerability VCID-wsn2-pd9b-b3g8
74
vulnerability VCID-xf8r-kqxb-7qdy
75
vulnerability VCID-ygvw-69am-s7ae
76
vulnerability VCID-zbbr-wded-9ffj
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@6.0.0
5
url pkg:maven/org.apache.tomcat/tomcat@6.0.30
purl pkg:maven/org.apache.tomcat/tomcat@6.0.30
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-618c-ar98-qfcr
1
vulnerability VCID-7ej8-5f77-cybb
2
vulnerability VCID-hxj6-mupf-abbc
3
vulnerability VCID-ta1m-dh8x-nubc
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@6.0.30
6
url pkg:maven/org.apache.tomcat/tomcat@6.0.35
purl pkg:maven/org.apache.tomcat/tomcat@6.0.35
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-fpuc-fe6m-47c6
1
vulnerability VCID-mwk8-b5c9-kbb9
2
vulnerability VCID-n76n-ywja-rbhh
3
vulnerability VCID-ta1m-dh8x-nubc
4
vulnerability VCID-vd1s-m27a-8ucc
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@6.0.35
7
url pkg:maven/org.apache.tomcat/tomcat@7.0.0
purl pkg:maven/org.apache.tomcat/tomcat@7.0.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-12du-1vyt-bkgx
1
vulnerability VCID-18q4-zark-s7a7
2
vulnerability VCID-1k8f-vsg1-k3d6
3
vulnerability VCID-1v6c-f56v-hqh1
4
vulnerability VCID-241m-q6vd-kudk
5
vulnerability VCID-2sbh-sy57-3uez
6
vulnerability VCID-3cr9-g81m-4ugy
7
vulnerability VCID-3n4t-bvb1-5qer
8
vulnerability VCID-3r3s-q21j-c3au
9
vulnerability VCID-4aaa-errb-2qdw
10
vulnerability VCID-4mkw-7haq-pkgn
11
vulnerability VCID-5eqm-218u-p7gq
12
vulnerability VCID-618c-ar98-qfcr
13
vulnerability VCID-66kh-s6cr-tqf9
14
vulnerability VCID-68fk-4g86-ekbp
15
vulnerability VCID-7cpu-h5fr-8ffd
16
vulnerability VCID-7ej8-5f77-cybb
17
vulnerability VCID-886n-1vzv-syc6
18
vulnerability VCID-8ebv-6941-jqdy
19
vulnerability VCID-95d1-arxd-hkd1
20
vulnerability VCID-95fn-d2ad-qyg6
21
vulnerability VCID-9exq-fhv6-bbea
22
vulnerability VCID-a1by-zvtm-akdc
23
vulnerability VCID-a8gk-n8bq-87cp
24
vulnerability VCID-afm2-uj45-xkgx
25
vulnerability VCID-arkn-bca7-hqam
26
vulnerability VCID-c4jv-ws83-x7g2
27
vulnerability VCID-d9ys-kxh6-nkgr
28
vulnerability VCID-dhun-hj5q-dfch
29
vulnerability VCID-dzpn-w4b3-vbcm
30
vulnerability VCID-e2kr-7pmg-gfc9
31
vulnerability VCID-eb37-mkxf-7fgw
32
vulnerability VCID-egye-da2v-4ybh
33
vulnerability VCID-f2zy-gq57-ufat
34
vulnerability VCID-fpuc-fe6m-47c6
35
vulnerability VCID-fyfz-6tr5-2fc7
36
vulnerability VCID-g7bk-891a-uufy
37
vulnerability VCID-g7eg-s99s-xqe7
38
vulnerability VCID-gv12-4ruf-kfhq
39
vulnerability VCID-gyed-x6s8-ybhr
40
vulnerability VCID-h9ds-trhx-m7aj
41
vulnerability VCID-hhk9-cr54-8fgc
42
vulnerability VCID-hmbm-5ysw-77bu
43
vulnerability VCID-hves-r5bg-yfes
44
vulnerability VCID-hxj6-mupf-abbc
45
vulnerability VCID-j2j9-avuw-n3eq
46
vulnerability VCID-jau7-gfz8-dkfa
47
vulnerability VCID-jf7u-dvpd-b7f4
48
vulnerability VCID-kagr-74d9-kyhx
49
vulnerability VCID-kgd1-bzst-muh7
50
vulnerability VCID-kwab-3s4q-eka4
51
vulnerability VCID-kyb8-rvyw-s7b1
52
vulnerability VCID-kzzv-rhya-j7dd
53
vulnerability VCID-m1zd-uytj-3bej
54
vulnerability VCID-mctd-9zgv-5qgp
55
vulnerability VCID-mwk8-b5c9-kbb9
56
vulnerability VCID-n3ab-nk7c-hqc9
57
vulnerability VCID-n76n-ywja-rbhh
58
vulnerability VCID-p4dn-y54m-8fd1
59
vulnerability VCID-p6ch-pc73-b3ck
60
vulnerability VCID-pqxe-tfhk-47b7
61
vulnerability VCID-q6hm-mmfs-zka5
62
vulnerability VCID-quwu-ep21-cyew
63
vulnerability VCID-r5rc-rdd9-bfbk
64
vulnerability VCID-rrdj-ssn7-zfdj
65
vulnerability VCID-ruuh-g3fa-m7d8
66
vulnerability VCID-ryha-ndms-afbn
67
vulnerability VCID-ta1m-dh8x-nubc
68
vulnerability VCID-tcbc-3kgt-muam
69
vulnerability VCID-tfn5-6ckq-wyce
70
vulnerability VCID-tfrs-d458-tfaq
71
vulnerability VCID-vd1s-m27a-8ucc
72
vulnerability VCID-vdnj-sqmx-e3ep
73
vulnerability VCID-w82a-7kk2-p3f1
74
vulnerability VCID-xf8r-kqxb-7qdy
75
vulnerability VCID-xqrn-wuv5-x7de
76
vulnerability VCID-yfx4-4gsc-2kgh
77
vulnerability VCID-ygvw-69am-s7ae
78
vulnerability VCID-zbbr-wded-9ffj
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@7.0.0
8
url pkg:maven/org.apache.tomcat/tomcat@7.0.31
purl pkg:maven/org.apache.tomcat/tomcat@7.0.31
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-ta1m-dh8x-nubc
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@7.0.31
9
url pkg:rpm/redhat/jbossweb@7.0.17-4.Final_redhat_3.ep6?arch=el5
purl pkg:rpm/redhat/jbossweb@7.0.17-4.Final_redhat_3.ep6?arch=el5
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-12du-1vyt-bkgx
1
vulnerability VCID-g7eg-s99s-xqe7
2
vulnerability VCID-r5rc-rdd9-bfbk
3
vulnerability VCID-ta1m-dh8x-nubc
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jbossweb@7.0.17-4.Final_redhat_3.ep6%3Farch=el5
10
url pkg:rpm/redhat/jbossweb@7.0.17-4.Final_redhat_3.ep6?arch=el6
purl pkg:rpm/redhat/jbossweb@7.0.17-4.Final_redhat_3.ep6?arch=el6
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-12du-1vyt-bkgx
1
vulnerability VCID-g7eg-s99s-xqe7
2
vulnerability VCID-r5rc-rdd9-bfbk
3
vulnerability VCID-ta1m-dh8x-nubc
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jbossweb@7.0.17-4.Final_redhat_3.ep6%3Farch=el6
11
url pkg:rpm/redhat/tomcat6@6.0.35-6_patch_06.ep6?arch=el5
purl pkg:rpm/redhat/tomcat6@6.0.35-6_patch_06.ep6?arch=el5
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-12du-1vyt-bkgx
1
vulnerability VCID-g7eg-s99s-xqe7
2
vulnerability VCID-mwk8-b5c9-kbb9
3
vulnerability VCID-r5rc-rdd9-bfbk
4
vulnerability VCID-ta1m-dh8x-nubc
5
vulnerability VCID-vd1s-m27a-8ucc
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/tomcat6@6.0.35-6_patch_06.ep6%3Farch=el5
12
url pkg:rpm/redhat/tomcat6@6.0.35-29_patch_06.ep6?arch=el6
purl pkg:rpm/redhat/tomcat6@6.0.35-29_patch_06.ep6?arch=el6
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-12du-1vyt-bkgx
1
vulnerability VCID-g7eg-s99s-xqe7
2
vulnerability VCID-mwk8-b5c9-kbb9
3
vulnerability VCID-r5rc-rdd9-bfbk
4
vulnerability VCID-ta1m-dh8x-nubc
5
vulnerability VCID-vd1s-m27a-8ucc
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/tomcat6@6.0.35-29_patch_06.ep6%3Farch=el6
13
url pkg:rpm/redhat/tomcat7@7.0.30-3_patch_02.ep6?arch=el5
purl pkg:rpm/redhat/tomcat7@7.0.30-3_patch_02.ep6?arch=el5
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-ta1m-dh8x-nubc
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/tomcat7@7.0.30-3_patch_02.ep6%3Farch=el5
14
url pkg:rpm/redhat/tomcat7@7.0.30-5_patch_02.ep6?arch=el6
purl pkg:rpm/redhat/tomcat7@7.0.30-5_patch_02.ep6?arch=el6
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-ta1m-dh8x-nubc
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/tomcat7@7.0.30-5_patch_02.ep6%3Farch=el6
References
0
reference_url http://archives.neohapsis.com/archives/bugtraq/2012-12/0045.html
reference_id
reference_type
scores
url http://archives.neohapsis.com/archives/bugtraq/2012-12/0045.html
1
reference_url http://lists.opensuse.org/opensuse-updates/2012-12/msg00089.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://lists.opensuse.org/opensuse-updates/2012-12/msg00089.html
2
reference_url http://lists.opensuse.org/opensuse-updates/2012-12/msg00090.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://lists.opensuse.org/opensuse-updates/2012-12/msg00090.html
3
reference_url http://lists.opensuse.org/opensuse-updates/2013-01/msg00037.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://lists.opensuse.org/opensuse-updates/2013-01/msg00037.html
4
reference_url http://lists.opensuse.org/opensuse-updates/2013-01/msg00051.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://lists.opensuse.org/opensuse-updates/2013-01/msg00051.html
5
reference_url http://lists.opensuse.org/opensuse-updates/2013-01/msg00080.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://lists.opensuse.org/opensuse-updates/2013-01/msg00080.html
6
reference_url http://marc.info/?l=bugtraq&m=136612293908376&w=2
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://marc.info/?l=bugtraq&m=136612293908376&w=2
7
reference_url http://marc.info/?l=bugtraq&m=139344343412337&w=2
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://marc.info/?l=bugtraq&m=139344343412337&w=2
8
reference_url http://rhn.redhat.com/errata/RHSA-2013-0267.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://rhn.redhat.com/errata/RHSA-2013-0267.html
9
reference_url http://rhn.redhat.com/errata/RHSA-2013-0268.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://rhn.redhat.com/errata/RHSA-2013-0268.html
10
reference_url http://rhn.redhat.com/errata/RHSA-2013-0647.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://rhn.redhat.com/errata/RHSA-2013-0647.html
11
reference_url http://rhn.redhat.com/errata/RHSA-2013-0648.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://rhn.redhat.com/errata/RHSA-2013-0648.html
12
reference_url http://rhn.redhat.com/errata/RHSA-2013-1437.html
reference_id
reference_type
scores
url http://rhn.redhat.com/errata/RHSA-2013-1437.html
13
reference_url http://rhn.redhat.com/errata/RHSA-2013-1853.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://rhn.redhat.com/errata/RHSA-2013-1853.html
14
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-4431.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-4431.json
15
reference_url https://api.first.org/data/v1/epss?cve=CVE-2012-4431
reference_id
reference_type
scores
0
value 0.09824
scoring_system epss
scoring_elements 0.92983
published_at 2026-04-16T12:55:00Z
1
value 0.09824
scoring_system epss
scoring_elements 0.92944
published_at 2026-04-01T12:55:00Z
2
value 0.09824
scoring_system epss
scoring_elements 0.92953
published_at 2026-04-02T12:55:00Z
3
value 0.09824
scoring_system epss
scoring_elements 0.92958
published_at 2026-04-04T12:55:00Z
4
value 0.09824
scoring_system epss
scoring_elements 0.92957
published_at 2026-04-07T12:55:00Z
5
value 0.09824
scoring_system epss
scoring_elements 0.92965
published_at 2026-04-08T12:55:00Z
6
value 0.09824
scoring_system epss
scoring_elements 0.92969
published_at 2026-04-09T12:55:00Z
7
value 0.09824
scoring_system epss
scoring_elements 0.92974
published_at 2026-04-11T12:55:00Z
8
value 0.09824
scoring_system epss
scoring_elements 0.92972
published_at 2026-04-12T12:55:00Z
9
value 0.09824
scoring_system epss
scoring_elements 0.92973
published_at 2026-04-13T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2012-4431
16
reference_url http://secunia.com/advisories/57126
reference_id
reference_type
scores
url http://secunia.com/advisories/57126
17
reference_url https://github.com/apache/tomcat
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/apache/tomcat
18
reference_url https://h20566.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c03748878
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://h20566.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c03748878
19
reference_url https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18541
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18541
20
reference_url https://svn.apache.org/viewvc?view=rev&rev=1393088
reference_id
reference_type
scores
url https://svn.apache.org/viewvc?view=rev&rev=1393088
21
reference_url https://svn.apache.org/viewvc?view=rev&rev=1394456
reference_id
reference_type
scores
url https://svn.apache.org/viewvc?view=rev&rev=1394456
22
reference_url http://svn.apache.org/viewvc/tomcat/tc7.0.x/trunk/java/org/apache/catalina/filters/CsrfPreventionFilter.java?r1=1393088&r2=1393087&pathrev=1393088
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://svn.apache.org/viewvc/tomcat/tc7.0.x/trunk/java/org/apache/catalina/filters/CsrfPreventionFilter.java?r1=1393088&r2=1393087&pathrev=1393088
23
reference_url http://svn.apache.org/viewvc/tomcat/tc7.0.x/trunk/webapps/docs/changelog.xml?r1=1393088&r2=1393087&pathrev=1393088
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://svn.apache.org/viewvc/tomcat/tc7.0.x/trunk/webapps/docs/changelog.xml?r1=1393088&r2=1393087&pathrev=1393088
24
reference_url http://svn.apache.org/viewvc?view=revision&revision=1393088
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://svn.apache.org/viewvc?view=revision&revision=1393088
25
reference_url http://tomcat.apache.org/security-6.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://tomcat.apache.org/security-6.html
26
reference_url http://tomcat.apache.org/security-7.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://tomcat.apache.org/security-7.html
27
reference_url http://www.securityfocus.com/bid/56814
reference_id
reference_type
scores
url http://www.securityfocus.com/bid/56814
28
reference_url http://www.securitytracker.com/id?1027834
reference_id
reference_type
scores
url http://www.securitytracker.com/id?1027834
29
reference_url http://www.ubuntu.com/usn/USN-1685-1
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://www.ubuntu.com/usn/USN-1685-1
30
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=883636
reference_id 883636
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=883636
31
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0:*:*:*:*:*:*:*
reference_id cpe:2.3:a:apache:tomcat:6.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0:*:*:*:*:*:*:*
32
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.0:*:*:*:*:*:*:*
reference_id cpe:2.3:a:apache:tomcat:6.0.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.0:*:*:*:*:*:*:*
33
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.0:alpha:*:*:*:*:*:*
reference_id cpe:2.3:a:apache:tomcat:6.0.0:alpha:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.0:alpha:*:*:*:*:*:*
34
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.1:*:*:*:*:*:*:*
reference_id cpe:2.3:a:apache:tomcat:6.0.1:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.1:*:*:*:*:*:*:*
35
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.10:*:*:*:*:*:*:*
reference_id cpe:2.3:a:apache:tomcat:6.0.10:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.10:*:*:*:*:*:*:*
36
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.11:*:*:*:*:*:*:*
reference_id cpe:2.3:a:apache:tomcat:6.0.11:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.11:*:*:*:*:*:*:*
37
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.12:*:*:*:*:*:*:*
reference_id cpe:2.3:a:apache:tomcat:6.0.12:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.12:*:*:*:*:*:*:*
38
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.13:*:*:*:*:*:*:*
reference_id cpe:2.3:a:apache:tomcat:6.0.13:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.13:*:*:*:*:*:*:*
39
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.14:*:*:*:*:*:*:*
reference_id cpe:2.3:a:apache:tomcat:6.0.14:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.14:*:*:*:*:*:*:*
40
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.15:*:*:*:*:*:*:*
reference_id cpe:2.3:a:apache:tomcat:6.0.15:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.15:*:*:*:*:*:*:*
41
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.16:*:*:*:*:*:*:*
reference_id cpe:2.3:a:apache:tomcat:6.0.16:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.16:*:*:*:*:*:*:*
42
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.17:*:*:*:*:*:*:*
reference_id cpe:2.3:a:apache:tomcat:6.0.17:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.17:*:*:*:*:*:*:*
43
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.18:*:*:*:*:*:*:*
reference_id cpe:2.3:a:apache:tomcat:6.0.18:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.18:*:*:*:*:*:*:*
44
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.19:*:*:*:*:*:*:*
reference_id cpe:2.3:a:apache:tomcat:6.0.19:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.19:*:*:*:*:*:*:*
45
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.1:alpha:*:*:*:*:*:*
reference_id cpe:2.3:a:apache:tomcat:6.0.1:alpha:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.1:alpha:*:*:*:*:*:*
46
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.2:*:*:*:*:*:*:*
reference_id cpe:2.3:a:apache:tomcat:6.0.2:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.2:*:*:*:*:*:*:*
47
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.20:*:*:*:*:*:*:*
reference_id cpe:2.3:a:apache:tomcat:6.0.20:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.20:*:*:*:*:*:*:*
48
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.24:*:*:*:*:*:*:*
reference_id cpe:2.3:a:apache:tomcat:6.0.24:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.24:*:*:*:*:*:*:*
49
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.26:*:*:*:*:*:*:*
reference_id cpe:2.3:a:apache:tomcat:6.0.26:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.26:*:*:*:*:*:*:*
50
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.27:*:*:*:*:*:*:*
reference_id cpe:2.3:a:apache:tomcat:6.0.27:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.27:*:*:*:*:*:*:*
51
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.28:*:*:*:*:*:*:*
reference_id cpe:2.3:a:apache:tomcat:6.0.28:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.28:*:*:*:*:*:*:*
52
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.29:*:*:*:*:*:*:*
reference_id cpe:2.3:a:apache:tomcat:6.0.29:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.29:*:*:*:*:*:*:*
53
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.2:alpha:*:*:*:*:*:*
reference_id cpe:2.3:a:apache:tomcat:6.0.2:alpha:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.2:alpha:*:*:*:*:*:*
54
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.2:beta:*:*:*:*:*:*
reference_id cpe:2.3:a:apache:tomcat:6.0.2:beta:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.2:beta:*:*:*:*:*:*
55
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.3:*:*:*:*:*:*:*
reference_id cpe:2.3:a:apache:tomcat:6.0.3:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.3:*:*:*:*:*:*:*
56
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.30:*:*:*:*:*:*:*
reference_id cpe:2.3:a:apache:tomcat:6.0.30:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.30:*:*:*:*:*:*:*
57
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.31:*:*:*:*:*:*:*
reference_id cpe:2.3:a:apache:tomcat:6.0.31:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.31:*:*:*:*:*:*:*
58
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.32:*:*:*:*:*:*:*
reference_id cpe:2.3:a:apache:tomcat:6.0.32:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.32:*:*:*:*:*:*:*
59
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.33:*:*:*:*:*:*:*
reference_id cpe:2.3:a:apache:tomcat:6.0.33:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.33:*:*:*:*:*:*:*
60
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.35:*:*:*:*:*:*:*
reference_id cpe:2.3:a:apache:tomcat:6.0.35:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.35:*:*:*:*:*:*:*
61
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.4:*:*:*:*:*:*:*
reference_id cpe:2.3:a:apache:tomcat:6.0.4:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.4:*:*:*:*:*:*:*
62
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.4:alpha:*:*:*:*:*:*
reference_id cpe:2.3:a:apache:tomcat:6.0.4:alpha:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.4:alpha:*:*:*:*:*:*
63
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.5:*:*:*:*:*:*:*
reference_id cpe:2.3:a:apache:tomcat:6.0.5:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.5:*:*:*:*:*:*:*
64
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.6:*:*:*:*:*:*:*
reference_id cpe:2.3:a:apache:tomcat:6.0.6:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.6:*:*:*:*:*:*:*
65
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.6:alpha:*:*:*:*:*:*
reference_id cpe:2.3:a:apache:tomcat:6.0.6:alpha:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.6:alpha:*:*:*:*:*:*
66
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.7:*:*:*:*:*:*:*
reference_id cpe:2.3:a:apache:tomcat:6.0.7:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.7:*:*:*:*:*:*:*
67
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.7:alpha:*:*:*:*:*:*
reference_id cpe:2.3:a:apache:tomcat:6.0.7:alpha:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.7:alpha:*:*:*:*:*:*
68
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.7:beta:*:*:*:*:*:*
reference_id cpe:2.3:a:apache:tomcat:6.0.7:beta:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.7:beta:*:*:*:*:*:*
69
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.8:*:*:*:*:*:*:*
reference_id cpe:2.3:a:apache:tomcat:6.0.8:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.8:*:*:*:*:*:*:*
70
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.8:alpha:*:*:*:*:*:*
reference_id cpe:2.3:a:apache:tomcat:6.0.8:alpha:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.8:alpha:*:*:*:*:*:*
71
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.9:*:*:*:*:*:*:*
reference_id cpe:2.3:a:apache:tomcat:6.0.9:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.9:*:*:*:*:*:*:*
72
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.9:beta:*:*:*:*:*:*
reference_id cpe:2.3:a:apache:tomcat:6.0.9:beta:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:6.0.9:beta:*:*:*:*:*:*
73
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:7.0.0:*:*:*:*:*:*:*
reference_id cpe:2.3:a:apache:tomcat:7.0.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:7.0.0:*:*:*:*:*:*:*
74
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:7.0.0:beta:*:*:*:*:*:*
reference_id cpe:2.3:a:apache:tomcat:7.0.0:beta:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:7.0.0:beta:*:*:*:*:*:*
75
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:7.0.1:*:*:*:*:*:*:*
reference_id cpe:2.3:a:apache:tomcat:7.0.1:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:7.0.1:*:*:*:*:*:*:*
76
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:7.0.10:*:*:*:*:*:*:*
reference_id cpe:2.3:a:apache:tomcat:7.0.10:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:7.0.10:*:*:*:*:*:*:*
77
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:7.0.11:*:*:*:*:*:*:*
reference_id cpe:2.3:a:apache:tomcat:7.0.11:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:7.0.11:*:*:*:*:*:*:*
78
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:7.0.12:*:*:*:*:*:*:*
reference_id cpe:2.3:a:apache:tomcat:7.0.12:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:7.0.12:*:*:*:*:*:*:*
79
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:7.0.13:*:*:*:*:*:*:*
reference_id cpe:2.3:a:apache:tomcat:7.0.13:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:7.0.13:*:*:*:*:*:*:*
80
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:7.0.14:*:*:*:*:*:*:*
reference_id cpe:2.3:a:apache:tomcat:7.0.14:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:7.0.14:*:*:*:*:*:*:*
81
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:7.0.15:*:*:*:*:*:*:*
reference_id cpe:2.3:a:apache:tomcat:7.0.15:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:7.0.15:*:*:*:*:*:*:*
82
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:7.0.16:*:*:*:*:*:*:*
reference_id cpe:2.3:a:apache:tomcat:7.0.16:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:7.0.16:*:*:*:*:*:*:*
83
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:7.0.17:*:*:*:*:*:*:*
reference_id cpe:2.3:a:apache:tomcat:7.0.17:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:7.0.17:*:*:*:*:*:*:*
84
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:7.0.18:*:*:*:*:*:*:*
reference_id cpe:2.3:a:apache:tomcat:7.0.18:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:7.0.18:*:*:*:*:*:*:*
85
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:7.0.19:*:*:*:*:*:*:*
reference_id cpe:2.3:a:apache:tomcat:7.0.19:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:7.0.19:*:*:*:*:*:*:*
86
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:7.0.2:*:*:*:*:*:*:*
reference_id cpe:2.3:a:apache:tomcat:7.0.2:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:7.0.2:*:*:*:*:*:*:*
87
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:7.0.20:*:*:*:*:*:*:*
reference_id cpe:2.3:a:apache:tomcat:7.0.20:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:7.0.20:*:*:*:*:*:*:*
88
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:7.0.21:*:*:*:*:*:*:*
reference_id cpe:2.3:a:apache:tomcat:7.0.21:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:7.0.21:*:*:*:*:*:*:*
89
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:7.0.22:*:*:*:*:*:*:*
reference_id cpe:2.3:a:apache:tomcat:7.0.22:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:7.0.22:*:*:*:*:*:*:*
90
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:7.0.23:*:*:*:*:*:*:*
reference_id cpe:2.3:a:apache:tomcat:7.0.23:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:7.0.23:*:*:*:*:*:*:*
91
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:7.0.25:*:*:*:*:*:*:*
reference_id cpe:2.3:a:apache:tomcat:7.0.25:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:7.0.25:*:*:*:*:*:*:*
92
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:7.0.28:*:*:*:*:*:*:*
reference_id cpe:2.3:a:apache:tomcat:7.0.28:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:7.0.28:*:*:*:*:*:*:*
93
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:7.0.2:beta:*:*:*:*:*:*
reference_id cpe:2.3:a:apache:tomcat:7.0.2:beta:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:7.0.2:beta:*:*:*:*:*:*
94
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:7.0.3:*:*:*:*:*:*:*
reference_id cpe:2.3:a:apache:tomcat:7.0.3:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:7.0.3:*:*:*:*:*:*:*
95
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:7.0.30:*:*:*:*:*:*:*
reference_id cpe:2.3:a:apache:tomcat:7.0.30:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:7.0.30:*:*:*:*:*:*:*
96
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:7.0.4:*:*:*:*:*:*:*
reference_id cpe:2.3:a:apache:tomcat:7.0.4:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:7.0.4:*:*:*:*:*:*:*
97
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:7.0.4:beta:*:*:*:*:*:*
reference_id cpe:2.3:a:apache:tomcat:7.0.4:beta:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:7.0.4:beta:*:*:*:*:*:*
98
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:7.0.5:*:*:*:*:*:*:*
reference_id cpe:2.3:a:apache:tomcat:7.0.5:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:7.0.5:*:*:*:*:*:*:*
99
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:7.0.6:*:*:*:*:*:*:*
reference_id cpe:2.3:a:apache:tomcat:7.0.6:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:7.0.6:*:*:*:*:*:*:*
100
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:7.0.7:*:*:*:*:*:*:*
reference_id cpe:2.3:a:apache:tomcat:7.0.7:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:7.0.7:*:*:*:*:*:*:*
101
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:7.0.8:*:*:*:*:*:*:*
reference_id cpe:2.3:a:apache:tomcat:7.0.8:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:7.0.8:*:*:*:*:*:*:*
102
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:7.0.9:*:*:*:*:*:*:*
reference_id cpe:2.3:a:apache:tomcat:7.0.9:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:7.0.9:*:*:*:*:*:*:*
103
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-4431
reference_id CVE-2012-4431
reference_type
scores
0
value Important
scoring_system apache_tomcat
scoring_elements
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-4431
104
reference_url https://nvd.nist.gov/vuln/detail/CVE-2012-4431
reference_id CVE-2012-4431
reference_type
scores
0
value 4.3
scoring_system cvssv2
scoring_elements AV:N/AC:M/Au:N/C:N/I:P/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2012-4431
105
reference_url https://github.com/advisories/GHSA-76vr-72mv-mf3q
reference_id GHSA-76vr-72mv-mf3q
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-76vr-72mv-mf3q
106
reference_url https://security.gentoo.org/glsa/201412-29
reference_id GLSA-201412-29
reference_type
scores
url https://security.gentoo.org/glsa/201412-29
107
reference_url https://access.redhat.com/errata/RHSA-2013:0265
reference_id RHSA-2013:0265
reference_type
scores
url https://access.redhat.com/errata/RHSA-2013:0265
108
reference_url https://access.redhat.com/errata/RHSA-2013:0266
reference_id RHSA-2013:0266
reference_type
scores
url https://access.redhat.com/errata/RHSA-2013:0266
109
reference_url https://access.redhat.com/errata/RHSA-2013:0267
reference_id RHSA-2013:0267
reference_type
scores
url https://access.redhat.com/errata/RHSA-2013:0267
110
reference_url https://access.redhat.com/errata/RHSA-2013:0268
reference_id RHSA-2013:0268
reference_type
scores
url https://access.redhat.com/errata/RHSA-2013:0268
111
reference_url https://access.redhat.com/errata/RHSA-2013:0647
reference_id RHSA-2013:0647
reference_type
scores
url https://access.redhat.com/errata/RHSA-2013:0647
112
reference_url https://access.redhat.com/errata/RHSA-2013:0648
reference_id RHSA-2013:0648
reference_type
scores
url https://access.redhat.com/errata/RHSA-2013:0648
113
reference_url https://access.redhat.com/errata/RHSA-2013:0665
reference_id RHSA-2013:0665
reference_type
scores
url https://access.redhat.com/errata/RHSA-2013:0665
114
reference_url https://access.redhat.com/errata/RHSA-2013:1437
reference_id RHSA-2013:1437
reference_type
scores
url https://access.redhat.com/errata/RHSA-2013:1437
115
reference_url https://access.redhat.com/errata/RHSA-2013:1853
reference_id RHSA-2013:1853
reference_type
scores
url https://access.redhat.com/errata/RHSA-2013:1853
116
reference_url https://usn.ubuntu.com/1685-1/
reference_id USN-1685-1
reference_type
scores
url https://usn.ubuntu.com/1685-1/
Weaknesses
0
cwe_id 1035
name OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities
description Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2017.
1
cwe_id 264
name Permissions, Privileges, and Access Controls
description Weaknesses in this category are related to the management of permissions, privileges, and other security features that are used to perform access control.
2
cwe_id 352
name Cross-Site Request Forgery (CSRF)
description The web application does not, or can not, sufficiently verify whether a well-formed, valid, consistent request was intentionally provided by the user who submitted the request.
3
cwe_id 937
name OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities
description Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2013.
Exploits
Severity_range_score4.0 - 8.9
Exploitability0.5
Weighted_severity8.0
Risk_score4.0
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-ta1m-dh8x-nubc