{"url":"http://public2.vulnerablecode.io/api/packages/1350?format=json","purl":"pkg:maven/org.apache.tomcat/tomcat@7.0.10","type":"maven","namespace":"org.apache.tomcat","name":"tomcat","version":"7.0.10","qualifiers":{},"subpath":"","is_vulnerable":true,"next_non_vulnerable_version":null,"latest_non_vulnerable_version":null,"affected_by_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/4570?format=json","vulnerability_id":"VCID-95fn-d2ad-qyg6","summary":"Apache Tomcat 7.x before 7.0.10 does not follow ServletSecurity annotations, which allows remote attackers to bypass intended access restrictions via HTTP requests to a web application.","references":[{"reference_url":"http://mail-archives.apache.org/mod_mbox/www-announce/201103.mbox/%3C4D6E74FF.7050106%40apache.org%3E","reference_id":"","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://mail-archives.apache.org/mod_mbox/www-announce/201103.mbox/%3C4D6E74FF.7050106%40apache.org%3E"},{"reference_url":"http://mail-archives.apache.org/mod_mbox/www-announce/201103.mbox/%3C4D6E74FF.7050106@apache.org%3E","reference_id":"","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://mail-archives.apache.org/mod_mbox/www-announce/201103.mbox/%3C4D6E74FF.7050106@apache.org%3E"},{"reference_url":"http://markmail.org/message/lzx5273wsgl5pob6","reference_id":"","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://markmail.org/message/lzx5273wsgl5pob6"},{"reference_url":"http://markmail.org/message/yzmyn44f5aetmm2r","reference_id":"","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://markmail.org/message/yzmyn44f5aetmm2r"},{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-1088.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-1088.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2011-1088","reference_id":"","reference_type":"","scores":[{"value":"0.16364","scoring_system":"epss","scoring_elements":"0.94893","published_at":"2026-05-07T12:55:00Z"},{"value":"0.16364","scoring_system":"epss","scoring_elements":"0.94886","published_at":"2026-05-05T12:55:00Z"},{"value":"0.16364","scoring_system":"epss","scoring_elements":"0.94878","published_at":"2026-04-29T12:55:00Z"},{"value":"0.16364","scoring_system":"epss","scoring_elements":"0.94877","published_at":"2026-04-26T12:55:00Z"},{"value":"0.16364","scoring_system":"epss","scoring_elements":"0.94875","published_at":"2026-04-21T12:55:00Z"},{"value":"0.16364","scoring_system":"epss","scoring_elements":"0.94872","published_at":"2026-04-18T12:55:00Z"},{"value":"0.16364","scoring_system":"epss","scoring_elements":"0.94868","published_at":"2026-04-16T12:55:00Z"},{"value":"0.16364","scoring_system":"epss","scoring_elements":"0.94861","published_at":"2026-04-13T12:55:00Z"},{"value":"0.16364","scoring_system":"epss","scoring_elements":"0.94859","published_at":"2026-04-12T12:55:00Z"},{"value":"0.16364","scoring_system":"epss","scoring_elements":"0.94852","published_at":"2026-04-09T12:55:00Z"},{"value":"0.16364","scoring_system":"epss","scoring_elements":"0.94848","published_at":"2026-04-08T12:55:00Z"},{"value":"0.16364","scoring_system":"epss","scoring_elements":"0.94839","published_at":"2026-04-07T12:55:00Z"},{"value":"0.16364","scoring_system":"epss","scoring_elements":"0.94836","published_at":"2026-04-04T12:55:00Z"},{"value":"0.16364","scoring_system":"epss","scoring_elements":"0.94833","published_at":"2026-04-02T12:55:00Z"},{"value":"0.16364","scoring_system":"epss","scoring_elements":"0.94824","published_at":"2026-04-01T12:55:00Z"},{"value":"0.16364","scoring_system":"epss","scoring_elements":"0.94856","published_at":"2026-04-11T12:55:00Z"},{"value":"0.16364","scoring_system":"epss","scoring_elements":"0.94914","published_at":"2026-05-12T12:55:00Z"},{"value":"0.16364","scoring_system":"epss","scoring_elements":"0.94908","published_at":"2026-05-11T12:55:00Z"},{"value":"0.16364","scoring_system":"epss","scoring_elements":"0.94903","published_at":"2026-05-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2011-1088"},{"reference_url":"http://secunia.com/advisories/43684","reference_id":"","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://secunia.com/advisories/43684"},{"reference_url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/65971","reference_id":"","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/65971"},{"reference_url":"https://github.com/apache/tomcat","reference_id":"","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/apache/tomcat"},{"reference_url":"https://github.com/apache/tomcat/commit/02780bbc6089a12b19d3d5e5dc810455ac6bfe92","reference_id":"","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/apache/tomcat/commit/02780bbc6089a12b19d3d5e5dc810455ac6bfe92"},{"reference_url":"https://github.com/apache/tomcat/commit/0a5a19f0c3b8d199b7335da5f88e956f59926673","reference_id":"","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/apache/tomcat/commit/0a5a19f0c3b8d199b7335da5f88e956f59926673"},{"reference_url":"https://github.com/apache/tomcat/commit/0f95cb7401acdbfc9b65c878948b84bb496f2386","reference_id":"","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/apache/tomcat/commit/0f95cb7401acdbfc9b65c878948b84bb496f2386"},{"reference_url":"https://github.com/apache/tomcat/commit/0ff4905158b77787a7f3aca55c9dec93456665dc","reference_id":"","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/apache/tomcat/commit/0ff4905158b77787a7f3aca55c9dec93456665dc"},{"reference_url":"https://github.com/apache/tomcat/commit/13fe121edb6f2b597d2b82725f1b01296ac78ebd","reference_id":"","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/apache/tomcat/commit/13fe121edb6f2b597d2b82725f1b01296ac78ebd"},{"reference_url":"https://github.com/apache/tomcat/commit/149af600532df6a24b1f7fc93607d764dfc9a7ea","reference_id":"","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/apache/tomcat/commit/149af600532df6a24b1f7fc93607d764dfc9a7ea"},{"reference_url":"https://github.com/apache/tomcat/commit/1b2d5e90d271ab087a36b556eb17519454170529","reference_id":"","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/apache/tomcat/commit/1b2d5e90d271ab087a36b556eb17519454170529"},{"reference_url":"https://github.com/apache/tomcat/commit/2d7dbfe4c63a4242a9b28fdb662d91ceb7a84630","reference_id":"","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/apache/tomcat/commit/2d7dbfe4c63a4242a9b28fdb662d91ceb7a84630"},{"reference_url":"https://github.com/apache/tomcat/commit/3ac2b5c1611af51ee5438fd32a3254a2de1878ce","reference_id":"","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/apache/tomcat/commit/3ac2b5c1611af51ee5438fd32a3254a2de1878ce"},{"reference_url":"https://github.com/apache/tomcat/commit/3e5b0455483eed55752047073e92403bfca8d3ec","reference_id":"","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/apache/tomcat/commit/3e5b0455483eed55752047073e92403bfca8d3ec"},{"reference_url":"https://github.com/apache/tomcat/commit/5c8560f3054982abaa476d87ec031c439d58d66e","reference_id":"","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/apache/tomcat/commit/5c8560f3054982abaa476d87ec031c439d58d66e"},{"reference_url":"https://github.com/apache/tomcat/commit/63fd724e129b647b7d9026ae29513dd6b774b4b5","reference_id":"","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/apache/tomcat/commit/63fd724e129b647b7d9026ae29513dd6b774b4b5"},{"reference_url":"https://github.com/apache/tomcat/commit/880b1a4fc424625b56c8bcd9ebf6bfe966a1dadd","reference_id":"","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/apache/tomcat/commit/880b1a4fc424625b56c8bcd9ebf6bfe966a1dadd"},{"reference_url":"https://github.com/apache/tomcat/commit/9c90bdc1ad942374b1bb6b147613497970b3c8e1","reference_id":"","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/apache/tomcat/commit/9c90bdc1ad942374b1bb6b147613497970b3c8e1"},{"reference_url":"https://github.com/apache/tomcat/commit/b1d1047a4c0a7754cabf57ac0303f92e4e77ef58","reference_id":"","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/apache/tomcat/commit/b1d1047a4c0a7754cabf57ac0303f92e4e77ef58"},{"reference_url":"https://github.com/apache/tomcat/commit/dbac5e24759954daed3c584abb5d466fcf42dd4b","reference_id":"","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/apache/tomcat/commit/dbac5e24759954daed3c584abb5d466fcf42dd4b"},{"reference_url":"https://github.com/apache/tomcat/commit/dd10265436ea8b2fe35f1a8b09bc7390acbea269","reference_id":"","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/apache/tomcat/commit/dd10265436ea8b2fe35f1a8b09bc7390acbea269"},{"reference_url":"https://github.com/apache/tomcat/commit/ece65c1a428094b1c6c17de3d7593f64e1bb1286","reference_id":"","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/apache/tomcat/commit/ece65c1a428094b1c6c17de3d7593f64e1bb1286"},{"reference_url":"https://github.com/apache/tomcat/commit/ee627412570268df47a075f5d4dc5f7debf39fad","reference_id":"","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/apache/tomcat/commit/ee627412570268df47a075f5d4dc5f7debf39fad"},{"reference_url":"https://github.com/apache/tomcat/commit/f528992ec6cd7b62c9ced5b3a7dc4cda6bfd1a5e","reference_id":"","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/apache/tomcat/commit/f528992ec6cd7b62c9ced5b3a7dc4cda6bfd1a5e"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2011-1088","reference_id":"","reference_type":"","scores":[{"value":"5.8","scoring_system":"cvssv2","scoring_elements":"AV:N/AC:M/Au:N/C:P/I:P/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2011-1088"},{"reference_url":"https://svn.apache.org/viewvc?view=rev&rev=1076586","reference_id":"","reference_type":"","scores":[],"url":"https://svn.apache.org/viewvc?view=rev&rev=1076586"},{"reference_url":"https://svn.apache.org/viewvc?view=rev&rev=1076587","reference_id":"","reference_type":"","scores":[],"url":"https://svn.apache.org/viewvc?view=rev&rev=1076587"},{"reference_url":"https://svn.apache.org/viewvc?view=rev&rev=1077995","reference_id":"","reference_type":"","scores":[],"url":"https://svn.apache.org/viewvc?view=rev&rev=1077995"},{"reference_url":"https://svn.apache.org/viewvc?view=rev&rev=1079752","reference_id":"","reference_type":"","scores":[],"url":"https://svn.apache.org/viewvc?view=rev&rev=1079752"},{"reference_url":"http://svn.apache.org/viewvc?view=revision&revision=1076586","reference_id":"","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://svn.apache.org/viewvc?view=revision&revision=1076586"},{"reference_url":"http://svn.apache.org/viewvc?view=revision&revision=1076587","reference_id":"","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://svn.apache.org/viewvc?view=revision&revision=1076587"},{"reference_url":"http://svn.apache.org/viewvc?view=revision&revision=1077995","reference_id":"","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://svn.apache.org/viewvc?view=revision&revision=1077995"},{"reference_url":"http://tomcat.apache.org/security-7.html","reference_id":"","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://tomcat.apache.org/security-7.html"},{"reference_url":"http://www.osvdb.org/71027","reference_id":"","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://www.osvdb.org/71027"},{"reference_url":"http://www.securityfocus.com/archive/1/517013/100/0/threaded","reference_id":"","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://www.securityfocus.com/archive/1/517013/100/0/threaded"},{"reference_url":"http://www.securityfocus.com/bid/46685","reference_id":"","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://www.securityfocus.com/bid/46685"},{"reference_url":"http://www.securitytracker.com/id?1025215","reference_id":"","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://www.securitytracker.com/id?1025215"},{"reference_url":"http://www.vupen.com/english/advisories/2011/0563","reference_id":"","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://www.vupen.com/english/advisories/2011/0563"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=708955","reference_id":"708955","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=708955"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:7.0.0:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:apache:tomcat:7.0.0:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:7.0.0:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:7.0.0:beta:*:*:*:*:*:*","reference_id":"cpe:2.3:a:apache:tomcat:7.0.0:beta:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:7.0.0:beta:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:7.0.1:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:apache:tomcat:7.0.1:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:7.0.1:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:7.0.2:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:apache:tomcat:7.0.2:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:7.0.2:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:7.0.3:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:apache:tomcat:7.0.3:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:7.0.3:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:7.0.4:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:apache:tomcat:7.0.4:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:7.0.4:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:7.0.5:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:apache:tomcat:7.0.5:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:7.0.5:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:7.0.6:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:apache:tomcat:7.0.6:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:7.0.6:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:7.0.7:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:apache:tomcat:7.0.7:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:7.0.7:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:7.0.8:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:apache:tomcat:7.0.8:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:7.0.8:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:7.0.9:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:apache:tomcat:7.0.9:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat:7.0.9:*:*:*:*:*:*:*"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1088","reference_id":"CVE-2011-1088","reference_type":"","scores":[{"value":"Important","scoring_system":"apache_tomcat","scoring_elements":""}],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1088"},{"reference_url":"https://github.com/advisories/GHSA-mg4v-rf8p-ghqq","reference_id":"GHSA-mg4v-rf8p-ghqq","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-mg4v-rf8p-ghqq"},{"reference_url":"https://security.gentoo.org/glsa/201206-24","reference_id":"GLSA-201206-24","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201206-24"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/1348?format=json","purl":"pkg:maven/org.apache.tomcat/tomcat@7.0.11","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-5eqm-218u-p7gq"},{"vulnerability":"VCID-d9ys-kxh6-nkgr"},{"vulnerability":"VCID-rhg2-n93w-tqeu"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@7.0.11"}],"aliases":["CVE-2011-1088","GHSA-mg4v-rf8p-ghqq"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-95fn-d2ad-qyg6"}],"fixing_vulnerabilities":[],"risk_score":"4.0","resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@7.0.10"}