Staging Environment: Content and features may be unstable or change without notice.
Search for vulnerabilities
Vulnerability details: VCID-eehy-pgzv-vudx
Vulnerability ID VCID-eehy-pgzv-vudx
Aliases CVE-2025-48976
Summary multiple issues
Status Published
Exploitability None
Weighted Severity None
Risk None
Affected and Fixed Packages Package Details
Weaknesses (0)
There are no known CWE.
System Score Found at
epss 0.01278 https://api.first.org/data/v1/epss?cve=CVE-2025-48976
apache_tomcat Important https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-48976
archlinux High https://security.archlinux.org/AVG-2888
archlinux High https://security.archlinux.org/AVG-2889
Reference id Reference type URL
https://api.first.org/data/v1/epss?cve=CVE-2025-48976
https://github.com/apache/tomcat/commit/667ddd76e2a0e762f3a784d86f0d25e7fd7cdb86
https://github.com/apache/tomcat/commit/74f69ffaf61e54c727603e7e831fe20f0ac5d2a7
https://github.com/apache/tomcat/commit/97790a35a27d236fa053e660676c3f8196284d93
AVG-2888 https://security.archlinux.org/AVG-2888
AVG-2889 https://security.archlinux.org/AVG-2889
CVE-2025-48976 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-48976
No exploits are available.
Exploit Prediction Scoring System (EPSS)
Percentile 0.79876
EPSS Score 0.01278
Published At May 30, 2026, 12:55 p.m.
Date Actor Action Source VulnerableCode Version
2026-05-30T19:35:44.088350+00:00 Arch Linux Importer Import https://security.archlinux.org/AVG-2889 38.6.0