VulnerableCode Package Details - pkg:apache/tomcat@8.0.1

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:apache/tomcat@8.0.1

Essentials
History (1)

purl	pkg:apache/tomcat@8.0.1

Next non-vulnerable version	8.0.9
Latest non-vulnerable version	11.0.21
Risk	10.0

Vulnerabilities affecting this package (1)

Vulnerability	Summary	Fixed by
VCID-gv12-4ruf-kfhq Aliases: CVE-2014-0050 GHSA-xx68-jfcg-xmmf	MultipartStream.java in Apache Commons FileUpload before 1.3.1, as used in Apache Tomcat, JBoss Web, and other products, allows remote attackers to cause a denial of service (infinite loop and CPU consumption) via a crafted Content-Type header that bypasses a loop's intended exit conditions.	8.0.3 Affected by 4 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}

Vulnerabilities fixed by this package (0)

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-01T12:38:13.283180+00:00	Apache Tomcat Importer	Affected by	VCID-gv12-4ruf-kfhq	https://tomcat.apache.org/security-8.html	38.0.0