VulnerableCode Package Details - pkg:apache/tomcat@7.0.55

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:apache/tomcat@7.0.55

Essentials
History (2)

purl	pkg:apache/tomcat@7.0.55

Vulnerabilities affecting this package (0)

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerabilities fixed by this package (2)

Vulnerability	Summary	Aliases
VCID-4mkw-7haq-pkgn	Apache Tomcat 6.x before 6.0.44, 7.x before 7.0.55, and 8.x before 8.0.9 does not properly handle cases where an HTTP response occurs before finishing the reading of an entire request body, which allows remote attackers to cause a denial of service (thread consumption) via a series of aborted upload attempts.	CVE-2014-0230 GHSA-pxcx-cxq8-4mmw
VCID-a1by-zvtm-akdc	java/org/apache/coyote/http11/filters/ChunkedInputFilter.java in Apache Tomcat 6.x before 6.0.42, 7.x before 7.0.55, and 8.x before 8.0.9 does not properly handle attempts to continue reading data after an error has occurred, which allows remote attackers to conduct HTTP request smuggling attacks or cause a denial of service (resource consumption) by streaming data with malformed chunked transfer coding.	CVE-2014-0227 GHSA-42j3-498q-m6vp

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-01T12:38:14.782363+00:00	Apache Tomcat Importer	Fixing	VCID-4mkw-7haq-pkgn	https://tomcat.apache.org/security-7.html	38.0.0
2026-04-01T12:38:14.748006+00:00	Apache Tomcat Importer	Fixing	VCID-a1by-zvtm-akdc	https://tomcat.apache.org/security-7.html	38.0.0