Search for packages
| purl | pkg:maven/org.apache.tomcat/tomcat@5.5.12 |
| Tags | Ghost |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-18j8-kwdv-dyak
Aliases: CVE-2005-3510 GHSA-8f4w-jwqv-5cxc |
Apache Tomcat 5.5.0 to 5.5.11 allows remote attackers to cause a denial of service (CPU consumption) via a large number of simultaneous requests to list a web directory that has a large number of files. |
Affected by 0 other vulnerabilities. |
|
VCID-2jnv-segx-zkfd
Aliases: CVE-2006-3835 GHSA-wfj7-mhr5-pcwq |
Apache Tomcat 5 before 5.5.17 allows remote attackers to list directories via a semicolon (;) preceding a filename with a mapped extension, as demonstrated by URLs ending with /;index.jsp and /;help.do. |
Affected by 0 other vulnerabilities. Affected by 1 other vulnerability. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| This package is not known to fix vulnerabilities. | ||
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2026-04-01T16:00:27.099413+00:00 | GHSA Importer | Fixing | VCID-18j8-kwdv-dyak | https://github.com/advisories/GHSA-8f4w-jwqv-5cxc | 38.0.0 |
| 2026-04-01T13:09:04.201637+00:00 | GithubOSV Importer | Fixing | VCID-18j8-kwdv-dyak | https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/05/GHSA-8f4w-jwqv-5cxc/GHSA-8f4w-jwqv-5cxc.json | 38.0.0 |
| 2026-04-01T12:49:58.041195+00:00 | GitLab Importer | Fixing | VCID-18j8-kwdv-dyak | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat/tomcat/CVE-2005-3510.yml | 38.0.0 |
| 2026-04-01T12:38:19.444682+00:00 | Apache Tomcat Importer | Affected by | VCID-18j8-kwdv-dyak | https://tomcat.apache.org/security-5.html | 38.0.0 |
| 2026-04-01T12:38:19.406040+00:00 | Apache Tomcat Importer | Affected by | VCID-2jnv-segx-zkfd | https://tomcat.apache.org/security-5.html | 38.0.0 |