Django REST framework

Lookup for vulnerabilities affecting packages.

Vulnerability_id VCID-dk5d-3ebq-yfbn

Summary

Aliases

alias	CVE-2026-41293

alias	GHSA-r29c-68gh-xp6x

Fixed_packages

url	pkg:apache/tomcat@9.0.118
purl	pkg:apache/tomcat@9.0.118
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@9.0.118

url	pkg:apache/tomcat@10.1.55
purl	pkg:apache/tomcat@10.1.55
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@10.1.55

url	pkg:apache/tomcat@11.0.22
purl	pkg:apache/tomcat@11.0.22
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@11.0.22

url	pkg:deb/debian/tomcat11@11.0.22-1?distro=trixie
purl	pkg:deb/debian/tomcat11@11.0.22-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat11@11.0.22-1%3Fdistro=trixie

url	pkg:deb/debian/tomcat11@11.0.22-2?distro=trixie
purl	pkg:deb/debian/tomcat11@11.0.22-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat11@11.0.22-2%3Fdistro=trixie

url	pkg:deb/debian/tomcat9@9.0.115-1?distro=trixie
purl	pkg:deb/debian/tomcat9@9.0.115-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat9@9.0.115-1%3Fdistro=trixie

url	pkg:deb/debian/tomcat9@9.0.118-1?distro=trixie
purl	pkg:deb/debian/tomcat9@9.0.118-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat9@9.0.118-1%3Fdistro=trixie

url	pkg:deb/debian/tomcat9@9.0.43-2~deb11u10?distro=trixie
purl	pkg:deb/debian/tomcat9@9.0.43-2~deb11u10?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat9@9.0.43-2~deb11u10%3Fdistro=trixie

url	pkg:deb/debian/tomcat9@9.0.70-2?distro=trixie
purl	pkg:deb/debian/tomcat9@9.0.70-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat9@9.0.70-2%3Fdistro=trixie

url	pkg:deb/debian/tomcat9@9.0.95-1?distro=trixie
purl	pkg:deb/debian/tomcat9@9.0.95-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat9@9.0.95-1%3Fdistro=trixie

url	pkg:maven/org.apache.tomcat/tomcat@9.0.118
purl	pkg:maven/org.apache.tomcat/tomcat@9.0.118
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@9.0.118

url	pkg:maven/org.apache.tomcat/tomcat@10.1.55
purl	pkg:maven/org.apache.tomcat/tomcat@10.1.55
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@10.1.55

url	pkg:maven/org.apache.tomcat/tomcat@11.0.22
purl	pkg:maven/org.apache.tomcat/tomcat@11.0.22
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@11.0.22

url	pkg:maven/org.apache.tomcat/tomcat-catalina@9.0.118
purl	pkg:maven/org.apache.tomcat/tomcat-catalina@9.0.118
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat-catalina@9.0.118

url	pkg:maven/org.apache.tomcat/tomcat-catalina@10.1.55
purl	pkg:maven/org.apache.tomcat/tomcat-catalina@10.1.55
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat-catalina@10.1.55

url	pkg:maven/org.apache.tomcat/tomcat-catalina@11.0.22
purl	pkg:maven/org.apache.tomcat/tomcat-catalina@11.0.22
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat-catalina@11.0.22

url	pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@9.0.118
purl	pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@9.0.118
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@9.0.118

url	pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@10.1.55
purl	pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@10.1.55
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@10.1.55

url	pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@11.0.22
purl	pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@11.0.22
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@11.0.22

Affected_packages

url pkg:apache/tomcat@9.0.0%2BM1

purl pkg:apache/tomcat@9.0.0%2BM1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2d54-u8sa-n3d8

vulnerability	VCID-2scg-4ctu-nub4

vulnerability	VCID-3ft6-jaeb-cfd9

vulnerability	VCID-3gvy-wdjq-wkbn

vulnerability	VCID-46mj-73rn-tkg6

vulnerability	VCID-4mmj-yd4b-bqc9

vulnerability	VCID-579s-dxd6-f3ek

vulnerability	VCID-5j78-np3z-rfda

vulnerability	VCID-61p6-f9vu-7fca

vulnerability	VCID-61xw-8vnm-vkcx

vulnerability	VCID-67rb-z7qk-zke9

vulnerability	VCID-7duy-zbjz-pkh2

vulnerability	VCID-8btx-vpre-pugb

vulnerability	VCID-9eka-xfyd-mqh1

vulnerability	VCID-9kef-ww6g-47df

vulnerability	VCID-9ptv-guzs-kyg1

vulnerability	VCID-9w58-wv96-dfhb

vulnerability	VCID-9zgk-pw69-4kdb

vulnerability	VCID-a156-e8a1-pufm

vulnerability	VCID-b9hb-uzqm-wbcp

vulnerability	VCID-bb6z-a8sb-rkdb

vulnerability	VCID-bhwy-a7r9-4ubc

vulnerability	VCID-bqkn-zvm1-4kd6

vulnerability	VCID-bxhh-7y6z-vya3

vulnerability	VCID-c8b5-23zz-cudd

vulnerability	VCID-cvz2-m9hs-7ker

vulnerability	VCID-dk5d-3ebq-yfbn

vulnerability	VCID-dmrz-z2gw-8yfv

vulnerability	VCID-eehy-pgzv-vudx

vulnerability	VCID-erf4-k7u3-9ug9

vulnerability	VCID-evbs-epz4-ekdy

vulnerability	VCID-f5cj-hyb5-6bd1

vulnerability	VCID-f8s4-weeq-jqg1

vulnerability	VCID-ffqg-mkqf-xqgh

vulnerability	VCID-fr2m-dquh-u7hu

vulnerability	VCID-g11a-wp5s-2qdh

vulnerability	VCID-g4ne-v1t9-h3dj

vulnerability	VCID-g8re-u2zv-t7ep

vulnerability	VCID-gcsz-99fk-qkdx

vulnerability	VCID-gq7b-ee2j-6kb4

vulnerability	VCID-hgbg-akgm-pbfj

vulnerability	VCID-j384-wyej-27g8

vulnerability	VCID-kq3c-qp43-dqgg

vulnerability	VCID-kxvn-6xbg-4fep

vulnerability	VCID-m9zt-3fd4-3bhw

vulnerability	VCID-mhyu-u4w9-nkee

vulnerability	VCID-n9v8-hdbp-quca

vulnerability	VCID-p384-yv4k-nyam

vulnerability	VCID-p7x2-ejss-ffd1

vulnerability	VCID-phjv-amj5-2fab

vulnerability	VCID-pmx1-hkph-4qhd

vulnerability	VCID-pzss-nqu6-pufa

vulnerability	VCID-rcd8-dg2e-3keh

vulnerability	VCID-ruvk-p5t4-tqbh

vulnerability	VCID-rwwv-g43z-dkd1

vulnerability	VCID-s6p4-xq69-6fb4

vulnerability	VCID-twp1-3h1f-r3de

vulnerability	VCID-ujnj-2f48-e7ag

vulnerability	VCID-v6kq-kg7h-p3bq

vulnerability	VCID-wpew-vv5h-r7c5

vulnerability	VCID-xdgh-k9su-4bes

vulnerability	VCID-xpgj-16r8-3ya9

vulnerability	VCID-xqpc-truy-2fhv

vulnerability	VCID-y3ba-g4qn-93hg

vulnerability	VCID-y5je-ud4g-ufdc

vulnerability	VCID-yj65-daxr-7ud8

vulnerability	VCID-yy72-4q61-n7gu

vulnerability	VCID-z6g3-j67d-87hc

vulnerability	VCID-zd9x-yf4u-eqgf

vulnerability	VCID-zpvv-4hjw-g3bt

vulnerability	VCID-zsuz-c5yt-ukca

vulnerability	VCID-zyvy-3tq7-7fcm

resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@9.0.0%252BM1

url pkg:apache/tomcat@9.0.117

purl pkg:apache/tomcat@9.0.117

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4qzp-up1c-2kfq

vulnerability	VCID-5j78-np3z-rfda

vulnerability	VCID-9ptv-guzs-kyg1

vulnerability	VCID-c8b5-23zz-cudd

vulnerability	VCID-dk5d-3ebq-yfbn

vulnerability	VCID-kxvn-6xbg-4fep

vulnerability	VCID-pmx1-hkph-4qhd

resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@9.0.117

url pkg:apache/tomcat@10.1.0-M1

purl pkg:apache/tomcat@10.1.0-M1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1maq-ar71-p3ha

vulnerability	VCID-1mms-9rqw-xqhq

vulnerability	VCID-2kta-z43d-2uhm

vulnerability	VCID-35fm-apgj-jqd3

vulnerability	VCID-4pgx-mk91-xyba

vulnerability	VCID-4qzp-up1c-2kfq

vulnerability	VCID-5fj8-g5jf-wybu

vulnerability	VCID-5j78-np3z-rfda

vulnerability	VCID-61p6-f9vu-7fca

vulnerability	VCID-61xw-8vnm-vkcx

vulnerability	VCID-64r1-zcg6-qfb8

vulnerability	VCID-67rb-z7qk-zke9

vulnerability	VCID-6t1m-v4ym-4uhs

vulnerability	VCID-8btx-vpre-pugb

vulnerability	VCID-9248-b5q8-2bc7

vulnerability	VCID-9g9v-wsbr-hkde

vulnerability	VCID-9ptv-guzs-kyg1

vulnerability	VCID-9w58-wv96-dfhb

vulnerability	VCID-a8x5-hzkb-vuf4

vulnerability	VCID-b9hb-uzqm-wbcp

vulnerability	VCID-bqkn-zvm1-4kd6

vulnerability	VCID-c8b5-23zz-cudd

vulnerability	VCID-dk5d-3ebq-yfbn

vulnerability	VCID-eehy-pgzv-vudx

vulnerability	VCID-ffqg-mkqf-xqgh

vulnerability	VCID-g9rk-me3p-1fey

vulnerability	VCID-h11m-szkg-p7c5

vulnerability	VCID-hdnj-g415-2bbw

vulnerability	VCID-j4ut-s3e4-qqh7

vulnerability	VCID-jz35-ynpa-sqfq

vulnerability	VCID-kdhy-vpg2-nqgh

vulnerability	VCID-kq3c-qp43-dqgg

vulnerability	VCID-kxvn-6xbg-4fep

vulnerability	VCID-mvgq-kb92-dqf8

vulnerability	VCID-nafh-ss66-efc1

vulnerability	VCID-p7x2-ejss-ffd1

vulnerability	VCID-pmx1-hkph-4qhd

vulnerability	VCID-rx6f-x5cc-6bef

vulnerability	VCID-ryjx-b2fp-5bbc

vulnerability	VCID-s6p4-xq69-6fb4

vulnerability	VCID-twp1-3h1f-r3de

vulnerability	VCID-wpew-vv5h-r7c5

vulnerability	VCID-wtt7-38dy-gbec

vulnerability	VCID-xdgh-k9su-4bes

vulnerability	VCID-xym1-6dp5-t7d7

vulnerability	VCID-y5je-ud4g-ufdc

vulnerability	VCID-z1yq-nwk7-1kba

vulnerability	VCID-z6g3-j67d-87hc

resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@10.1.0-M1

url pkg:apache/tomcat@10.1.54

purl pkg:apache/tomcat@10.1.54

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4qzp-up1c-2kfq

vulnerability	VCID-5j78-np3z-rfda

vulnerability	VCID-9ptv-guzs-kyg1

vulnerability	VCID-c8b5-23zz-cudd

vulnerability	VCID-dk5d-3ebq-yfbn

vulnerability	VCID-kxvn-6xbg-4fep

vulnerability	VCID-pmx1-hkph-4qhd

resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@10.1.54

url pkg:apache/tomcat@11.0.0-M1

purl pkg:apache/tomcat@11.0.0-M1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1maq-ar71-p3ha

vulnerability	VCID-1mms-9rqw-xqhq

vulnerability	VCID-35fm-apgj-jqd3

vulnerability	VCID-3e3b-6dse-s3gf

vulnerability	VCID-4qzp-up1c-2kfq

vulnerability	VCID-5j78-np3z-rfda

vulnerability	VCID-61p6-f9vu-7fca

vulnerability	VCID-61xw-8vnm-vkcx

vulnerability	VCID-64r1-zcg6-qfb8

vulnerability	VCID-67rb-z7qk-zke9

vulnerability	VCID-6t1m-v4ym-4uhs

vulnerability	VCID-71uq-hgqp-b3a1

vulnerability	VCID-8btx-vpre-pugb

vulnerability	VCID-9248-b5q8-2bc7

vulnerability	VCID-9ptv-guzs-kyg1

vulnerability	VCID-9w58-wv96-dfhb

vulnerability	VCID-b4g7-nvey-5bh3

vulnerability	VCID-b9hb-uzqm-wbcp

vulnerability	VCID-bqkn-zvm1-4kd6

vulnerability	VCID-c8b5-23zz-cudd

vulnerability	VCID-dk5d-3ebq-yfbn

vulnerability	VCID-eehy-pgzv-vudx

vulnerability	VCID-ek4k-3m72-qqbf

vulnerability	VCID-ffqg-mkqf-xqgh

vulnerability	VCID-g9rk-me3p-1fey

vulnerability	VCID-h11m-szkg-p7c5

vulnerability	VCID-hdnj-g415-2bbw

vulnerability	VCID-jz35-ynpa-sqfq

vulnerability	VCID-kdhy-vpg2-nqgh

vulnerability	VCID-kq3c-qp43-dqgg

vulnerability	VCID-kxvn-6xbg-4fep

vulnerability	VCID-mvgq-kb92-dqf8

vulnerability	VCID-nafh-ss66-efc1

vulnerability	VCID-p7x2-ejss-ffd1

vulnerability	VCID-pmx1-hkph-4qhd

vulnerability	VCID-rx6f-x5cc-6bef

vulnerability	VCID-ryjx-b2fp-5bbc

vulnerability	VCID-s6p4-xq69-6fb4

vulnerability	VCID-twp1-3h1f-r3de

vulnerability	VCID-wpew-vv5h-r7c5

vulnerability	VCID-xdgh-k9su-4bes

vulnerability	VCID-y5je-ud4g-ufdc

vulnerability	VCID-z1yq-nwk7-1kba

vulnerability	VCID-z6g3-j67d-87hc

resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@11.0.0-M1

url pkg:apache/tomcat@11.0.21

purl pkg:apache/tomcat@11.0.21

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4qzp-up1c-2kfq

vulnerability	VCID-5j78-np3z-rfda

vulnerability	VCID-9ptv-guzs-kyg1

vulnerability	VCID-c8b5-23zz-cudd

vulnerability	VCID-dk5d-3ebq-yfbn

vulnerability	VCID-kxvn-6xbg-4fep

vulnerability	VCID-pmx1-hkph-4qhd

resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@11.0.21

url pkg:deb/debian/tomcat11@11.0.15-1~deb13u1?distro=trixie

purl pkg:deb/debian/tomcat11@11.0.15-1~deb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1mms-9rqw-xqhq

vulnerability	VCID-3e3b-6dse-s3gf

vulnerability	VCID-4qzp-up1c-2kfq

vulnerability	VCID-5j78-np3z-rfda

vulnerability	VCID-71uq-hgqp-b3a1

vulnerability	VCID-9ptv-guzs-kyg1

vulnerability	VCID-bqkn-zvm1-4kd6

vulnerability	VCID-c8b5-23zz-cudd

vulnerability	VCID-dk5d-3ebq-yfbn

vulnerability	VCID-ek4k-3m72-qqbf

vulnerability	VCID-jz35-ynpa-sqfq

vulnerability	VCID-keyp-7fnn-cbh8

vulnerability	VCID-kxvn-6xbg-4fep

vulnerability	VCID-pmx1-hkph-4qhd

vulnerability	VCID-rx6f-x5cc-6bef

vulnerability	VCID-thj9-c3nq-f3ax

vulnerability	VCID-up1n-hunu-rkak

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat11@11.0.15-1~deb13u1%3Fdistro=trixie

url pkg:deb/debian/tomcat11@11.0.21-1?distro=trixie

purl pkg:deb/debian/tomcat11@11.0.21-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4qzp-up1c-2kfq

vulnerability	VCID-5j78-np3z-rfda

vulnerability	VCID-9ptv-guzs-kyg1

vulnerability	VCID-c8b5-23zz-cudd

vulnerability	VCID-dk5d-3ebq-yfbn

vulnerability	VCID-kxvn-6xbg-4fep

vulnerability	VCID-pmx1-hkph-4qhd

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat11@11.0.21-1%3Fdistro=trixie

url pkg:maven/org.apache.tomcat/tomcat@9.0.0.M1

purl pkg:maven/org.apache.tomcat/tomcat@9.0.0.M1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2d54-u8sa-n3d8

vulnerability	VCID-2scg-4ctu-nub4

vulnerability	VCID-3ft6-jaeb-cfd9

vulnerability	VCID-3gvy-wdjq-wkbn

vulnerability	VCID-46mj-73rn-tkg6

vulnerability	VCID-4mmj-yd4b-bqc9

vulnerability	VCID-579s-dxd6-f3ek

vulnerability	VCID-5j78-np3z-rfda

vulnerability	VCID-61p6-f9vu-7fca

vulnerability	VCID-61xw-8vnm-vkcx

vulnerability	VCID-67rb-z7qk-zke9

vulnerability	VCID-7duy-zbjz-pkh2

vulnerability	VCID-8btx-vpre-pugb

vulnerability	VCID-9eka-xfyd-mqh1

vulnerability	VCID-9kef-ww6g-47df

vulnerability	VCID-9ptv-guzs-kyg1

vulnerability	VCID-9w58-wv96-dfhb

vulnerability	VCID-9zgk-pw69-4kdb

vulnerability	VCID-a156-e8a1-pufm

vulnerability	VCID-b9hb-uzqm-wbcp

vulnerability	VCID-bb6z-a8sb-rkdb

vulnerability	VCID-bhwy-a7r9-4ubc

vulnerability	VCID-bqkn-zvm1-4kd6

vulnerability	VCID-bxhh-7y6z-vya3

vulnerability	VCID-c8b5-23zz-cudd

vulnerability	VCID-cvz2-m9hs-7ker

vulnerability	VCID-dk5d-3ebq-yfbn

vulnerability	VCID-dmrz-z2gw-8yfv

vulnerability	VCID-eehy-pgzv-vudx

vulnerability	VCID-erf4-k7u3-9ug9

vulnerability	VCID-evbs-epz4-ekdy

vulnerability	VCID-f5cj-hyb5-6bd1

vulnerability	VCID-f8s4-weeq-jqg1

vulnerability	VCID-ffqg-mkqf-xqgh

vulnerability	VCID-fr2m-dquh-u7hu

vulnerability	VCID-g11a-wp5s-2qdh

vulnerability	VCID-g4ne-v1t9-h3dj

vulnerability	VCID-g8re-u2zv-t7ep

vulnerability	VCID-gcsz-99fk-qkdx

vulnerability	VCID-gq7b-ee2j-6kb4

vulnerability	VCID-hgbg-akgm-pbfj

vulnerability	VCID-j384-wyej-27g8

vulnerability	VCID-kq3c-qp43-dqgg

vulnerability	VCID-kxvn-6xbg-4fep

vulnerability	VCID-m9zt-3fd4-3bhw

vulnerability	VCID-mhyu-u4w9-nkee

vulnerability	VCID-n9v8-hdbp-quca

vulnerability	VCID-p384-yv4k-nyam

vulnerability	VCID-p7x2-ejss-ffd1

vulnerability	VCID-phjv-amj5-2fab

vulnerability	VCID-pmx1-hkph-4qhd

vulnerability	VCID-pzss-nqu6-pufa

vulnerability	VCID-rcd8-dg2e-3keh

vulnerability	VCID-ruvk-p5t4-tqbh

vulnerability	VCID-rwwv-g43z-dkd1

vulnerability	VCID-s6p4-xq69-6fb4

vulnerability	VCID-twp1-3h1f-r3de

vulnerability	VCID-ujnj-2f48-e7ag

vulnerability	VCID-v6kq-kg7h-p3bq

vulnerability	VCID-wpew-vv5h-r7c5

vulnerability	VCID-xdgh-k9su-4bes

vulnerability	VCID-xpgj-16r8-3ya9

vulnerability	VCID-xqpc-truy-2fhv

vulnerability	VCID-y3ba-g4qn-93hg

vulnerability	VCID-y5je-ud4g-ufdc

vulnerability	VCID-yj65-daxr-7ud8

vulnerability	VCID-yy72-4q61-n7gu

vulnerability	VCID-z6g3-j67d-87hc

vulnerability	VCID-zd9x-yf4u-eqgf

vulnerability	VCID-zpvv-4hjw-g3bt

vulnerability	VCID-zsuz-c5yt-ukca

vulnerability	VCID-zyvy-3tq7-7fcm

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@9.0.0.M1

url pkg:maven/org.apache.tomcat/tomcat@9.0.117

purl pkg:maven/org.apache.tomcat/tomcat@9.0.117

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4qzp-up1c-2kfq

vulnerability	VCID-5j78-np3z-rfda

vulnerability	VCID-9ptv-guzs-kyg1

vulnerability	VCID-c8b5-23zz-cudd

vulnerability	VCID-dk5d-3ebq-yfbn

vulnerability	VCID-kxvn-6xbg-4fep

vulnerability	VCID-pmx1-hkph-4qhd

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@9.0.117

url pkg:maven/org.apache.tomcat/tomcat@10.1.0-M1

purl pkg:maven/org.apache.tomcat/tomcat@10.1.0-M1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1maq-ar71-p3ha

vulnerability	VCID-1mms-9rqw-xqhq

vulnerability	VCID-2kta-z43d-2uhm

vulnerability	VCID-35fm-apgj-jqd3

vulnerability	VCID-4pgx-mk91-xyba

vulnerability	VCID-4qzp-up1c-2kfq

vulnerability	VCID-5fj8-g5jf-wybu

vulnerability	VCID-5j78-np3z-rfda

vulnerability	VCID-61p6-f9vu-7fca

vulnerability	VCID-61xw-8vnm-vkcx

vulnerability	VCID-64r1-zcg6-qfb8

vulnerability	VCID-67rb-z7qk-zke9

vulnerability	VCID-6t1m-v4ym-4uhs

vulnerability	VCID-8btx-vpre-pugb

vulnerability	VCID-9248-b5q8-2bc7

vulnerability	VCID-9g9v-wsbr-hkde

vulnerability	VCID-9ptv-guzs-kyg1

vulnerability	VCID-9w58-wv96-dfhb

vulnerability	VCID-a8x5-hzkb-vuf4

vulnerability	VCID-b9hb-uzqm-wbcp

vulnerability	VCID-bqkn-zvm1-4kd6

vulnerability	VCID-c8b5-23zz-cudd

vulnerability	VCID-dk5d-3ebq-yfbn

vulnerability	VCID-eehy-pgzv-vudx

vulnerability	VCID-ffqg-mkqf-xqgh

vulnerability	VCID-g9rk-me3p-1fey

vulnerability	VCID-h11m-szkg-p7c5

vulnerability	VCID-hdnj-g415-2bbw

vulnerability	VCID-j4ut-s3e4-qqh7

vulnerability	VCID-jz35-ynpa-sqfq

vulnerability	VCID-kdhy-vpg2-nqgh

vulnerability	VCID-kq3c-qp43-dqgg

vulnerability	VCID-kxvn-6xbg-4fep

vulnerability	VCID-mvgq-kb92-dqf8

vulnerability	VCID-nafh-ss66-efc1

vulnerability	VCID-p7x2-ejss-ffd1

vulnerability	VCID-pmx1-hkph-4qhd

vulnerability	VCID-rx6f-x5cc-6bef

vulnerability	VCID-ryjx-b2fp-5bbc

vulnerability	VCID-s6p4-xq69-6fb4

vulnerability	VCID-twp1-3h1f-r3de

vulnerability	VCID-wpew-vv5h-r7c5

vulnerability	VCID-wtt7-38dy-gbec

vulnerability	VCID-xdgh-k9su-4bes

vulnerability	VCID-xym1-6dp5-t7d7

vulnerability	VCID-y5je-ud4g-ufdc

vulnerability	VCID-z1yq-nwk7-1kba

vulnerability	VCID-z6g3-j67d-87hc

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@10.1.0-M1

url pkg:maven/org.apache.tomcat/tomcat@10.1.54

purl pkg:maven/org.apache.tomcat/tomcat@10.1.54

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4qzp-up1c-2kfq

vulnerability	VCID-5j78-np3z-rfda

vulnerability	VCID-9ptv-guzs-kyg1

vulnerability	VCID-c8b5-23zz-cudd

vulnerability	VCID-dk5d-3ebq-yfbn

vulnerability	VCID-kxvn-6xbg-4fep

vulnerability	VCID-pmx1-hkph-4qhd

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@10.1.54

url pkg:maven/org.apache.tomcat/tomcat@11.0.0-M1

purl pkg:maven/org.apache.tomcat/tomcat@11.0.0-M1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1maq-ar71-p3ha

vulnerability	VCID-1mms-9rqw-xqhq

vulnerability	VCID-35fm-apgj-jqd3

vulnerability	VCID-3e3b-6dse-s3gf

vulnerability	VCID-4qzp-up1c-2kfq

vulnerability	VCID-5j78-np3z-rfda

vulnerability	VCID-61p6-f9vu-7fca

vulnerability	VCID-61xw-8vnm-vkcx

vulnerability	VCID-64r1-zcg6-qfb8

vulnerability	VCID-67rb-z7qk-zke9

vulnerability	VCID-6t1m-v4ym-4uhs

vulnerability	VCID-71uq-hgqp-b3a1

vulnerability	VCID-8btx-vpre-pugb

vulnerability	VCID-9248-b5q8-2bc7

vulnerability	VCID-9ptv-guzs-kyg1

vulnerability	VCID-9w58-wv96-dfhb

vulnerability	VCID-b4g7-nvey-5bh3

vulnerability	VCID-b9hb-uzqm-wbcp

vulnerability	VCID-bqkn-zvm1-4kd6

vulnerability	VCID-c8b5-23zz-cudd

vulnerability	VCID-dk5d-3ebq-yfbn

vulnerability	VCID-eehy-pgzv-vudx

vulnerability	VCID-ek4k-3m72-qqbf

vulnerability	VCID-ffqg-mkqf-xqgh

vulnerability	VCID-g9rk-me3p-1fey

vulnerability	VCID-h11m-szkg-p7c5

vulnerability	VCID-hdnj-g415-2bbw

vulnerability	VCID-jz35-ynpa-sqfq

vulnerability	VCID-kdhy-vpg2-nqgh

vulnerability	VCID-kq3c-qp43-dqgg

vulnerability	VCID-kxvn-6xbg-4fep

vulnerability	VCID-mvgq-kb92-dqf8

vulnerability	VCID-nafh-ss66-efc1

vulnerability	VCID-p7x2-ejss-ffd1

vulnerability	VCID-pmx1-hkph-4qhd

vulnerability	VCID-rx6f-x5cc-6bef

vulnerability	VCID-ryjx-b2fp-5bbc

vulnerability	VCID-s6p4-xq69-6fb4

vulnerability	VCID-twp1-3h1f-r3de

vulnerability	VCID-wpew-vv5h-r7c5

vulnerability	VCID-xdgh-k9su-4bes

vulnerability	VCID-y5je-ud4g-ufdc

vulnerability	VCID-z1yq-nwk7-1kba

vulnerability	VCID-z6g3-j67d-87hc

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@11.0.0-M1

url pkg:maven/org.apache.tomcat/tomcat@11.0.21

purl pkg:maven/org.apache.tomcat/tomcat@11.0.21

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4qzp-up1c-2kfq

vulnerability	VCID-5j78-np3z-rfda

vulnerability	VCID-9ptv-guzs-kyg1

vulnerability	VCID-c8b5-23zz-cudd

vulnerability	VCID-dk5d-3ebq-yfbn

vulnerability	VCID-kxvn-6xbg-4fep

vulnerability	VCID-pmx1-hkph-4qhd

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@11.0.21

References

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2026-41293

reference_id

reference_type

scores

value	0.00253
scoring_system	epss
scoring_elements	0.48789
published_at	2026-05-30T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2026-41293

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://github.com/apache/tomcat

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://github.com/apache/tomcat

reference_url

https://github.com/apache/tomcat/commit/19f17a257797e8d139b33ff9c88d362a273be148

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://github.com/apache/tomcat/commit/19f17a257797e8d139b33ff9c88d362a273be148

reference_url

https://github.com/apache/tomcat/commit/1c70480466572c9192ed412ebefcd43fc63137fd

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://github.com/apache/tomcat/commit/1c70480466572c9192ed412ebefcd43fc63137fd

reference_url

https://github.com/apache/tomcat/commit/2a2476460e823789f530a22207873ea8cd6eff3b

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://github.com/apache/tomcat/commit/2a2476460e823789f530a22207873ea8cd6eff3b

reference_url

https://github.com/apache/tomcat/commit/3915fd27e6810b14ccd21e3d900bd8faef44d3df

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://github.com/apache/tomcat/commit/3915fd27e6810b14ccd21e3d900bd8faef44d3df

reference_url

https://github.com/apache/tomcat/commit/57c2b3bfd62792631e1df24cf4237b990a0b36fa

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://github.com/apache/tomcat/commit/57c2b3bfd62792631e1df24cf4237b990a0b36fa

reference_url

https://github.com/apache/tomcat/commit/c2925554c677da57390f940d856871e18daaacab

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://github.com/apache/tomcat/commit/c2925554c677da57390f940d856871e18daaacab

reference_url

https://github.com/apache/tomcat/commit/cf9452443bcbf3b1a4b435ef7d624364f1b65ca3

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://github.com/apache/tomcat/commit/cf9452443bcbf3b1a4b435ef7d624364f1b65ca3

reference_url

https://github.com/apache/tomcat/commit/e5cef9618c3f4fd31bd6fb1e83f0f18022280dac

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://github.com/apache/tomcat/commit/e5cef9618c3f4fd31bd6fb1e83f0f18022280dac

reference_url

https://github.com/apache/tomcat/commit/f72a6174ab1f0f5a053435f80448b4f6837fe6d7

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://github.com/apache/tomcat/commit/f72a6174ab1f0f5a053435f80448b4f6837fe6d7

reference_url

https://lists.apache.org/thread/qwg0q16z7xkb2qrr853wdll5531mvl1r

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread/qwg0q16z7xkb2qrr853wdll5531mvl1r

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2026-41293

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2026-41293

reference_url

https://tomcat.apache.org/security-10.html

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://tomcat.apache.org/security-10.html

reference_url

https://tomcat.apache.org/security-11.html

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://tomcat.apache.org/security-11.html

reference_url

https://tomcat.apache.org/security-9.html

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://tomcat.apache.org/security-9.html

reference_url

http://www.openwall.com/lists/oss-security/2026/05/12/13

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

http://www.openwall.com/lists/oss-security/2026/05/12/13

reference_url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-41293

reference_id

CVE-2026-41293

reference_type

scores

value	Low
scoring_system	apache_tomcat
scoring_elements

url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-41293

Weaknesses

cwe_id	20
name	Improper Input Validation
description	The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

Exploits

Severity_range_score 0.1 - 10.0

Exploitability 0.5

Weighted_severity 2.7

Risk_score 1.4

Resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-dk5d-3ebq-yfbn

Vulnerability Instance