Django REST framework

Lookup for vulnerabilities affecting packages.

Vulnerability_id VCID-nafh-ss66-efc1

Summary

Aliases

alias	CVE-2024-52316

alias	GHSA-xcpr-7mr4-h4xq

Fixed_packages

url pkg:apache/tomcat@9.0.96

purl pkg:apache/tomcat@9.0.96

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-58hq-8nzw-7bfw

resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@9.0.96

url pkg:apache/tomcat@10.1.31

purl pkg:apache/tomcat@10.1.31

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-58hq-8nzw-7bfw

resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@10.1.31

url pkg:apache/tomcat@11.0.0

purl pkg:apache/tomcat@11.0.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-58hq-8nzw-7bfw

vulnerability	VCID-bapg-6hhe-nfhj

vulnerability	VCID-j4ut-s3e4-qqh7

resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@11.0.0

url	pkg:deb/debian/tomcat10@10.1.31-1?distro=trixie
purl	pkg:deb/debian/tomcat10@10.1.31-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat10@10.1.31-1%3Fdistro=trixie

url	pkg:deb/debian/tomcat10@10.1.34-0%2Bdeb12u1?distro=trixie
purl	pkg:deb/debian/tomcat10@10.1.34-0%2Bdeb12u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat10@10.1.34-0%252Bdeb12u1%3Fdistro=trixie

url pkg:deb/debian/tomcat10@10.1.52-1~deb12u1?distro=trixie

purl pkg:deb/debian/tomcat10@10.1.52-1~deb12u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1mms-9rqw-xqhq

vulnerability	VCID-3e3b-6dse-s3gf

vulnerability	VCID-bqkn-zvm1-4kd6

vulnerability	VCID-ek4k-3m72-qqbf

vulnerability	VCID-jz35-ynpa-sqfq

vulnerability	VCID-keyp-7fnn-cbh8

vulnerability	VCID-rx6f-x5cc-6bef

vulnerability	VCID-thj9-c3nq-f3ax

vulnerability	VCID-up1n-hunu-rkak

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat10@10.1.52-1~deb12u1%3Fdistro=trixie

url pkg:deb/debian/tomcat10@10.1.52-1~deb13u1?distro=trixie

purl pkg:deb/debian/tomcat10@10.1.52-1~deb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1mms-9rqw-xqhq

vulnerability	VCID-3e3b-6dse-s3gf

vulnerability	VCID-bqkn-zvm1-4kd6

vulnerability	VCID-ek4k-3m72-qqbf

vulnerability	VCID-jz35-ynpa-sqfq

vulnerability	VCID-keyp-7fnn-cbh8

vulnerability	VCID-rx6f-x5cc-6bef

vulnerability	VCID-thj9-c3nq-f3ax

vulnerability	VCID-up1n-hunu-rkak

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat10@10.1.52-1~deb13u1%3Fdistro=trixie

url	pkg:deb/debian/tomcat10@10.1.54-1?distro=trixie
purl	pkg:deb/debian/tomcat10@10.1.54-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat10@10.1.54-1%3Fdistro=trixie

url	pkg:deb/debian/tomcat9@9.0.115-1?distro=trixie
purl	pkg:deb/debian/tomcat9@9.0.115-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat9@9.0.115-1%3Fdistro=trixie

url	pkg:deb/debian/tomcat9@9.0.118-1?distro=trixie
purl	pkg:deb/debian/tomcat9@9.0.118-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat9@9.0.118-1%3Fdistro=trixie

url	pkg:deb/debian/tomcat9@9.0.43-2~deb11u10?distro=trixie
purl	pkg:deb/debian/tomcat9@9.0.43-2~deb11u10?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat9@9.0.43-2~deb11u10%3Fdistro=trixie

url	pkg:deb/debian/tomcat9@9.0.43-2~deb11u11?distro=trixie
purl	pkg:deb/debian/tomcat9@9.0.43-2~deb11u11?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat9@9.0.43-2~deb11u11%3Fdistro=trixie

url	pkg:deb/debian/tomcat9@9.0.70-2?distro=trixie
purl	pkg:deb/debian/tomcat9@9.0.70-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat9@9.0.70-2%3Fdistro=trixie

url	pkg:deb/debian/tomcat9@9.0.95-1?distro=trixie
purl	pkg:deb/debian/tomcat9@9.0.95-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/tomcat9@9.0.95-1%3Fdistro=trixie

url pkg:maven/org.apache.tomcat/tomcat@9.0.96

purl pkg:maven/org.apache.tomcat/tomcat@9.0.96

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-58hq-8nzw-7bfw

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@9.0.96

url pkg:maven/org.apache.tomcat/tomcat@10.1.31

purl pkg:maven/org.apache.tomcat/tomcat@10.1.31

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-58hq-8nzw-7bfw

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@10.1.31

url pkg:maven/org.apache.tomcat/tomcat@11.0.0

purl pkg:maven/org.apache.tomcat/tomcat@11.0.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-58hq-8nzw-7bfw

vulnerability	VCID-bapg-6hhe-nfhj

vulnerability	VCID-gted-g7jd-nqcf

vulnerability	VCID-j4ut-s3e4-qqh7

vulnerability	VCID-ryjx-b2fp-5bbc

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@11.0.0

url	pkg:maven/org.apache.tomcat/tomcat-catalina@10.1.30
purl	pkg:maven/org.apache.tomcat/tomcat-catalina@10.1.30
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat-catalina@10.1.30

url	pkg:maven/org.apache.tomcat/tomcat-catalina@11.0.1
purl	pkg:maven/org.apache.tomcat/tomcat-catalina@11.0.1
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat-catalina@11.0.1

url	pkg:maven/org.apache.tomcat/tomcat-catalina@9.0.96
purl	pkg:maven/org.apache.tomcat/tomcat-catalina@9.0.96
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat-catalina@9.0.96

Affected_packages

url pkg:apache/tomcat@9.0.0-M1

purl pkg:apache/tomcat@9.0.0-M1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1maq-ar71-p3ha

vulnerability	VCID-2kta-z43d-2uhm

vulnerability	VCID-35fm-apgj-jqd3

vulnerability	VCID-64r1-zcg6-qfb8

vulnerability	VCID-9248-b5q8-2bc7

vulnerability	VCID-g9rk-me3p-1fey

vulnerability	VCID-hdnj-g415-2bbw

vulnerability	VCID-j4ut-s3e4-qqh7

vulnerability	VCID-kdhy-vpg2-nqgh

vulnerability	VCID-nafh-ss66-efc1

vulnerability	VCID-ryjx-b2fp-5bbc

vulnerability	VCID-vayx-r1yd-yfcx

vulnerability	VCID-wj1q-ry9z-33af

vulnerability	VCID-wtt7-38dy-gbec

vulnerability	VCID-z1yq-nwk7-1kba

resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@9.0.0-M1

url pkg:apache/tomcat@9.0.95

purl pkg:apache/tomcat@9.0.95

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-nafh-ss66-efc1

vulnerability	VCID-rzd7-26dq-b7ff

resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@9.0.95

url pkg:apache/tomcat@10.1.0-M1

purl pkg:apache/tomcat@10.1.0-M1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1maq-ar71-p3ha

vulnerability	VCID-1mms-9rqw-xqhq

vulnerability	VCID-2kta-z43d-2uhm

vulnerability	VCID-35fm-apgj-jqd3

vulnerability	VCID-4pgx-mk91-xyba

vulnerability	VCID-4qzp-up1c-2kfq

vulnerability	VCID-5fj8-g5jf-wybu

vulnerability	VCID-5j78-np3z-rfda

vulnerability	VCID-61p6-f9vu-7fca

vulnerability	VCID-61xw-8vnm-vkcx

vulnerability	VCID-64r1-zcg6-qfb8

vulnerability	VCID-67rb-z7qk-zke9

vulnerability	VCID-6t1m-v4ym-4uhs

vulnerability	VCID-8btx-vpre-pugb

vulnerability	VCID-9248-b5q8-2bc7

vulnerability	VCID-9g9v-wsbr-hkde

vulnerability	VCID-9ptv-guzs-kyg1

vulnerability	VCID-9w58-wv96-dfhb

vulnerability	VCID-a8x5-hzkb-vuf4

vulnerability	VCID-b9hb-uzqm-wbcp

vulnerability	VCID-bqkn-zvm1-4kd6

vulnerability	VCID-c8b5-23zz-cudd

vulnerability	VCID-dk5d-3ebq-yfbn

vulnerability	VCID-eehy-pgzv-vudx

vulnerability	VCID-ffqg-mkqf-xqgh

vulnerability	VCID-g9rk-me3p-1fey

vulnerability	VCID-h11m-szkg-p7c5

vulnerability	VCID-hdnj-g415-2bbw

vulnerability	VCID-j4ut-s3e4-qqh7

vulnerability	VCID-jz35-ynpa-sqfq

vulnerability	VCID-kdhy-vpg2-nqgh

vulnerability	VCID-kq3c-qp43-dqgg

vulnerability	VCID-kxvn-6xbg-4fep

vulnerability	VCID-mvgq-kb92-dqf8

vulnerability	VCID-nafh-ss66-efc1

vulnerability	VCID-p7x2-ejss-ffd1

vulnerability	VCID-pmx1-hkph-4qhd

vulnerability	VCID-rx6f-x5cc-6bef

vulnerability	VCID-ryjx-b2fp-5bbc

vulnerability	VCID-s6p4-xq69-6fb4

vulnerability	VCID-twp1-3h1f-r3de

vulnerability	VCID-wpew-vv5h-r7c5

vulnerability	VCID-wtt7-38dy-gbec

vulnerability	VCID-xdgh-k9su-4bes

vulnerability	VCID-xym1-6dp5-t7d7

vulnerability	VCID-y5je-ud4g-ufdc

vulnerability	VCID-z1yq-nwk7-1kba

vulnerability	VCID-z6g3-j67d-87hc

resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@10.1.0-M1

url pkg:apache/tomcat@10.1.30

purl pkg:apache/tomcat@10.1.30

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-nafh-ss66-efc1

vulnerability	VCID-rzd7-26dq-b7ff

resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@10.1.30

url pkg:apache/tomcat@11.0.0-M1

purl pkg:apache/tomcat@11.0.0-M1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1maq-ar71-p3ha

vulnerability	VCID-1mms-9rqw-xqhq

vulnerability	VCID-35fm-apgj-jqd3

vulnerability	VCID-3e3b-6dse-s3gf

vulnerability	VCID-4qzp-up1c-2kfq

vulnerability	VCID-5j78-np3z-rfda

vulnerability	VCID-61p6-f9vu-7fca

vulnerability	VCID-61xw-8vnm-vkcx

vulnerability	VCID-64r1-zcg6-qfb8

vulnerability	VCID-67rb-z7qk-zke9

vulnerability	VCID-6t1m-v4ym-4uhs

vulnerability	VCID-71uq-hgqp-b3a1

vulnerability	VCID-8btx-vpre-pugb

vulnerability	VCID-9248-b5q8-2bc7

vulnerability	VCID-9ptv-guzs-kyg1

vulnerability	VCID-9w58-wv96-dfhb

vulnerability	VCID-b4g7-nvey-5bh3

vulnerability	VCID-b9hb-uzqm-wbcp

vulnerability	VCID-bqkn-zvm1-4kd6

vulnerability	VCID-c8b5-23zz-cudd

vulnerability	VCID-dk5d-3ebq-yfbn

vulnerability	VCID-eehy-pgzv-vudx

vulnerability	VCID-ek4k-3m72-qqbf

vulnerability	VCID-ffqg-mkqf-xqgh

vulnerability	VCID-g9rk-me3p-1fey

vulnerability	VCID-h11m-szkg-p7c5

vulnerability	VCID-hdnj-g415-2bbw

vulnerability	VCID-jz35-ynpa-sqfq

vulnerability	VCID-kdhy-vpg2-nqgh

vulnerability	VCID-kq3c-qp43-dqgg

vulnerability	VCID-kxvn-6xbg-4fep

vulnerability	VCID-mvgq-kb92-dqf8

vulnerability	VCID-nafh-ss66-efc1

vulnerability	VCID-p7x2-ejss-ffd1

vulnerability	VCID-pmx1-hkph-4qhd

vulnerability	VCID-rx6f-x5cc-6bef

vulnerability	VCID-ryjx-b2fp-5bbc

vulnerability	VCID-s6p4-xq69-6fb4

vulnerability	VCID-twp1-3h1f-r3de

vulnerability	VCID-wpew-vv5h-r7c5

vulnerability	VCID-xdgh-k9su-4bes

vulnerability	VCID-y5je-ud4g-ufdc

vulnerability	VCID-z1yq-nwk7-1kba

vulnerability	VCID-z6g3-j67d-87hc

resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@11.0.0-M1

url pkg:apache/tomcat@11.0.0-M26

purl pkg:apache/tomcat@11.0.0-M26

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-nafh-ss66-efc1

vulnerability	VCID-rzd7-26dq-b7ff

resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@11.0.0-M26

url pkg:maven/org.apache.tomcat/tomcat@9.0.0-M1

purl pkg:maven/org.apache.tomcat/tomcat@9.0.0-M1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1maq-ar71-p3ha

vulnerability	VCID-2kta-z43d-2uhm

vulnerability	VCID-35fm-apgj-jqd3

vulnerability	VCID-64r1-zcg6-qfb8

vulnerability	VCID-9248-b5q8-2bc7

vulnerability	VCID-g9rk-me3p-1fey

vulnerability	VCID-hdnj-g415-2bbw

vulnerability	VCID-j4ut-s3e4-qqh7

vulnerability	VCID-kdhy-vpg2-nqgh

vulnerability	VCID-nafh-ss66-efc1

vulnerability	VCID-ryjx-b2fp-5bbc

vulnerability	VCID-vayx-r1yd-yfcx

vulnerability	VCID-wj1q-ry9z-33af

vulnerability	VCID-wtt7-38dy-gbec

vulnerability	VCID-z1yq-nwk7-1kba

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@9.0.0-M1

url pkg:maven/org.apache.tomcat/tomcat@9.0.95

purl pkg:maven/org.apache.tomcat/tomcat@9.0.95

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-nafh-ss66-efc1

vulnerability	VCID-rzd7-26dq-b7ff

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@9.0.95

url pkg:maven/org.apache.tomcat/tomcat@10.1.0-M1

purl pkg:maven/org.apache.tomcat/tomcat@10.1.0-M1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1maq-ar71-p3ha

vulnerability	VCID-1mms-9rqw-xqhq

vulnerability	VCID-2kta-z43d-2uhm

vulnerability	VCID-35fm-apgj-jqd3

vulnerability	VCID-4pgx-mk91-xyba

vulnerability	VCID-4qzp-up1c-2kfq

vulnerability	VCID-5fj8-g5jf-wybu

vulnerability	VCID-5j78-np3z-rfda

vulnerability	VCID-61p6-f9vu-7fca

vulnerability	VCID-61xw-8vnm-vkcx

vulnerability	VCID-64r1-zcg6-qfb8

vulnerability	VCID-67rb-z7qk-zke9

vulnerability	VCID-6t1m-v4ym-4uhs

vulnerability	VCID-8btx-vpre-pugb

vulnerability	VCID-9248-b5q8-2bc7

vulnerability	VCID-9g9v-wsbr-hkde

vulnerability	VCID-9ptv-guzs-kyg1

vulnerability	VCID-9w58-wv96-dfhb

vulnerability	VCID-a8x5-hzkb-vuf4

vulnerability	VCID-b9hb-uzqm-wbcp

vulnerability	VCID-bqkn-zvm1-4kd6

vulnerability	VCID-c8b5-23zz-cudd

vulnerability	VCID-dk5d-3ebq-yfbn

vulnerability	VCID-eehy-pgzv-vudx

vulnerability	VCID-ffqg-mkqf-xqgh

vulnerability	VCID-g9rk-me3p-1fey

vulnerability	VCID-h11m-szkg-p7c5

vulnerability	VCID-hdnj-g415-2bbw

vulnerability	VCID-j4ut-s3e4-qqh7

vulnerability	VCID-jz35-ynpa-sqfq

vulnerability	VCID-kdhy-vpg2-nqgh

vulnerability	VCID-kq3c-qp43-dqgg

vulnerability	VCID-kxvn-6xbg-4fep

vulnerability	VCID-mvgq-kb92-dqf8

vulnerability	VCID-nafh-ss66-efc1

vulnerability	VCID-p7x2-ejss-ffd1

vulnerability	VCID-pmx1-hkph-4qhd

vulnerability	VCID-rx6f-x5cc-6bef

vulnerability	VCID-ryjx-b2fp-5bbc

vulnerability	VCID-s6p4-xq69-6fb4

vulnerability	VCID-twp1-3h1f-r3de

vulnerability	VCID-wpew-vv5h-r7c5

vulnerability	VCID-wtt7-38dy-gbec

vulnerability	VCID-xdgh-k9su-4bes

vulnerability	VCID-xym1-6dp5-t7d7

vulnerability	VCID-y5je-ud4g-ufdc

vulnerability	VCID-z1yq-nwk7-1kba

vulnerability	VCID-z6g3-j67d-87hc

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@10.1.0-M1

url pkg:maven/org.apache.tomcat/tomcat@10.1.30

purl pkg:maven/org.apache.tomcat/tomcat@10.1.30

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-nafh-ss66-efc1

vulnerability	VCID-rzd7-26dq-b7ff

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@10.1.30

url pkg:maven/org.apache.tomcat/tomcat@11.0.0-M1

purl pkg:maven/org.apache.tomcat/tomcat@11.0.0-M1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1maq-ar71-p3ha

vulnerability	VCID-1mms-9rqw-xqhq

vulnerability	VCID-35fm-apgj-jqd3

vulnerability	VCID-3e3b-6dse-s3gf

vulnerability	VCID-4qzp-up1c-2kfq

vulnerability	VCID-5j78-np3z-rfda

vulnerability	VCID-61p6-f9vu-7fca

vulnerability	VCID-61xw-8vnm-vkcx

vulnerability	VCID-64r1-zcg6-qfb8

vulnerability	VCID-67rb-z7qk-zke9

vulnerability	VCID-6t1m-v4ym-4uhs

vulnerability	VCID-71uq-hgqp-b3a1

vulnerability	VCID-8btx-vpre-pugb

vulnerability	VCID-9248-b5q8-2bc7

vulnerability	VCID-9ptv-guzs-kyg1

vulnerability	VCID-9w58-wv96-dfhb

vulnerability	VCID-b4g7-nvey-5bh3

vulnerability	VCID-b9hb-uzqm-wbcp

vulnerability	VCID-bqkn-zvm1-4kd6

vulnerability	VCID-c8b5-23zz-cudd

vulnerability	VCID-dk5d-3ebq-yfbn

vulnerability	VCID-eehy-pgzv-vudx

vulnerability	VCID-ek4k-3m72-qqbf

vulnerability	VCID-ffqg-mkqf-xqgh

vulnerability	VCID-g9rk-me3p-1fey

vulnerability	VCID-h11m-szkg-p7c5

vulnerability	VCID-hdnj-g415-2bbw

vulnerability	VCID-jz35-ynpa-sqfq

vulnerability	VCID-kdhy-vpg2-nqgh

vulnerability	VCID-kq3c-qp43-dqgg

vulnerability	VCID-kxvn-6xbg-4fep

vulnerability	VCID-mvgq-kb92-dqf8

vulnerability	VCID-nafh-ss66-efc1

vulnerability	VCID-p7x2-ejss-ffd1

vulnerability	VCID-pmx1-hkph-4qhd

vulnerability	VCID-rx6f-x5cc-6bef

vulnerability	VCID-ryjx-b2fp-5bbc

vulnerability	VCID-s6p4-xq69-6fb4

vulnerability	VCID-twp1-3h1f-r3de

vulnerability	VCID-wpew-vv5h-r7c5

vulnerability	VCID-xdgh-k9su-4bes

vulnerability	VCID-y5je-ud4g-ufdc

vulnerability	VCID-z1yq-nwk7-1kba

vulnerability	VCID-z6g3-j67d-87hc

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@11.0.0-M1

url pkg:maven/org.apache.tomcat/tomcat@11.0.0-M26

purl pkg:maven/org.apache.tomcat/tomcat@11.0.0-M26

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-nafh-ss66-efc1

vulnerability	VCID-rzd7-26dq-b7ff

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@11.0.0-M26

url pkg:rpm/redhat/jws6-tomcat@10.1.36-6.redhat_00007.1?arch=el8jws

purl pkg:rpm/redhat/jws6-tomcat@10.1.36-6.redhat_00007.1?arch=el8jws

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-kq3c-qp43-dqgg

vulnerability	VCID-nafh-ss66-efc1

vulnerability	VCID-tpv3-1vbv-tbd9

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jws6-tomcat@10.1.36-6.redhat_00007.1%3Farch=el8jws

url pkg:rpm/redhat/jws6-tomcat@10.1.36-6.redhat_00007.1?arch=el9jws

purl pkg:rpm/redhat/jws6-tomcat@10.1.36-6.redhat_00007.1?arch=el9jws

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-kq3c-qp43-dqgg

vulnerability	VCID-nafh-ss66-efc1

vulnerability	VCID-tpv3-1vbv-tbd9

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jws6-tomcat@10.1.36-6.redhat_00007.1%3Farch=el9jws

url pkg:rpm/redhat/tomcat@1:10.1.36-1?arch=el10_0

purl pkg:rpm/redhat/tomcat@1:10.1.36-1?arch=el10_0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-61xw-8vnm-vkcx

vulnerability	VCID-kq3c-qp43-dqgg

vulnerability	VCID-nafh-ss66-efc1

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/tomcat@1:10.1.36-1%3Farch=el10_0

References

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-52316.json

reference_id

reference_type

scores

value	7.4
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-52316.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2024-52316

reference_id

reference_type

scores

value	0.02487
scoring_system	epss
scoring_elements	0.85559
published_at	2026-05-30T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2024-52316

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://github.com/apache/tomcat

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://github.com/apache/tomcat

reference_url

https://github.com/apache/tomcat/commit/6d097a66746635df6880fe7662a792156b0eca14

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://github.com/apache/tomcat/commit/6d097a66746635df6880fe7662a792156b0eca14

reference_url

https://github.com/apache/tomcat/commit/7532f9dc4a8c37ec958f79dc82c4924a6c539223

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://github.com/apache/tomcat/commit/7532f9dc4a8c37ec958f79dc82c4924a6c539223

reference_url

https://github.com/apache/tomcat/commit/acc2f01395f895980f5d8a64573fcc1bade13369

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://github.com/apache/tomcat/commit/acc2f01395f895980f5d8a64573fcc1bade13369

reference_url

https://lists.apache.org/thread/lopzlqh91jj9n334g02om08sbysdb928

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2024-11-18T14:50:59Z/

url

https://lists.apache.org/thread/lopzlqh91jj9n334g02om08sbysdb928

reference_url

https://lists.debian.org/debian-lts-announce/2025/01/msg00009.html

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://lists.debian.org/debian-lts-announce/2025/01/msg00009.html

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2024-52316

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2024-52316

reference_url

https://security.netapp.com/advisory/ntap-20250124-0003

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://security.netapp.com/advisory/ntap-20250124-0003

reference_url

http://www.openwall.com/lists/oss-security/2024/11/18/2

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

http://www.openwall.com/lists/oss-security/2024/11/18/2

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2326972
reference_id	2326972
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2326972

reference_url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-52316

reference_id

CVE-2024-52316

reference_type

scores

value	Low
scoring_system	apache_tomcat
scoring_elements

url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-52316

reference_url	https://access.redhat.com/errata/RHSA-2025:3608
reference_id	RHSA-2025:3608
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:3608

reference_url	https://access.redhat.com/errata/RHSA-2025:3609
reference_id	RHSA-2025:3609
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:3609

reference_url	https://access.redhat.com/errata/RHSA-2025:7497
reference_id	RHSA-2025:7497
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:7497

Weaknesses

cwe_id	248
name	Uncaught Exception
description	An exception is thrown from a function, but it is not caught.

cwe_id	391
name	Unchecked Error Condition
description	[PLANNED FOR DEPRECATION. SEE MAINTENANCE NOTES AND CONSIDER CWE-252, CWE-248, OR CWE-1069.] Ignoring exceptions and other error conditions may allow an attacker to induce unexpected behavior unnoticed.

cwe_id	754
name	Improper Check for Unusual or Exceptional Conditions
description	The product does not check or incorrectly checks for unusual or exceptional conditions that are not expected to occur frequently during day to day operation of the product.

Exploits

Severity_range_score 0.1 - 10.0

Exploitability 0.5

Weighted_severity 6.7

Risk_score 3.4

Resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-nafh-ss66-efc1

Vulnerability Instance