Vulnerability Instance
Lookup for vulnerabilities affecting packages.
GET /api/vulnerabilities/4570?format=api
{ "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4570?format=api", "vulnerability_id": "VCID-95fn-d2ad-qyg6", "summary": "Apache Tomcat 7.x before 7.0.10 does not follow ServletSecurity annotations, which allows remote attackers to bypass intended access restrictions via HTTP requests to a web application.", "aliases": [ { "alias": "CVE-2011-1088" }, { "alias": "GHSA-mg4v-rf8p-ghqq" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1347?format=api", "purl": "pkg:apache/tomcat@7.0.11", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5eqm-218u-p7gq" }, { "vulnerability": "VCID-d9ys-kxh6-nkgr" }, { "vulnerability": "VCID-rhg2-n93w-tqeu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@7.0.11" }, { "url": "http://public2.vulnerablecode.io/api/packages/71829?format=api", "purl": "pkg:ebuild/www-servers/tomcat@7.0.23", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/www-servers/tomcat@7.0.23" } ], "affected_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1209?format=api", "purl": "pkg:apache/tomcat@7.0.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-18q4-zark-s7a7" }, { "vulnerability": "VCID-1k8f-vsg1-k3d6" }, { "vulnerability": "VCID-241m-q6vd-kudk" }, { "vulnerability": "VCID-2sbh-sy57-3uez" }, { "vulnerability": "VCID-3cr9-g81m-4ugy" }, { "vulnerability": "VCID-3n4t-bvb1-5qer" }, { "vulnerability": "VCID-3r3s-q21j-c3au" }, { "vulnerability": "VCID-4aaa-errb-2qdw" }, { "vulnerability": "VCID-4mkw-7haq-pkgn" }, { "vulnerability": "VCID-5eqm-218u-p7gq" }, { "vulnerability": "VCID-618c-ar98-qfcr" }, { "vulnerability": "VCID-66kh-s6cr-tqf9" }, { "vulnerability": "VCID-68fk-4g86-ekbp" }, { "vulnerability": "VCID-7cpu-h5fr-8ffd" }, { "vulnerability": "VCID-7ej8-5f77-cybb" }, { "vulnerability": "VCID-886n-1vzv-syc6" }, { "vulnerability": "VCID-95d1-arxd-hkd1" }, { "vulnerability": "VCID-95fn-d2ad-qyg6" }, { "vulnerability": "VCID-9exq-fhv6-bbea" }, { "vulnerability": "VCID-a1by-zvtm-akdc" }, { "vulnerability": "VCID-a8gk-n8bq-87cp" }, { "vulnerability": "VCID-afm2-uj45-xkgx" }, { "vulnerability": "VCID-arkn-bca7-hqam" }, { "vulnerability": "VCID-c4jv-ws83-x7g2" }, { "vulnerability": "VCID-d9ys-kxh6-nkgr" }, { "vulnerability": "VCID-dhun-hj5q-dfch" }, { "vulnerability": "VCID-dzpn-w4b3-vbcm" }, { "vulnerability": "VCID-e2kr-7pmg-gfc9" }, { "vulnerability": "VCID-eb37-mkxf-7fgw" }, { "vulnerability": "VCID-f2zy-gq57-ufat" }, { "vulnerability": "VCID-fpuc-fe6m-47c6" }, { "vulnerability": "VCID-fyfz-6tr5-2fc7" }, { "vulnerability": "VCID-g7bk-891a-uufy" }, { "vulnerability": "VCID-gv12-4ruf-kfhq" }, { "vulnerability": "VCID-h9ds-trhx-m7aj" }, { "vulnerability": "VCID-hhk9-cr54-8fgc" }, { "vulnerability": "VCID-hmbm-5ysw-77bu" }, { "vulnerability": "VCID-hves-r5bg-yfes" }, { "vulnerability": "VCID-hxj6-mupf-abbc" }, { "vulnerability": "VCID-j2j9-avuw-n3eq" }, { "vulnerability": "VCID-jf7u-dvpd-b7f4" }, { "vulnerability": "VCID-kagr-74d9-kyhx" }, { "vulnerability": "VCID-kgd1-bzst-muh7" }, { "vulnerability": "VCID-kwab-3s4q-eka4" }, { "vulnerability": "VCID-kzzv-rhya-j7dd" }, { "vulnerability": "VCID-m1zd-uytj-3bej" }, { "vulnerability": "VCID-mctd-9zgv-5qgp" }, { "vulnerability": "VCID-mwk8-b5c9-kbb9" }, { "vulnerability": "VCID-n3ab-nk7c-hqc9" }, { "vulnerability": "VCID-n76n-ywja-rbhh" }, { "vulnerability": "VCID-p4dn-y54m-8fd1" }, { "vulnerability": "VCID-p6ch-pc73-b3ck" }, { "vulnerability": "VCID-pqxe-tfhk-47b7" }, { "vulnerability": "VCID-q6hm-mmfs-zka5" }, { "vulnerability": "VCID-quwu-ep21-cyew" }, { "vulnerability": "VCID-ruuh-g3fa-m7d8" }, { "vulnerability": "VCID-ryha-ndms-afbn" }, { "vulnerability": "VCID-ta1m-dh8x-nubc" }, { "vulnerability": "VCID-tcbc-3kgt-muam" }, { "vulnerability": "VCID-tfn5-6ckq-wyce" }, { "vulnerability": "VCID-tfrs-d458-tfaq" }, { "vulnerability": "VCID-vd1s-m27a-8ucc" }, { "vulnerability": "VCID-vdnj-sqmx-e3ep" }, { "vulnerability": "VCID-w82a-7kk2-p3f1" }, { "vulnerability": "VCID-xf8r-kqxb-7qdy" }, { "vulnerability": "VCID-xqrn-wuv5-x7de" }, { "vulnerability": "VCID-yfx4-4gsc-2kgh" }, { "vulnerability": "VCID-ygvw-69am-s7ae" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@7.0.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/1349?format=api", "purl": "pkg:apache/tomcat@7.0.10", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-95fn-d2ad-qyg6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@7.0.10" }, { "url": "http://public2.vulnerablecode.io/api/packages/1212?format=api", "purl": "pkg:maven/org.apache.tomcat/tomcat@7.0.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-12du-1vyt-bkgx" }, { "vulnerability": "VCID-18q4-zark-s7a7" }, { "vulnerability": "VCID-1k8f-vsg1-k3d6" }, { "vulnerability": "VCID-1v6c-f56v-hqh1" }, { "vulnerability": "VCID-241m-q6vd-kudk" }, { "vulnerability": "VCID-2sbh-sy57-3uez" }, { "vulnerability": "VCID-3cr9-g81m-4ugy" }, { "vulnerability": "VCID-3n4t-bvb1-5qer" }, { "vulnerability": "VCID-3r3s-q21j-c3au" }, { "vulnerability": "VCID-4aaa-errb-2qdw" }, { "vulnerability": "VCID-4mkw-7haq-pkgn" }, { "vulnerability": "VCID-5eqm-218u-p7gq" }, { "vulnerability": "VCID-618c-ar98-qfcr" }, { "vulnerability": "VCID-66kh-s6cr-tqf9" }, { "vulnerability": "VCID-68fk-4g86-ekbp" }, { "vulnerability": "VCID-7cpu-h5fr-8ffd" }, { "vulnerability": "VCID-7ej8-5f77-cybb" }, { "vulnerability": "VCID-886n-1vzv-syc6" }, { "vulnerability": "VCID-8ebv-6941-jqdy" }, { "vulnerability": "VCID-95d1-arxd-hkd1" }, { "vulnerability": "VCID-95fn-d2ad-qyg6" }, { "vulnerability": "VCID-9exq-fhv6-bbea" }, { "vulnerability": "VCID-a1by-zvtm-akdc" }, { "vulnerability": "VCID-a8gk-n8bq-87cp" }, { "vulnerability": "VCID-afm2-uj45-xkgx" }, { "vulnerability": "VCID-arkn-bca7-hqam" }, { "vulnerability": "VCID-c4jv-ws83-x7g2" }, { "vulnerability": "VCID-d9ys-kxh6-nkgr" }, { "vulnerability": "VCID-dhun-hj5q-dfch" }, { "vulnerability": "VCID-dzpn-w4b3-vbcm" }, { "vulnerability": "VCID-e2kr-7pmg-gfc9" }, { "vulnerability": "VCID-eb37-mkxf-7fgw" }, { "vulnerability": "VCID-egye-da2v-4ybh" }, { "vulnerability": "VCID-f2zy-gq57-ufat" }, { "vulnerability": "VCID-fpuc-fe6m-47c6" }, { "vulnerability": "VCID-fyfz-6tr5-2fc7" }, { "vulnerability": "VCID-g7bk-891a-uufy" }, { "vulnerability": "VCID-g7eg-s99s-xqe7" }, { "vulnerability": "VCID-gv12-4ruf-kfhq" }, { "vulnerability": "VCID-gyed-x6s8-ybhr" }, { "vulnerability": "VCID-h9ds-trhx-m7aj" }, { "vulnerability": "VCID-hhk9-cr54-8fgc" }, { "vulnerability": "VCID-hmbm-5ysw-77bu" }, { "vulnerability": "VCID-hves-r5bg-yfes" }, { "vulnerability": "VCID-hxj6-mupf-abbc" }, { "vulnerability": "VCID-j2j9-avuw-n3eq" }, { "vulnerability": "VCID-jau7-gfz8-dkfa" }, { "vulnerability": "VCID-jf7u-dvpd-b7f4" }, { "vulnerability": "VCID-kagr-74d9-kyhx" }, { "vulnerability": "VCID-kgd1-bzst-muh7" }, { "vulnerability": "VCID-kwab-3s4q-eka4" }, { "vulnerability": "VCID-kyb8-rvyw-s7b1" }, { "vulnerability": "VCID-kzzv-rhya-j7dd" }, { "vulnerability": "VCID-m1zd-uytj-3bej" }, { "vulnerability": "VCID-mctd-9zgv-5qgp" }, { "vulnerability": "VCID-mwk8-b5c9-kbb9" }, { "vulnerability": "VCID-n3ab-nk7c-hqc9" }, { "vulnerability": "VCID-n76n-ywja-rbhh" }, { "vulnerability": "VCID-p4dn-y54m-8fd1" }, { "vulnerability": "VCID-p6ch-pc73-b3ck" }, { "vulnerability": "VCID-pqxe-tfhk-47b7" }, { "vulnerability": "VCID-q6hm-mmfs-zka5" }, { "vulnerability": "VCID-quwu-ep21-cyew" }, { "vulnerability": "VCID-r5rc-rdd9-bfbk" }, { "vulnerability": "VCID-rrdj-ssn7-zfdj" }, { "vulnerability": "VCID-ruuh-g3fa-m7d8" }, { "vulnerability": "VCID-ryha-ndms-afbn" }, { "vulnerability": "VCID-ta1m-dh8x-nubc" }, { "vulnerability": "VCID-tcbc-3kgt-muam" }, { "vulnerability": "VCID-tfn5-6ckq-wyce" }, { "vulnerability": "VCID-tfrs-d458-tfaq" }, { "vulnerability": "VCID-vd1s-m27a-8ucc" }, { "vulnerability": "VCID-vdnj-sqmx-e3ep" }, { "vulnerability": "VCID-w82a-7kk2-p3f1" }, { "vulnerability": "VCID-xf8r-kqxb-7qdy" }, { "vulnerability": "VCID-xqrn-wuv5-x7de" }, { "vulnerability": "VCID-yfx4-4gsc-2kgh" }, { "vulnerability": "VCID-ygvw-69am-s7ae" }, { "vulnerability": "VCID-zbbr-wded-9ffj" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@7.0.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/1350?format=api", "purl": "pkg:maven/org.apache.tomcat/tomcat@7.0.10", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-95fn-d2ad-qyg6" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@7.0.10" } ], "references": [ { "reference_url": "http://mail-archives.apache.org/mod_mbox/www-announce/201103.mbox/%3C4D6E74FF.7050106%40apache.org%3E", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://mail-archives.apache.org/mod_mbox/www-announce/201103.mbox/%3C4D6E74FF.7050106%40apache.org%3E" }, { "reference_url": "http://mail-archives.apache.org/mod_mbox/www-announce/201103.mbox/%3C4D6E74FF.7050106@apache.org%3E", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://mail-archives.apache.org/mod_mbox/www-announce/201103.mbox/%3C4D6E74FF.7050106@apache.org%3E" }, { "reference_url": "http://markmail.org/message/lzx5273wsgl5pob6", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://markmail.org/message/lzx5273wsgl5pob6" }, { "reference_url": "http://markmail.org/message/yzmyn44f5aetmm2r", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://markmail.org/message/yzmyn44f5aetmm2r" }, { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-1088.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-1088.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2011-1088", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.16364", "scoring_system": "epss", "scoring_elements": "0.94856", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.16364", "scoring_system": "epss", "scoring_elements": "0.94852", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.16364", "scoring_system": "epss", "scoring_elements": "0.94848", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.16364", "scoring_system": "epss", "scoring_elements": "0.94839", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.16364", "scoring_system": "epss", "scoring_elements": "0.94836", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.16364", "scoring_system": "epss", "scoring_elements": "0.94861", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.16364", "scoring_system": "epss", "scoring_elements": "0.94833", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.16364", "scoring_system": "epss", "scoring_elements": "0.94824", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.16364", "scoring_system": "epss", "scoring_elements": "0.94859", "published_at": "2026-04-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2011-1088" }, { "reference_url": "http://secunia.com/advisories/43684", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://secunia.com/advisories/43684" }, { "reference_url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/65971", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/65971" }, { "reference_url": "https://github.com/apache/tomcat", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/apache/tomcat" }, { "reference_url": "https://github.com/apache/tomcat/commit/02780bbc6089a12b19d3d5e5dc810455ac6bfe92", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/apache/tomcat/commit/02780bbc6089a12b19d3d5e5dc810455ac6bfe92" }, { "reference_url": "https://github.com/apache/tomcat/commit/0a5a19f0c3b8d199b7335da5f88e956f59926673", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/apache/tomcat/commit/0a5a19f0c3b8d199b7335da5f88e956f59926673" }, { "reference_url": "https://github.com/apache/tomcat/commit/0f95cb7401acdbfc9b65c878948b84bb496f2386", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/apache/tomcat/commit/0f95cb7401acdbfc9b65c878948b84bb496f2386" }, { "reference_url": "https://github.com/apache/tomcat/commit/0ff4905158b77787a7f3aca55c9dec93456665dc", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/apache/tomcat/commit/0ff4905158b77787a7f3aca55c9dec93456665dc" }, { "reference_url": "https://github.com/apache/tomcat/commit/13fe121edb6f2b597d2b82725f1b01296ac78ebd", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/apache/tomcat/commit/13fe121edb6f2b597d2b82725f1b01296ac78ebd" }, { "reference_url": "https://github.com/apache/tomcat/commit/149af600532df6a24b1f7fc93607d764dfc9a7ea", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/apache/tomcat/commit/149af600532df6a24b1f7fc93607d764dfc9a7ea" }, { "reference_url": "https://github.com/apache/tomcat/commit/1b2d5e90d271ab087a36b556eb17519454170529", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/apache/tomcat/commit/1b2d5e90d271ab087a36b556eb17519454170529" }, { "reference_url": "https://github.com/apache/tomcat/commit/2d7dbfe4c63a4242a9b28fdb662d91ceb7a84630", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/apache/tomcat/commit/2d7dbfe4c63a4242a9b28fdb662d91ceb7a84630" }, { "reference_url": "https://github.com/apache/tomcat/commit/3ac2b5c1611af51ee5438fd32a3254a2de1878ce", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/apache/tomcat/commit/3ac2b5c1611af51ee5438fd32a3254a2de1878ce" }, { "reference_url": "https://github.com/apache/tomcat/commit/3e5b0455483eed55752047073e92403bfca8d3ec", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/apache/tomcat/commit/3e5b0455483eed55752047073e92403bfca8d3ec" }, { "reference_url": "https://github.com/apache/tomcat/commit/5c8560f3054982abaa476d87ec031c439d58d66e", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/apache/tomcat/commit/5c8560f3054982abaa476d87ec031c439d58d66e" }, { "reference_url": "https://github.com/apache/tomcat/commit/63fd724e129b647b7d9026ae29513dd6b774b4b5", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/apache/tomcat/commit/63fd724e129b647b7d9026ae29513dd6b774b4b5" }, { "reference_url": "https://github.com/apache/tomcat/commit/880b1a4fc424625b56c8bcd9ebf6bfe966a1dadd", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/apache/tomcat/commit/880b1a4fc424625b56c8bcd9ebf6bfe966a1dadd" }, { "reference_url": "https://github.com/apache/tomcat/commit/9c90bdc1ad942374b1bb6b147613497970b3c8e1", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/apache/tomcat/commit/9c90bdc1ad942374b1bb6b147613497970b3c8e1" }, { "reference_url": "https://github.com/apache/tomcat/commit/b1d1047a4c0a7754cabf57ac0303f92e4e77ef58", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/apache/tomcat/commit/b1d1047a4c0a7754cabf57ac0303f92e4e77ef58" }, { "reference_url": "https://github.com/apache/tomcat/commit/dbac5e24759954daed3c584abb5d466fcf42dd4b", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/apache/tomcat/commit/dbac5e24759954daed3c584abb5d466fcf42dd4b" }, { "reference_url": "https://github.com/apache/tomcat/commit/dd10265436ea8b2fe35f1a8b09bc7390acbea269", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/apache/tomcat/commit/dd10265436ea8b2fe35f1a8b09bc7390acbea269" }, { "reference_url": "https://github.com/apache/tomcat/commit/ece65c1a428094b1c6c17de3d7593f64e1bb1286", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/apache/tomcat/commit/ece65c1a428094b1c6c17de3d7593f64e1bb1286" }, { "reference_url": "https://github.com/apache/tomcat/commit/ee627412570268df47a075f5d4dc5f7debf39fad", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/apache/tomcat/commit/ee627412570268df47a075f5d4dc5f7debf39fad" }, { "reference_url": "https://github.com/apache/tomcat/commit/f528992ec6cd7b62c9ced5b3a7dc4cda6bfd1a5e", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/apache/tomcat/commit/f528992ec6cd7b62c9ced5b3a7dc4cda6bfd1a5e" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2011-1088", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.8", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:P/I:P/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-1088" }, { "reference_url": "https://svn.apache.org/viewvc?view=rev&rev=1076586", "reference_id": "", "reference_type": "", "scores": [], "url": "https://svn.apache.org/viewvc?view=rev&rev=1076586" }, { "reference_url": "https://svn.apache.org/viewvc?view=rev&rev=1076587", "reference_id": "", "reference_type": "", "scores": [], "url": "https://svn.apache.org/viewvc?view=rev&rev=1076587" }, { "reference_url": "https://svn.apache.org/viewvc?view=rev&rev=1077995", "reference_id": "", "reference_type": "", "scores": [], "url": "https://svn.apache.org/viewvc?view=rev&rev=1077995" }, { "reference_url": "https://svn.apache.org/viewvc?view=rev&rev=1079752", "reference_id": "", "reference_type": "", "scores": [], "url": "https://svn.apache.org/viewvc?view=rev&rev=1079752" }, { "reference_url": "http://svn.apache.org/viewvc?view=revision&revision=1076586", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://svn.apache.org/viewvc?view=revision&revision=1076586" }, { "reference_url": "http://svn.apache.org/viewvc?view=revision&revision=1076587", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://svn.apache.org/viewvc?view=revision&revision=1076587" }, { "reference_url": "http://svn.apache.org/viewvc?view=revision&revision=1077995", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://svn.apache.org/viewvc?view=revision&revision=1077995" }, { "reference_url": "http://tomcat.apache.org/security-7.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://tomcat.apache.org/security-7.html" }, { "reference_url": "http://www.osvdb.org/71027", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://www.osvdb.org/71027" }, { "reference_url": "http://www.securityfocus.com/archive/1/517013/100/0/threaded", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://www.securityfocus.com/archive/1/517013/100/0/threaded" }, { "reference_url": "http://www.securityfocus.com/bid/46685", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://www.securityfocus.com/bid/46685" }, { "reference_url": "http://www.securitytracker.com/id?1025215", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://www.securitytracker.com/id?1025215" }, { "reference_url": "http://www.vupen.com/english/advisories/2011/0563", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://www.vupen.com/english/advisories/2011/0563" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=708955", "reference_id": "708955", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=708955" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:7.0.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apache:tomcat:7.0.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:7.0.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:7.0.0:beta:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apache:tomcat:7.0.0:beta:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:7.0.0:beta:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:7.0.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apache:tomcat:7.0.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:7.0.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:7.0.2:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apache:tomcat:7.0.2:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:7.0.2:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:7.0.3:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apache:tomcat:7.0.3:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:7.0.3:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:7.0.4:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apache:tomcat:7.0.4:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:7.0.4:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:7.0.5:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apache:tomcat:7.0.5:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:7.0.5:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:7.0.6:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apache:tomcat:7.0.6:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:7.0.6:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:7.0.7:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apache:tomcat:7.0.7:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:7.0.7:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:7.0.8:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apache:tomcat:7.0.8:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:7.0.8:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:7.0.9:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:apache:tomcat:7.0.9:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:7.0.9:*:*:*:*:*:*:*" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1088", "reference_id": "CVE-2011-1088", "reference_type": "", "scores": [ { "value": "Important", "scoring_system": "apache_tomcat", "scoring_elements": "" } ], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1088" }, { "reference_url": "https://github.com/advisories/GHSA-mg4v-rf8p-ghqq", "reference_id": "GHSA-mg4v-rf8p-ghqq", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-mg4v-rf8p-ghqq" }, { "reference_url": "https://security.gentoo.org/glsa/201206-24", "reference_id": "GLSA-201206-24", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201206-24" } ], "weaknesses": [], "exploits": [], "severity_range_score": "4.0 - 8.9", "exploitability": "0.5", "weighted_severity": "8.0", "risk_score": 4.0, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-95fn-d2ad-qyg6" }