Vulnerability Instance
Lookup for vulnerabilities affecting packages.
GET /api/vulnerabilities/58202?format=api
{ "url": "http://public2.vulnerablecode.io/api/vulnerabilities/58202?format=api", "vulnerability_id": "VCID-bwbm-vktd-jbd5", "summary": "", "aliases": [ { "alias": "CVE-2011-3375" }, { "alias": "GHSA-rp8h-vr48-4j8p" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/87197?format=api", "purl": "pkg:apache/tomcat@6.0.35", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-rbvf-c791-e7cg" }, { "vulnerability": "VCID-redv-2x5y-8khx" }, { "vulnerability": "VCID-t57j-pu79-dbbn" }, { "vulnerability": "VCID-tc66-7b7t-k7h3" }, { "vulnerability": "VCID-tmjv-jvfy-judb" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@6.0.35" }, { "url": "http://public2.vulnerablecode.io/api/packages/87156?format=api", "purl": "pkg:apache/tomcat@7.0.22", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-fu9h-e3jx-abe2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@7.0.22" }, { "url": "http://public2.vulnerablecode.io/api/packages/189343?format=api", "purl": "pkg:ebuild/www-servers/tomcat@7.0.23", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/www-servers/tomcat@7.0.23" }, { "url": "http://public2.vulnerablecode.io/api/packages/63157?format=api", "purl": "pkg:maven/org.apache.tomcat/tomcat@6.0.35", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-rbvf-c791-e7cg" }, { "vulnerability": "VCID-redv-2x5y-8khx" }, { "vulnerability": "VCID-t57j-pu79-dbbn" }, { "vulnerability": "VCID-tc66-7b7t-k7h3" }, { "vulnerability": "VCID-tmjv-jvfy-judb" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@6.0.35" }, { "url": "http://public2.vulnerablecode.io/api/packages/87157?format=api", "purl": "pkg:maven/org.apache.tomcat/tomcat@7.0.22", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-fu9h-e3jx-abe2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@7.0.22" } ], "affected_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/87198?format=api", "purl": "pkg:apache/tomcat@6.0.30", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-bwbm-vktd-jbd5" }, { "vulnerability": "VCID-mwr3-83kd-s7g3" }, { "vulnerability": "VCID-redv-2x5y-8khx" }, { "vulnerability": "VCID-vsta-e8jg-4qa8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@6.0.30" }, { "url": "http://public2.vulnerablecode.io/api/packages/87194?format=api", "purl": "pkg:apache/tomcat@6.0.33", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-4t2h-jjhm-y7fq" }, { "vulnerability": "VCID-bwbm-vktd-jbd5" }, { "vulnerability": "VCID-ft1c-mand-mkcb" }, { "vulnerability": "VCID-fu9h-e3jx-abe2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@6.0.33" }, { "url": "http://public2.vulnerablecode.io/api/packages/87078?format=api", "purl": "pkg:apache/tomcat@7.0.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1a1b-3pdg-jbfq" }, { "vulnerability": "VCID-299p-e7fh-qfa2" }, { "vulnerability": "VCID-2kjh-4r2g-rqe6" }, { "vulnerability": "VCID-333t-ujej-7yhu" }, { "vulnerability": "VCID-3tme-zh53-7ubx" }, { "vulnerability": "VCID-3txt-1psa-5kf5" }, { "vulnerability": "VCID-4qcn-52ug-mbd5" }, { "vulnerability": "VCID-4t2h-jjhm-y7fq" }, { "vulnerability": "VCID-59dd-qzpt-aucm" }, { "vulnerability": "VCID-5m85-3zyu-7qak" }, { "vulnerability": "VCID-5udv-rheh-kqfy" }, { "vulnerability": "VCID-6umz-z8db-kqcy" }, { "vulnerability": "VCID-6uuq-2a39-yubx" }, { "vulnerability": "VCID-7fh9-36qs-jfg5" }, { "vulnerability": "VCID-89e9-m968-vfhe" }, { "vulnerability": "VCID-8fn4-hnez-y3eb" }, { "vulnerability": "VCID-937w-2w2q-7fdy" }, { "vulnerability": "VCID-9e2b-7qtg-tbaj" }, { "vulnerability": "VCID-9gz4-7etq-pyba" }, { "vulnerability": "VCID-aar2-398x-p3d8" }, { "vulnerability": "VCID-axzz-cadr-b7fv" }, { "vulnerability": "VCID-b83j-cebv-9ua6" }, { "vulnerability": "VCID-bwbm-vktd-jbd5" }, { "vulnerability": "VCID-ct4z-hxx3-53bw" }, { "vulnerability": "VCID-dk58-p9py-rka9" }, { "vulnerability": "VCID-e72e-axdj-7qfw" }, { "vulnerability": "VCID-essq-6syu-6ygm" }, { "vulnerability": "VCID-et9y-m4hb-43h7" }, { "vulnerability": "VCID-f4ka-47dk-zffs" }, { "vulnerability": "VCID-fu9h-e3jx-abe2" }, { "vulnerability": "VCID-g3vd-74yh-s7bn" }, { "vulnerability": "VCID-gc4t-aqwd-rkba" }, { "vulnerability": "VCID-gmjm-6ck2-skgu" }, { "vulnerability": "VCID-hqzu-shyu-j3hp" }, { "vulnerability": "VCID-j1m6-79yt-f7h5" }, { "vulnerability": "VCID-jw6e-g8z9-43ej" }, { "vulnerability": "VCID-jzta-navk-87bn" }, { "vulnerability": "VCID-m7ja-6efp-tyh1" }, { "vulnerability": "VCID-mwr3-83kd-s7g3" }, { "vulnerability": "VCID-n4zk-mdyw-3fcz" }, { "vulnerability": "VCID-nnye-4xbb-kuf5" }, { "vulnerability": "VCID-nxb3-55eu-auhp" }, { "vulnerability": "VCID-pq53-6deg-abfx" }, { "vulnerability": "VCID-qhqg-ekuv-z7fc" }, { "vulnerability": "VCID-qthw-u9bp-zkdp" }, { "vulnerability": "VCID-qurk-u1gg-gkdy" }, { "vulnerability": "VCID-rbvf-c791-e7cg" }, { "vulnerability": "VCID-rbvh-4npk-nub9" }, { "vulnerability": "VCID-redv-2x5y-8khx" }, { "vulnerability": "VCID-s37s-p75k-27e6" }, { "vulnerability": "VCID-se44-f85s-xyex" }, { "vulnerability": "VCID-sk1w-8yt4-93cv" }, { "vulnerability": "VCID-t57j-pu79-dbbn" }, { "vulnerability": "VCID-tc66-7b7t-k7h3" }, { "vulnerability": "VCID-tcmv-6ftg-fqen" }, { "vulnerability": "VCID-tmjv-jvfy-judb" }, { "vulnerability": "VCID-ua64-94fd-ekad" }, { "vulnerability": "VCID-vp5s-ekhc-w7ck" }, { "vulnerability": "VCID-vsta-e8jg-4qa8" }, { "vulnerability": "VCID-webw-gryb-7ucv" }, { "vulnerability": "VCID-xa95-zsnk-3kg9" }, { "vulnerability": "VCID-xjj5-fy4e-e7ha" }, { "vulnerability": "VCID-xra9-q91u-rfd5" }, { "vulnerability": "VCID-y9hs-ymcm-3ucx" }, { "vulnerability": "VCID-yusx-ncpv-sfhg" }, { "vulnerability": "VCID-yvcg-96dp-r7e6" }, { "vulnerability": "VCID-zm75-zwps-h3fv" }, { "vulnerability": "VCID-zrc5-bf77-aygn" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@7.0.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/87158?format=api", "purl": "pkg:apache/tomcat@7.0.21", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-299p-e7fh-qfa2" }, { "vulnerability": "VCID-bwbm-vktd-jbd5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@7.0.21" }, { "url": "http://public2.vulnerablecode.io/api/packages/61953?format=api", "purl": "pkg:maven/org.apache.tomcat/tomcat@6.0.30", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-bwbm-vktd-jbd5" }, { "vulnerability": "VCID-mwr3-83kd-s7g3" }, { "vulnerability": "VCID-redv-2x5y-8khx" }, { "vulnerability": "VCID-vsta-e8jg-4qa8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@6.0.30" }, { "url": "http://public2.vulnerablecode.io/api/packages/63020?format=api", "purl": "pkg:maven/org.apache.tomcat/tomcat@6.0.33", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-4t2h-jjhm-y7fq" }, { "vulnerability": "VCID-bwbm-vktd-jbd5" }, { "vulnerability": "VCID-ft1c-mand-mkcb" }, { "vulnerability": "VCID-fu9h-e3jx-abe2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@6.0.33" }, { "url": "http://public2.vulnerablecode.io/api/packages/55088?format=api", "purl": "pkg:maven/org.apache.tomcat/tomcat@7.0.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1a1b-3pdg-jbfq" }, { "vulnerability": "VCID-299p-e7fh-qfa2" }, { "vulnerability": "VCID-2kjh-4r2g-rqe6" }, { "vulnerability": "VCID-333t-ujej-7yhu" }, { "vulnerability": "VCID-3tme-zh53-7ubx" }, { "vulnerability": "VCID-3txt-1psa-5kf5" }, { "vulnerability": "VCID-46sr-9kr3-1ubw" }, { "vulnerability": "VCID-4qcn-52ug-mbd5" }, { "vulnerability": "VCID-4t2h-jjhm-y7fq" }, { "vulnerability": "VCID-59dd-qzpt-aucm" }, { "vulnerability": "VCID-5m85-3zyu-7qak" }, { "vulnerability": "VCID-5udv-rheh-kqfy" }, { "vulnerability": "VCID-6umz-z8db-kqcy" }, { "vulnerability": "VCID-6uuq-2a39-yubx" }, { "vulnerability": "VCID-74c7-a56p-kufz" }, { "vulnerability": "VCID-7fh9-36qs-jfg5" }, { "vulnerability": "VCID-89e9-m968-vfhe" }, { "vulnerability": "VCID-8fn4-hnez-y3eb" }, { "vulnerability": "VCID-937w-2w2q-7fdy" }, { "vulnerability": "VCID-9e2b-7qtg-tbaj" }, { "vulnerability": "VCID-9gz4-7etq-pyba" }, { "vulnerability": "VCID-9hm5-e4dw-6ffe" }, { "vulnerability": "VCID-aar2-398x-p3d8" }, { "vulnerability": "VCID-atus-ryef-17h1" }, { "vulnerability": "VCID-axzz-cadr-b7fv" }, { "vulnerability": "VCID-b83j-cebv-9ua6" }, { "vulnerability": "VCID-bwbm-vktd-jbd5" }, { "vulnerability": "VCID-ct4z-hxx3-53bw" }, { "vulnerability": "VCID-dk58-p9py-rka9" }, { "vulnerability": "VCID-e2gy-1c6a-6fdf" }, { "vulnerability": "VCID-e72e-axdj-7qfw" }, { "vulnerability": "VCID-essq-6syu-6ygm" }, { "vulnerability": "VCID-et9y-m4hb-43h7" }, { "vulnerability": "VCID-f4ka-47dk-zffs" }, { "vulnerability": "VCID-fu9h-e3jx-abe2" }, { "vulnerability": "VCID-g3vd-74yh-s7bn" }, { "vulnerability": "VCID-gc4t-aqwd-rkba" }, { "vulnerability": "VCID-gmjm-6ck2-skgu" }, { "vulnerability": "VCID-hqzu-shyu-j3hp" }, { "vulnerability": "VCID-j1m6-79yt-f7h5" }, { "vulnerability": "VCID-jw6e-g8z9-43ej" }, { "vulnerability": "VCID-jzta-navk-87bn" }, { "vulnerability": "VCID-m7ja-6efp-tyh1" }, { "vulnerability": "VCID-mwr3-83kd-s7g3" }, { "vulnerability": "VCID-n4zk-mdyw-3fcz" }, { "vulnerability": "VCID-nnye-4xbb-kuf5" }, { "vulnerability": "VCID-nxb3-55eu-auhp" }, { "vulnerability": "VCID-pq53-6deg-abfx" }, { "vulnerability": "VCID-qhqg-ekuv-z7fc" }, { "vulnerability": "VCID-qthw-u9bp-zkdp" }, { "vulnerability": "VCID-qurk-u1gg-gkdy" }, { "vulnerability": "VCID-rbvf-c791-e7cg" }, { "vulnerability": "VCID-rbvh-4npk-nub9" }, { "vulnerability": "VCID-redv-2x5y-8khx" }, { "vulnerability": "VCID-s37s-p75k-27e6" }, { "vulnerability": "VCID-se44-f85s-xyex" }, { "vulnerability": "VCID-sk1w-8yt4-93cv" }, { "vulnerability": "VCID-t57j-pu79-dbbn" }, { "vulnerability": "VCID-tc66-7b7t-k7h3" }, { "vulnerability": "VCID-tcmv-6ftg-fqen" }, { "vulnerability": "VCID-tmjv-jvfy-judb" }, { "vulnerability": "VCID-ua64-94fd-ekad" }, { "vulnerability": "VCID-vp5s-ekhc-w7ck" }, { "vulnerability": "VCID-vsta-e8jg-4qa8" }, { "vulnerability": "VCID-webw-gryb-7ucv" }, { "vulnerability": "VCID-wtke-y2cx-x3et" }, { "vulnerability": "VCID-xa95-zsnk-3kg9" }, { "vulnerability": "VCID-xjj5-fy4e-e7ha" }, { "vulnerability": "VCID-xra9-q91u-rfd5" }, { "vulnerability": "VCID-y9hs-ymcm-3ucx" }, { "vulnerability": "VCID-yusx-ncpv-sfhg" }, { "vulnerability": "VCID-yvcg-96dp-r7e6" }, { "vulnerability": "VCID-zm75-zwps-h3fv" }, { "vulnerability": "VCID-zrc5-bf77-aygn" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@7.0.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/63088?format=api", "purl": "pkg:maven/org.apache.tomcat/tomcat@7.0.21", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-299p-e7fh-qfa2" }, { "vulnerability": "VCID-bwbm-vktd-jbd5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@7.0.21" }, { "url": "http://public2.vulnerablecode.io/api/packages/183076?format=api", "purl": "pkg:rpm/redhat/tomcat6@6.0.32-24_patch_07.ep5?arch=el6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-46sr-9kr3-1ubw" }, { "vulnerability": "VCID-4t2h-jjhm-y7fq" }, { "vulnerability": "VCID-74c7-a56p-kufz" }, { "vulnerability": "VCID-89e9-m968-vfhe" }, { "vulnerability": "VCID-9hm5-e4dw-6ffe" }, { "vulnerability": "VCID-aar2-398x-p3d8" }, { "vulnerability": "VCID-bwbm-vktd-jbd5" }, { "vulnerability": "VCID-fu9h-e3jx-abe2" }, { "vulnerability": "VCID-jw6e-g8z9-43ej" }, { "vulnerability": "VCID-wtke-y2cx-x3et" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/tomcat6@6.0.32-24_patch_07.ep5%3Farch=el6" }, { "url": "http://public2.vulnerablecode.io/api/packages/183077?format=api", "purl": "pkg:rpm/redhat/tomcat6@6.0.32-24_patch_07.ep5?arch=el5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-46sr-9kr3-1ubw" }, { "vulnerability": "VCID-4t2h-jjhm-y7fq" }, { "vulnerability": "VCID-74c7-a56p-kufz" }, { "vulnerability": "VCID-89e9-m968-vfhe" }, { "vulnerability": "VCID-9hm5-e4dw-6ffe" }, { "vulnerability": "VCID-aar2-398x-p3d8" }, { "vulnerability": "VCID-bwbm-vktd-jbd5" }, { "vulnerability": "VCID-fu9h-e3jx-abe2" }, { "vulnerability": "VCID-jw6e-g8z9-43ej" }, { "vulnerability": "VCID-wtke-y2cx-x3et" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/tomcat6@6.0.32-24_patch_07.ep5%3Farch=el5" } ], "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-3375.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-3375.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2011-3375", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.02015", "scoring_system": "epss", "scoring_elements": "0.8405", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2011-3375" }, { "reference_url": "https://github.com/apache/tomcat", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/apache/tomcat" }, { "reference_url": "https://github.com/apache/tomcat70/commit/9eae334e9492f55a841e6eb7ab302ff11d03ab21", "reference_id": "", "reference_type": "", "scores": [], "url": "https://github.com/apache/tomcat70/commit/9eae334e9492f55a841e6eb7ab302ff11d03ab21" }, { "reference_url": "https://github.com/apache/tomcat/commit/9eae334e9492f55a841e6eb7ab302ff11d03ab21", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/apache/tomcat/commit/9eae334e9492f55a841e6eb7ab302ff11d03ab21" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2011-3375", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-3375" }, { "reference_url": "https://svn.apache.org/viewvc?view=rev&rev=1176592", "reference_id": "", "reference_type": "", "scores": [], "url": "https://svn.apache.org/viewvc?view=rev&rev=1176592" }, { "reference_url": "https://svn.apache.org/viewvc?view=rev&rev=1185998", "reference_id": "", "reference_type": "", "scores": [], "url": "https://svn.apache.org/viewvc?view=rev&rev=1185998" }, { "reference_url": "http://tomcat.apache.org/security-6.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://tomcat.apache.org/security-6.html" }, { "reference_url": "http://tomcat.apache.org/security-7.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://tomcat.apache.org/security-7.html" }, { "reference_url": "http://www.debian.org/security/2012/dsa-2401", "reference_id": "", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://www.debian.org/security/2012/dsa-2401" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=782624", "reference_id": "782624", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=782624" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3375", "reference_id": "CVE-2011-3375", "reference_type": "", "scores": [ { "value": "Important", "scoring_system": "apache_tomcat", "scoring_elements": "" } ], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3375" }, { "reference_url": "https://security.gentoo.org/glsa/201206-24", "reference_id": "GLSA-201206-24", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201206-24" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2012:0681", "reference_id": "RHSA-2012:0681", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2012:0681" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2012:0682", "reference_id": "RHSA-2012:0682", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2012:0682" } ], "weaknesses": [ { "cwe_id": 200, "name": "Exposure of Sensitive Information to an Unauthorized Actor", "description": "The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information." } ], "exploits": [], "severity_range_score": "4.0 - 8.9", "exploitability": "0.5", "weighted_severity": "8.0", "risk_score": 4.0, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-bwbm-vktd-jbd5" }