VulnerableCode Package Details - pkg:maven/org.apache.tomcat/tomcat-catalina@9.0.107

Search for packages

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerability

Summary

Fixed by

This package is not known to be affected by vulnerabilities.

Vulnerability	Summary	Aliases
VCID-k59r-wjt3-wqe5	For some unlikely configurations of multipart upload, an Integer Overflow vulnerability in Apache Tomcat could lead to a DoS via bypassing of size limits. This issue affects Apache Tomcat: from 11.0.0-M1 through 11.0.8, from 10.1.0-M1 through 10.1.42, from 9.0.0.M1 through 9.0.106. The following versions were EOL at the time the CVE was created but are known to be affected: 8.5.0 through 8.5.100. Other, older, EOL versions may also be affected. Users are recommended to upgrade to version 11.0.9, 10.1.43 or 9.0.107, which fix the issue.	CVE-2025-52520 GHSA-wr62-c79q-cv37

Vulnerability

Summary

Aliases

VCID-k59r-wjt3-wqe5

For some unlikely configurations of multipart upload, an Integer Overflow vulnerability in Apache Tomcat could lead to a DoS via bypassing of size limits. This issue affects Apache Tomcat: from 11.0.0-M1 through 11.0.8, from 10.1.0-M1 through 10.1.42, from 9.0.0.M1 through 9.0.106. The following versions were EOL at the time the CVE was created but are known to be affected: 8.5.0 through 8.5.100. Other, older, EOL versions may also be affected. Users are recommended to upgrade to version 11.0.9, 10.1.43 or 9.0.107, which fix the issue.

CVE-2025-52520
GHSA-wr62-c79q-cv37

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-16T23:33:00.210996+00:00	GitLab Importer	Fixing	VCID-k59r-wjt3-wqe5	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat/tomcat-catalina/CVE-2025-52520.yml	38.4.0
2026-04-12T00:52:58.632231+00:00	GitLab Importer	Fixing	VCID-k59r-wjt3-wqe5	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat/tomcat-catalina/CVE-2025-52520.yml	38.3.0
2026-04-07T04:58:11.401193+00:00	GHSA Importer	Fixing	VCID-k59r-wjt3-wqe5	https://github.com/advisories/GHSA-wr62-c79q-cv37	38.1.0
2026-04-03T01:01:08.008993+00:00	GitLab Importer	Fixing	VCID-k59r-wjt3-wqe5	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat/tomcat-catalina/CVE-2025-52520.yml	38.1.0
2026-04-02T12:41:41.528475+00:00	GitLab Importer	Fixing	VCID-k59r-wjt3-wqe5	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat/tomcat-catalina/CVE-2025-52520.yml	38.0.0
2026-04-01T12:56:35.418433+00:00	GithubOSV Importer	Fixing	VCID-k59r-wjt3-wqe5	https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2025/07/GHSA-wr62-c79q-cv37/GHSA-wr62-c79q-cv37.json	38.0.0