{"url":"http://public2.vulnerablecode.io/api/packages/1017?format=json","purl":"pkg:maven/org.apache.tomcat/tomcat@7.0.10","type":"maven","namespace":"org.apache.tomcat","name":"tomcat","version":"7.0.10","qualifiers":{},"subpath":"","is_vulnerable":true,"next_non_vulnerable_version":"7.0.17","latest_non_vulnerable_version":"11.0.22","affected_by_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/30239?format=json","vulnerability_id":"VCID-3cvx-fuuh-ybf9","summary":"","references":[{"reference_url":"http://mail-archives.apache.org/mod_mbox/www-announce/201103.mbox/%3C4D6E74FF.7050106%40apache.org%3E","reference_id":"","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://mail-archives.apache.org/mod_mbox/www-announce/201103.mbox/%3C4D6E74FF.7050106%40apache.org%3E"},{"reference_url":"http://mail-archives.apache.org/mod_mbox/www-announce/201103.mbox/%3C4D6E74FF.7050106@apache.org%3E","reference_id":"","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://mail-archives.apache.org/mod_mbox/www-announce/201103.mbox/%3C4D6E74FF.7050106@apache.org%3E"},{"reference_url":"http://markmail.org/message/lzx5273wsgl5pob6","reference_id":"","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://markmail.org/message/lzx5273wsgl5pob6"},{"reference_url":"http://markmail.org/message/yzmyn44f5aetmm2r","reference_id":"","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://markmail.org/message/yzmyn44f5aetmm2r"},{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-1088.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-1088.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2011-1088","reference_id":"","reference_type":"","scores":[{"value":"0.16364","scoring_system":"epss","scoring_elements":"0.95012","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2011-1088"},{"reference_url":"http://secunia.com/advisories/43684","reference_id":"","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://secunia.com/advisories/43684"},{"reference_url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/65971","reference_id":"","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/65971"},{"reference_url":"https://github.com/apache/tomcat","reference_id":"","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/apache/tomcat"},{"reference_url":"https://github.com/apache/tomcat/commit/02780bbc6089a12b19d3d5e5dc810455ac6bfe92","reference_id":"","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/apache/tomcat/commit/02780bbc6089a12b19d3d5e5dc810455ac6bfe92"},{"reference_url":"https://github.com/apache/tomcat/commit/0a5a19f0c3b8d199b7335da5f88e956f59926673","reference_id":"","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/apache/tomcat/commit/0a5a19f0c3b8d199b7335da5f88e956f59926673"},{"reference_url":"https://github.com/apache/tomcat/commit/0f95cb7401acdbfc9b65c878948b84bb496f2386","reference_id":"","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/apache/tomcat/commit/0f95cb7401acdbfc9b65c878948b84bb496f2386"},{"reference_url":"https://github.com/apache/tomcat/commit/0ff4905158b77787a7f3aca55c9dec93456665dc","reference_id":"","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/apache/tomcat/commit/0ff4905158b77787a7f3aca55c9dec93456665dc"},{"reference_url":"https://github.com/apache/tomcat/commit/13fe121edb6f2b597d2b82725f1b01296ac78ebd","reference_id":"","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/apache/tomcat/commit/13fe121edb6f2b597d2b82725f1b01296ac78ebd"},{"reference_url":"https://github.com/apache/tomcat/commit/149af600532df6a24b1f7fc93607d764dfc9a7ea","reference_id":"","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/apache/tomcat/commit/149af600532df6a24b1f7fc93607d764dfc9a7ea"},{"reference_url":"https://github.com/apache/tomcat/commit/1b2d5e90d271ab087a36b556eb17519454170529","reference_id":"","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/apache/tomcat/commit/1b2d5e90d271ab087a36b556eb17519454170529"},{"reference_url":"https://github.com/apache/tomcat/commit/2d7dbfe4c63a4242a9b28fdb662d91ceb7a84630","reference_id":"","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/apache/tomcat/commit/2d7dbfe4c63a4242a9b28fdb662d91ceb7a84630"},{"reference_url":"https://github.com/apache/tomcat/commit/3ac2b5c1611af51ee5438fd32a3254a2de1878ce","reference_id":"","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/apache/tomcat/commit/3ac2b5c1611af51ee5438fd32a3254a2de1878ce"},{"reference_url":"https://github.com/apache/tomcat/commit/3e5b0455483eed55752047073e92403bfca8d3ec","reference_id":"","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/apache/tomcat/commit/3e5b0455483eed55752047073e92403bfca8d3ec"},{"reference_url":"https://github.com/apache/tomcat/commit/5c8560f3054982abaa476d87ec031c439d58d66e","reference_id":"","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/apache/tomcat/commit/5c8560f3054982abaa476d87ec031c439d58d66e"},{"reference_url":"https://github.com/apache/tomcat/commit/63fd724e129b647b7d9026ae29513dd6b774b4b5","reference_id":"","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/apache/tomcat/commit/63fd724e129b647b7d9026ae29513dd6b774b4b5"},{"reference_url":"https://github.com/apache/tomcat/commit/880b1a4fc424625b56c8bcd9ebf6bfe966a1dadd","reference_id":"","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/apache/tomcat/commit/880b1a4fc424625b56c8bcd9ebf6bfe966a1dadd"},{"reference_url":"https://github.com/apache/tomcat/commit/9c90bdc1ad942374b1bb6b147613497970b3c8e1","reference_id":"","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/apache/tomcat/commit/9c90bdc1ad942374b1bb6b147613497970b3c8e1"},{"reference_url":"https://github.com/apache/tomcat/commit/b1d1047a4c0a7754cabf57ac0303f92e4e77ef58","reference_id":"","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/apache/tomcat/commit/b1d1047a4c0a7754cabf57ac0303f92e4e77ef58"},{"reference_url":"https://github.com/apache/tomcat/commit/dbac5e24759954daed3c584abb5d466fcf42dd4b","reference_id":"","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/apache/tomcat/commit/dbac5e24759954daed3c584abb5d466fcf42dd4b"},{"reference_url":"https://github.com/apache/tomcat/commit/dd10265436ea8b2fe35f1a8b09bc7390acbea269","reference_id":"","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/apache/tomcat/commit/dd10265436ea8b2fe35f1a8b09bc7390acbea269"},{"reference_url":"https://github.com/apache/tomcat/commit/ece65c1a428094b1c6c17de3d7593f64e1bb1286","reference_id":"","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/apache/tomcat/commit/ece65c1a428094b1c6c17de3d7593f64e1bb1286"},{"reference_url":"https://github.com/apache/tomcat/commit/ee627412570268df47a075f5d4dc5f7debf39fad","reference_id":"","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/apache/tomcat/commit/ee627412570268df47a075f5d4dc5f7debf39fad"},{"reference_url":"https://github.com/apache/tomcat/commit/f528992ec6cd7b62c9ced5b3a7dc4cda6bfd1a5e","reference_id":"","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/apache/tomcat/commit/f528992ec6cd7b62c9ced5b3a7dc4cda6bfd1a5e"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2011-1088","reference_id":"","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2011-1088"},{"reference_url":"https://svn.apache.org/viewvc?view=rev&rev=1076586","reference_id":"","reference_type":"","scores":[],"url":"https://svn.apache.org/viewvc?view=rev&rev=1076586"},{"reference_url":"https://svn.apache.org/viewvc?view=rev&rev=1076587","reference_id":"","reference_type":"","scores":[],"url":"https://svn.apache.org/viewvc?view=rev&rev=1076587"},{"reference_url":"https://svn.apache.org/viewvc?view=rev&rev=1077995","reference_id":"","reference_type":"","scores":[],"url":"https://svn.apache.org/viewvc?view=rev&rev=1077995"},{"reference_url":"https://svn.apache.org/viewvc?view=rev&rev=1079752","reference_id":"","reference_type":"","scores":[],"url":"https://svn.apache.org/viewvc?view=rev&rev=1079752"},{"reference_url":"http://svn.apache.org/viewvc?view=revision&revision=1076586","reference_id":"","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://svn.apache.org/viewvc?view=revision&revision=1076586"},{"reference_url":"http://svn.apache.org/viewvc?view=revision&revision=1076587","reference_id":"","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://svn.apache.org/viewvc?view=revision&revision=1076587"},{"reference_url":"http://svn.apache.org/viewvc?view=revision&revision=1077995","reference_id":"","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://svn.apache.org/viewvc?view=revision&revision=1077995"},{"reference_url":"http://www.osvdb.org/71027","reference_id":"","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://www.osvdb.org/71027"},{"reference_url":"http://www.securityfocus.com/archive/1/517013/100/0/threaded","reference_id":"","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://www.securityfocus.com/archive/1/517013/100/0/threaded"},{"reference_url":"http://www.securityfocus.com/bid/46685","reference_id":"","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://www.securityfocus.com/bid/46685"},{"reference_url":"http://www.securitytracker.com/id?1025215","reference_id":"","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://www.securitytracker.com/id?1025215"},{"reference_url":"http://www.vupen.com/english/advisories/2011/0563","reference_id":"","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://www.vupen.com/english/advisories/2011/0563"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=708955","reference_id":"708955","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=708955"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1088","reference_id":"CVE-2011-1088","reference_type":"","scores":[{"value":"Important","scoring_system":"apache_tomcat","scoring_elements":""}],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1088"},{"reference_url":"https://security.gentoo.org/glsa/201206-24","reference_id":"GLSA-201206-24","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201206-24"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/1015?format=json","purl":"pkg:maven/org.apache.tomcat/tomcat@7.0.11","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-fp1r-r3sv-wbfp"},{"vulnerability":"VCID-mu17-2uxr-4kd5"},{"vulnerability":"VCID-yg88-wkv1-fyeg"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@7.0.11"}],"aliases":["CVE-2011-1088","GHSA-mg4v-rf8p-ghqq"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-3cvx-fuuh-ybf9"}],"fixing_vulnerabilities":[],"risk_score":"4.0","resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@7.0.10"}