Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-keyp-7fnn-cbh8
Summary
Aliases
0
alias CVE-2026-32990
1
alias GHSA-8mc5-53m5-3qj2
Fixed_packages
0
url pkg:apache/tomcat@9.0.116
purl pkg:apache/tomcat@9.0.116
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1mms-9rqw-xqhq
1
vulnerability VCID-3e3b-6dse-s3gf
2
vulnerability VCID-aug4-yyp5-37f8
3
vulnerability VCID-jz35-ynpa-sqfq
4
vulnerability VCID-up1n-hunu-rkak
resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@9.0.116
1
url pkg:apache/tomcat@10.1.53
purl pkg:apache/tomcat@10.1.53
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1mms-9rqw-xqhq
1
vulnerability VCID-3e3b-6dse-s3gf
2
vulnerability VCID-aug4-yyp5-37f8
3
vulnerability VCID-jz35-ynpa-sqfq
4
vulnerability VCID-up1n-hunu-rkak
resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@10.1.53
2
url pkg:apache/tomcat@11.0.20
purl pkg:apache/tomcat@11.0.20
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1mms-9rqw-xqhq
1
vulnerability VCID-3e3b-6dse-s3gf
2
vulnerability VCID-aug4-yyp5-37f8
3
vulnerability VCID-jz35-ynpa-sqfq
4
vulnerability VCID-up1n-hunu-rkak
resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@11.0.20
3
url pkg:deb/debian/tomcat10@10.1.52-1
purl pkg:deb/debian/tomcat10@10.1.52-1
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat10@10.1.52-1
4
url pkg:deb/debian/tomcat10@10.1.54-1?distro=trixie
purl pkg:deb/debian/tomcat10@10.1.54-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat10@10.1.54-1%3Fdistro=trixie
5
url pkg:deb/debian/tomcat11@11.0.21-1
purl pkg:deb/debian/tomcat11@11.0.21-1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4qzp-up1c-2kfq
1
vulnerability VCID-5j78-np3z-rfda
2
vulnerability VCID-9ptv-guzs-kyg1
3
vulnerability VCID-c8b5-23zz-cudd
4
vulnerability VCID-dk5d-3ebq-yfbn
5
vulnerability VCID-kxvn-6xbg-4fep
6
vulnerability VCID-pmx1-hkph-4qhd
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat11@11.0.21-1
6
url pkg:deb/debian/tomcat11@11.0.21-1?distro=trixie
purl pkg:deb/debian/tomcat11@11.0.21-1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4qzp-up1c-2kfq
1
vulnerability VCID-5j78-np3z-rfda
2
vulnerability VCID-9ptv-guzs-kyg1
3
vulnerability VCID-c8b5-23zz-cudd
4
vulnerability VCID-dk5d-3ebq-yfbn
5
vulnerability VCID-kxvn-6xbg-4fep
6
vulnerability VCID-pmx1-hkph-4qhd
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat11@11.0.21-1%3Fdistro=trixie
7
url pkg:deb/debian/tomcat11@11.0.22-2?distro=trixie
purl pkg:deb/debian/tomcat11@11.0.22-2?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat11@11.0.22-2%3Fdistro=trixie
8
url pkg:deb/debian/tomcat9@9.0.43-2~deb11u10?distro=trixie
purl pkg:deb/debian/tomcat9@9.0.43-2~deb11u10?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat9@9.0.43-2~deb11u10%3Fdistro=trixie
9
url pkg:deb/debian/tomcat9@9.0.70-2?distro=trixie
purl pkg:deb/debian/tomcat9@9.0.70-2?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat9@9.0.70-2%3Fdistro=trixie
10
url pkg:deb/debian/tomcat9@9.0.95-1?distro=trixie
purl pkg:deb/debian/tomcat9@9.0.95-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat9@9.0.95-1%3Fdistro=trixie
11
url pkg:deb/debian/tomcat9@9.0.115-1?distro=trixie
purl pkg:deb/debian/tomcat9@9.0.115-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat9@9.0.115-1%3Fdistro=trixie
12
url pkg:deb/debian/tomcat9@9.0.118-1?distro=trixie
purl pkg:deb/debian/tomcat9@9.0.118-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat9@9.0.118-1%3Fdistro=trixie
13
url pkg:maven/org.apache.tomcat/tomcat@9.0.116
purl pkg:maven/org.apache.tomcat/tomcat@9.0.116
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1mms-9rqw-xqhq
1
vulnerability VCID-3e3b-6dse-s3gf
2
vulnerability VCID-aug4-yyp5-37f8
3
vulnerability VCID-jz35-ynpa-sqfq
4
vulnerability VCID-up1n-hunu-rkak
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@9.0.116
14
url pkg:maven/org.apache.tomcat/tomcat@10.1.53
purl pkg:maven/org.apache.tomcat/tomcat@10.1.53
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1mms-9rqw-xqhq
1
vulnerability VCID-3e3b-6dse-s3gf
2
vulnerability VCID-aug4-yyp5-37f8
3
vulnerability VCID-jz35-ynpa-sqfq
4
vulnerability VCID-up1n-hunu-rkak
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@10.1.53
15
url pkg:maven/org.apache.tomcat/tomcat@11.0.20
purl pkg:maven/org.apache.tomcat/tomcat@11.0.20
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1mms-9rqw-xqhq
1
vulnerability VCID-3e3b-6dse-s3gf
2
vulnerability VCID-aug4-yyp5-37f8
3
vulnerability VCID-jz35-ynpa-sqfq
4
vulnerability VCID-up1n-hunu-rkak
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@11.0.20
16
url pkg:maven/org.apache.tomcat/tomcat-coyote@9.0.116
purl pkg:maven/org.apache.tomcat/tomcat-coyote@9.0.116
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat-coyote@9.0.116
17
url pkg:maven/org.apache.tomcat/tomcat-coyote@10.1.53
purl pkg:maven/org.apache.tomcat/tomcat-coyote@10.1.53
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat-coyote@10.1.53
18
url pkg:maven/org.apache.tomcat/tomcat-coyote@11.0.20
purl pkg:maven/org.apache.tomcat/tomcat-coyote@11.0.20
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat-coyote@11.0.20
19
url pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@9.0.116
purl pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@9.0.116
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@9.0.116
20
url pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@10.1.53
purl pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@10.1.53
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@10.1.53
21
url pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@11.0.20
purl pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@11.0.20
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@11.0.20
Affected_packages
0
url pkg:apache/tomcat@9.0.113
purl pkg:apache/tomcat@9.0.113
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-8btx-vpre-pugb
1
vulnerability VCID-keyp-7fnn-cbh8
resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@9.0.113
1
url pkg:apache/tomcat@9.0.115
purl pkg:apache/tomcat@9.0.115
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3e3b-6dse-s3gf
1
vulnerability VCID-8btx-vpre-pugb
2
vulnerability VCID-bqkn-zvm1-4kd6
3
vulnerability VCID-keyp-7fnn-cbh8
4
vulnerability VCID-rx6f-x5cc-6bef
5
vulnerability VCID-thj9-c3nq-f3ax
resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@9.0.115
2
url pkg:apache/tomcat@10.1.50
purl pkg:apache/tomcat@10.1.50
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-8btx-vpre-pugb
1
vulnerability VCID-keyp-7fnn-cbh8
resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@10.1.50
3
url pkg:apache/tomcat@10.1.52
purl pkg:apache/tomcat@10.1.52
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3e3b-6dse-s3gf
1
vulnerability VCID-8btx-vpre-pugb
2
vulnerability VCID-bqkn-zvm1-4kd6
3
vulnerability VCID-keyp-7fnn-cbh8
4
vulnerability VCID-rx6f-x5cc-6bef
5
vulnerability VCID-thj9-c3nq-f3ax
resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@10.1.52
4
url pkg:apache/tomcat@11.0.15
purl pkg:apache/tomcat@11.0.15
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-8btx-vpre-pugb
1
vulnerability VCID-keyp-7fnn-cbh8
resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@11.0.15
5
url pkg:apache/tomcat@11.0.19
purl pkg:apache/tomcat@11.0.19
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-8btx-vpre-pugb
1
vulnerability VCID-keyp-7fnn-cbh8
resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@11.0.19
6
url pkg:deb/debian/tomcat10@10.1.52-1~deb12u1
purl pkg:deb/debian/tomcat10@10.1.52-1~deb12u1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1mms-9rqw-xqhq
1
vulnerability VCID-3e3b-6dse-s3gf
2
vulnerability VCID-bqkn-zvm1-4kd6
3
vulnerability VCID-ek4k-3m72-qqbf
4
vulnerability VCID-jz35-ynpa-sqfq
5
vulnerability VCID-keyp-7fnn-cbh8
6
vulnerability VCID-rx6f-x5cc-6bef
7
vulnerability VCID-thj9-c3nq-f3ax
8
vulnerability VCID-up1n-hunu-rkak
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat10@10.1.52-1~deb12u1
7
url pkg:deb/debian/tomcat10@10.1.52-1~deb13u1
purl pkg:deb/debian/tomcat10@10.1.52-1~deb13u1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1mms-9rqw-xqhq
1
vulnerability VCID-3e3b-6dse-s3gf
2
vulnerability VCID-bqkn-zvm1-4kd6
3
vulnerability VCID-ek4k-3m72-qqbf
4
vulnerability VCID-jz35-ynpa-sqfq
5
vulnerability VCID-keyp-7fnn-cbh8
6
vulnerability VCID-rx6f-x5cc-6bef
7
vulnerability VCID-thj9-c3nq-f3ax
8
vulnerability VCID-up1n-hunu-rkak
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat10@10.1.52-1~deb13u1
8
url pkg:deb/debian/tomcat10@10.1.52-1~deb12u1?distro=trixie
purl pkg:deb/debian/tomcat10@10.1.52-1~deb12u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1mms-9rqw-xqhq
1
vulnerability VCID-3e3b-6dse-s3gf
2
vulnerability VCID-bqkn-zvm1-4kd6
3
vulnerability VCID-ek4k-3m72-qqbf
4
vulnerability VCID-jz35-ynpa-sqfq
5
vulnerability VCID-keyp-7fnn-cbh8
6
vulnerability VCID-rx6f-x5cc-6bef
7
vulnerability VCID-thj9-c3nq-f3ax
8
vulnerability VCID-up1n-hunu-rkak
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat10@10.1.52-1~deb12u1%3Fdistro=trixie
9
url pkg:deb/debian/tomcat10@10.1.52-1~deb13u1?distro=trixie
purl pkg:deb/debian/tomcat10@10.1.52-1~deb13u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1mms-9rqw-xqhq
1
vulnerability VCID-3e3b-6dse-s3gf
2
vulnerability VCID-bqkn-zvm1-4kd6
3
vulnerability VCID-ek4k-3m72-qqbf
4
vulnerability VCID-jz35-ynpa-sqfq
5
vulnerability VCID-keyp-7fnn-cbh8
6
vulnerability VCID-rx6f-x5cc-6bef
7
vulnerability VCID-thj9-c3nq-f3ax
8
vulnerability VCID-up1n-hunu-rkak
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat10@10.1.52-1~deb13u1%3Fdistro=trixie
10
url pkg:deb/debian/tomcat11@11.0.15-1~deb13u1
purl pkg:deb/debian/tomcat11@11.0.15-1~deb13u1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1mms-9rqw-xqhq
1
vulnerability VCID-3e3b-6dse-s3gf
2
vulnerability VCID-4qzp-up1c-2kfq
3
vulnerability VCID-5j78-np3z-rfda
4
vulnerability VCID-71uq-hgqp-b3a1
5
vulnerability VCID-9ptv-guzs-kyg1
6
vulnerability VCID-bqkn-zvm1-4kd6
7
vulnerability VCID-c8b5-23zz-cudd
8
vulnerability VCID-dk5d-3ebq-yfbn
9
vulnerability VCID-ek4k-3m72-qqbf
10
vulnerability VCID-jz35-ynpa-sqfq
11
vulnerability VCID-keyp-7fnn-cbh8
12
vulnerability VCID-kxvn-6xbg-4fep
13
vulnerability VCID-pmx1-hkph-4qhd
14
vulnerability VCID-rx6f-x5cc-6bef
15
vulnerability VCID-thj9-c3nq-f3ax
16
vulnerability VCID-up1n-hunu-rkak
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat11@11.0.15-1~deb13u1
11
url pkg:deb/debian/tomcat11@11.0.15-1~deb13u1?distro=trixie
purl pkg:deb/debian/tomcat11@11.0.15-1~deb13u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1mms-9rqw-xqhq
1
vulnerability VCID-3e3b-6dse-s3gf
2
vulnerability VCID-4qzp-up1c-2kfq
3
vulnerability VCID-5j78-np3z-rfda
4
vulnerability VCID-71uq-hgqp-b3a1
5
vulnerability VCID-9ptv-guzs-kyg1
6
vulnerability VCID-bqkn-zvm1-4kd6
7
vulnerability VCID-c8b5-23zz-cudd
8
vulnerability VCID-dk5d-3ebq-yfbn
9
vulnerability VCID-ek4k-3m72-qqbf
10
vulnerability VCID-jz35-ynpa-sqfq
11
vulnerability VCID-keyp-7fnn-cbh8
12
vulnerability VCID-kxvn-6xbg-4fep
13
vulnerability VCID-pmx1-hkph-4qhd
14
vulnerability VCID-rx6f-x5cc-6bef
15
vulnerability VCID-thj9-c3nq-f3ax
16
vulnerability VCID-up1n-hunu-rkak
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat11@11.0.15-1~deb13u1%3Fdistro=trixie
12
url pkg:maven/org.apache.tomcat/tomcat@9.0.113
purl pkg:maven/org.apache.tomcat/tomcat@9.0.113
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-8btx-vpre-pugb
1
vulnerability VCID-keyp-7fnn-cbh8
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@9.0.113
13
url pkg:maven/org.apache.tomcat/tomcat@9.0.115
purl pkg:maven/org.apache.tomcat/tomcat@9.0.115
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3e3b-6dse-s3gf
1
vulnerability VCID-8btx-vpre-pugb
2
vulnerability VCID-bqkn-zvm1-4kd6
3
vulnerability VCID-keyp-7fnn-cbh8
4
vulnerability VCID-rx6f-x5cc-6bef
5
vulnerability VCID-thj9-c3nq-f3ax
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@9.0.115
14
url pkg:maven/org.apache.tomcat/tomcat@10.1.50
purl pkg:maven/org.apache.tomcat/tomcat@10.1.50
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-8btx-vpre-pugb
1
vulnerability VCID-keyp-7fnn-cbh8
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@10.1.50
15
url pkg:maven/org.apache.tomcat/tomcat@10.1.52
purl pkg:maven/org.apache.tomcat/tomcat@10.1.52
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3e3b-6dse-s3gf
1
vulnerability VCID-8btx-vpre-pugb
2
vulnerability VCID-bqkn-zvm1-4kd6
3
vulnerability VCID-keyp-7fnn-cbh8
4
vulnerability VCID-rx6f-x5cc-6bef
5
vulnerability VCID-thj9-c3nq-f3ax
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@10.1.52
16
url pkg:maven/org.apache.tomcat/tomcat@11.0.15
purl pkg:maven/org.apache.tomcat/tomcat@11.0.15
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-8btx-vpre-pugb
1
vulnerability VCID-keyp-7fnn-cbh8
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@11.0.15
17
url pkg:maven/org.apache.tomcat/tomcat@11.0.19
purl pkg:maven/org.apache.tomcat/tomcat@11.0.19
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-8btx-vpre-pugb
1
vulnerability VCID-keyp-7fnn-cbh8
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@11.0.19
18
url pkg:rpm/redhat/jws6-tomcat@10.1.49-10.redhat_00008.1?arch=el10jws
purl pkg:rpm/redhat/jws6-tomcat@10.1.49-10.redhat_00008.1?arch=el10jws
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-67rb-z7qk-zke9
1
vulnerability VCID-8btx-vpre-pugb
2
vulnerability VCID-keyp-7fnn-cbh8
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jws6-tomcat@10.1.49-10.redhat_00008.1%3Farch=el10jws
19
url pkg:rpm/redhat/jws6-tomcat@10.1.49-10.redhat_00008.1?arch=el8jws
purl pkg:rpm/redhat/jws6-tomcat@10.1.49-10.redhat_00008.1?arch=el8jws
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-67rb-z7qk-zke9
1
vulnerability VCID-8btx-vpre-pugb
2
vulnerability VCID-keyp-7fnn-cbh8
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jws6-tomcat@10.1.49-10.redhat_00008.1%3Farch=el8jws
20
url pkg:rpm/redhat/jws6-tomcat@10.1.49-10.redhat_00008.1?arch=el9jws
purl pkg:rpm/redhat/jws6-tomcat@10.1.49-10.redhat_00008.1?arch=el9jws
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-67rb-z7qk-zke9
1
vulnerability VCID-8btx-vpre-pugb
2
vulnerability VCID-keyp-7fnn-cbh8
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jws6-tomcat@10.1.49-10.redhat_00008.1%3Farch=el9jws
References
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-32990.json
reference_id
reference_type
scores
0
value 7.3
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-32990.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2026-32990
reference_id
reference_type
scores
0
value 0.00208
scoring_system epss
scoring_elements 0.43145
published_at 2026-05-30T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2026-32990
2
reference_url https://github.com/apache/tomcat
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value 6.9
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/apache/tomcat
3
reference_url https://github.com/apache/tomcat/commit/021d1f833e38b683a44688f7b28f1f27e8e37c36
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value 6.9
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/apache/tomcat/commit/021d1f833e38b683a44688f7b28f1f27e8e37c36
4
reference_url https://github.com/apache/tomcat/commit/4d0615a5c718c260d6d4e0b944a050f09a490c02
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value 6.9
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/apache/tomcat/commit/4d0615a5c718c260d6d4e0b944a050f09a490c02
5
reference_url https://github.com/apache/tomcat/commit/95f7778248cac46d03e6af04de9c72a598be3a53
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value 6.9
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/apache/tomcat/commit/95f7778248cac46d03e6af04de9c72a598be3a53
6
reference_url https://lists.apache.org/thread/1nl9zqft0ksqlhlkd3j4obyjz1ghoyn7
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value 6.9
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-10T18:38:40Z/
url https://lists.apache.org/thread/1nl9zqft0ksqlhlkd3j4obyjz1ghoyn7
7
reference_url https://nvd.nist.gov/vuln/detail/CVE-2026-32990
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value 6.9
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2026-32990
8
reference_url https://tomcat.apache.org/security-10.html#Fixed_in_Apache_Tomcat_10.1.53
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value 6.9
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://tomcat.apache.org/security-10.html#Fixed_in_Apache_Tomcat_10.1.53
9
reference_url https://tomcat.apache.org/security-11.html#Fixed_in_Apache_Tomcat_11.0.20
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value 6.9
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://tomcat.apache.org/security-11.html#Fixed_in_Apache_Tomcat_11.0.20
10
reference_url https://tomcat.apache.org/security-9.html#Fixed_in_Apache_Tomcat_9.0.116
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value 6.9
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://tomcat.apache.org/security-9.html#Fixed_in_Apache_Tomcat_9.0.116
11
reference_url https://www.herodevs.com/vulnerability-directory/cve-2026-32990
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
1
value 6.9
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://www.herodevs.com/vulnerability-directory/cve-2026-32990
12
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1133356
reference_id 1133356
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1133356
13
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1133357
reference_id 1133357
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1133357
14
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2457025
reference_id 2457025
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2457025
15
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-32990
reference_id CVE-2026-32990
reference_type
scores
0
value Moderate
scoring_system apache_tomcat
scoring_elements
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-32990
16
reference_url https://access.redhat.com/errata/RHSA-2026:12194
reference_id RHSA-2026:12194
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:12194
17
reference_url https://access.redhat.com/errata/RHSA-2026:12195
reference_id RHSA-2026:12195
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:12195
Weaknesses
0
cwe_id 184
name Incomplete List of Disallowed Inputs
description The product implements a protection mechanism that relies on a list of inputs (or properties of inputs) that are not allowed by policy or otherwise require other action to neutralize before additional processing takes place, but the list is incomplete, leading to resultant weaknesses.
1
cwe_id 20
name Improper Input Validation
description The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.
Exploits
Severity_range_score4.0 - 7.3
Exploitability0.5
Weighted_severity6.6
Risk_score3.3
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-keyp-7fnn-cbh8