Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:maven/org.apache.tomcat/tomcat@7.0

Type maven

Namespace org.apache.tomcat

Name tomcat

Version 7.0

Qualifiers

Subpath

Is_vulnerable true

Next_non_vulnerable_version 9.0.118

Latest_non_vulnerable_version 11.0.22

Affected_by_vulnerabilities

url VCID-bet5-4798-2kcq

vulnerability_id VCID-bet5-4798-2kcq

summary

references

reference_url

http://mail-archives.apache.org/mod_mbox/www-announce/201103.mbox/%3C4D6E74FF.7050106@apache.org%3E

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://mail-archives.apache.org/mod_mbox/www-announce/201103.mbox/%3C4D6E74FF.7050106@apache.org%3E

reference_url

http://marc.info/?l=tomcat-user&m=129966773405409&w=2

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://marc.info/?l=tomcat-user&m=129966773405409&w=2

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-1419.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-1419.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2011-1419

reference_id

reference_type

scores

value	0.16103
scoring_system	epss
scoring_elements	0.94946
published_at	2026-06-11T12:55:00Z

value	0.16103
scoring_system	epss
scoring_elements	0.94962
published_at	2026-06-12T12:55:00Z

value	0.16103
scoring_system	epss
scoring_elements	0.94965
published_at	2026-06-13T12:55:00Z

value	0.16103
scoring_system	epss
scoring_elements	0.94968
published_at	2026-06-14T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2011-1419

reference_url

https://exchange.xforce.ibmcloud.com/vulnerabilities/65971

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://exchange.xforce.ibmcloud.com/vulnerabilities/65971

reference_url

https://exchange.xforce.ibmcloud.com/vulnerabilities/66154

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://exchange.xforce.ibmcloud.com/vulnerabilities/66154

reference_url

https://github.com/apache/tomcat

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/apache/tomcat

reference_url

https://github.com/apache/tomcat/commit/0ff4905158b77787a7f3aca55c9dec93456665dc

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/apache/tomcat/commit/0ff4905158b77787a7f3aca55c9dec93456665dc

reference_url

https://github.com/apache/tomcat/commit/3e5b0455483eed55752047073e92403bfca8d3ec

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/apache/tomcat/commit/3e5b0455483eed55752047073e92403bfca8d3ec

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2011-1419

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2011-1419

reference_url

http://svn.apache.org/viewvc?view=revision&revision=1079752

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://svn.apache.org/viewvc?view=revision&revision=1079752

reference_url

https://web.archive.org/web/20110307182442/http://markmail.org/message/yzmyn44f5aetmm2r

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://web.archive.org/web/20110307182442/http://markmail.org/message/yzmyn44f5aetmm2r

reference_url

https://web.archive.org/web/20110323002552/http://markmail.org/message/lzx5273wsgl5pob6

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://web.archive.org/web/20110323002552/http://markmail.org/message/lzx5273wsgl5pob6

reference_url

https://web.archive.org/web/20170202135440/http://www.securityfocus.com/bid/46685

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://web.archive.org/web/20170202135440/http://www.securityfocus.com/bid/46685

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=708955
reference_id	708955
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=708955

reference_url

https://github.com/advisories/GHSA-vch7-92vf-jm44

reference_id

GHSA-vch7-92vf-jm44

reference_type

scores

value	MODERATE
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-vch7-92vf-jm44

reference_url	https://security.gentoo.org/glsa/201206-24
reference_id	GLSA-201206-24
reference_type
scores
url	https://security.gentoo.org/glsa/201206-24

fixed_packages

url pkg:maven/org.apache.tomcat/tomcat@7.0.11

purl pkg:maven/org.apache.tomcat/tomcat@7.0.11

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-fp1r-r3sv-wbfp

vulnerability	VCID-mu17-2uxr-4kd5

vulnerability	VCID-yg88-wkv1-fyeg

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@7.0.11

aliases CVE-2011-1419, GHSA-vch7-92vf-jm44

risk_score 3.1

exploitability 0.5

weighted_severity 6.2

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-bet5-4798-2kcq

url VCID-e9dg-8439-nucb

vulnerability_id VCID-e9dg-8439-nucb

summary

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-3375.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-3375.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2011-3375

reference_id

reference_type

scores

value	0.02015
scoring_system	epss
scoring_elements	0.84164
published_at	2026-06-12T12:55:00Z

value	0.02015
scoring_system	epss
scoring_elements	0.84107
published_at	2026-06-11T12:55:00Z

value	0.02015
scoring_system	epss
scoring_elements	0.84167
published_at	2026-06-14T12:55:00Z

value	0.02015
scoring_system	epss
scoring_elements	0.84172
published_at	2026-06-13T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2011-3375

reference_url

https://github.com/apache/tomcat

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/apache/tomcat

reference_url	https://github.com/apache/tomcat70/commit/9eae334e9492f55a841e6eb7ab302ff11d03ab21
reference_id
reference_type
scores
url	https://github.com/apache/tomcat70/commit/9eae334e9492f55a841e6eb7ab302ff11d03ab21

reference_url

https://github.com/apache/tomcat/commit/9eae334e9492f55a841e6eb7ab302ff11d03ab21

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/apache/tomcat/commit/9eae334e9492f55a841e6eb7ab302ff11d03ab21

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2011-3375

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2011-3375

reference_url	https://svn.apache.org/viewvc?view=rev&rev=1176592
reference_id
reference_type
scores
url	https://svn.apache.org/viewvc?view=rev&rev=1176592

reference_url	https://svn.apache.org/viewvc?view=rev&rev=1185998
reference_id
reference_type
scores
url	https://svn.apache.org/viewvc?view=rev&rev=1185998

reference_url

http://www.debian.org/security/2012/dsa-2401

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://www.debian.org/security/2012/dsa-2401

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=782624
reference_id	782624
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=782624

reference_url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3375

reference_id

CVE-2011-3375

reference_type

scores

value	Important
scoring_system	apache_tomcat
scoring_elements

url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3375

reference_url

https://github.com/advisories/GHSA-rp8h-vr48-4j8p

reference_id

GHSA-rp8h-vr48-4j8p

reference_type

scores

value	MODERATE
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-rp8h-vr48-4j8p

reference_url	https://security.gentoo.org/glsa/201206-24
reference_id	GLSA-201206-24
reference_type
scores
url	https://security.gentoo.org/glsa/201206-24

reference_url	https://access.redhat.com/errata/RHSA-2012:0681
reference_id	RHSA-2012:0681
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2012:0681

reference_url	https://access.redhat.com/errata/RHSA-2012:0682
reference_id	RHSA-2012:0682
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2012:0682

reference_url	https://usn.ubuntu.com/1359-1/
reference_id	USN-1359-1
reference_type
scores
url	https://usn.ubuntu.com/1359-1/

fixed_packages

url pkg:maven/org.apache.tomcat/tomcat@7.0.22

purl pkg:maven/org.apache.tomcat/tomcat@7.0.22

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-mbz3-479y-ruey

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@7.0.22

aliases CVE-2011-3375, GHSA-rp8h-vr48-4j8p

risk_score 4.0

exploitability 0.5

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-e9dg-8439-nucb

url VCID-x6m9-ka8g-sbdc

vulnerability_id VCID-x6m9-ka8g-sbdc

summary

references

reference_url

http://archives.neohapsis.com/archives/bugtraq/2014-09/0075.html

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://archives.neohapsis.com/archives/bugtraq/2014-09/0075.html

reference_url

http://marc.info/?l=bugtraq&m=144498216801440&w=2

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://marc.info/?l=bugtraq&m=144498216801440&w=2

reference_url

http://openwall.com/lists/oss-security/2014/10/24/12

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://openwall.com/lists/oss-security/2014/10/24/12

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-4444.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-4444.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2013-4444

reference_id

reference_type

scores

value	0.09487
scoring_system	epss
scoring_elements	0.93032
published_at	2026-06-14T12:55:00Z

value	0.09487
scoring_system	epss
scoring_elements	0.93008
published_at	2026-06-11T12:55:00Z

value	0.09487
scoring_system	epss
scoring_elements	0.93031
published_at	2026-06-12T12:55:00Z

value	0.09487
scoring_system	epss
scoring_elements	0.93033
published_at	2026-06-13T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2013-4444

reference_url

http://seclists.org/fulldisclosure/2021/Jan/23

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://seclists.org/fulldisclosure/2021/Jan/23

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.6
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://github.com/apache/tomcat

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/apache/tomcat

reference_url

https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04851013

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04851013

reference_url	https://svn.apache.org/viewvc?view=rev&rev=1470437
reference_id
reference_type
scores
url	https://svn.apache.org/viewvc?view=rev&rev=1470437

reference_url

http://www.debian.org/security/2016/dsa-3447

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://www.debian.org/security/2016/dsa-3447

reference_url

http://www.securityfocus.com/bid/69728

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://www.securityfocus.com/bid/69728

reference_url

http://www.securitytracker.com/id/1030834

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://www.securitytracker.com/id/1030834

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1140314
reference_id	1140314
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1140314

reference_url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4444

reference_id

CVE-2013-4444

reference_type

scores

value	Important
scoring_system	apache_tomcat
scoring_elements

url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4444

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2013-4444

reference_id

CVE-2013-4444

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2013-4444

reference_url

https://github.com/advisories/GHSA-h6c8-x5r3-pm88

reference_id

GHSA-h6c8-x5r3-pm88

reference_type

scores

value	MODERATE
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-h6c8-x5r3-pm88

fixed_packages

url pkg:maven/org.apache.tomcat/tomcat@7.0.40

purl pkg:maven/org.apache.tomcat/tomcat@7.0.40

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2n2k-sh22-fkfw

vulnerability	VCID-3p2v-jj5g-qbbp

vulnerability	VCID-4c8y-tn9d-v3d5

vulnerability	VCID-4tdx-52h3-bkfj

vulnerability	VCID-5nu4-5ude-4yhc

vulnerability	VCID-62hn-sj8p-9fgs

vulnerability	VCID-65td-2enz-63hf

vulnerability	VCID-697g-gcg9-zyaa

vulnerability	VCID-6tzd-v653-9bdq

vulnerability	VCID-824z-m36f-87ea

vulnerability	VCID-97et-ubnp-wqcy

vulnerability	VCID-9a2q-ujcy-u3dx

vulnerability	VCID-9gs9-4vzf-uqbu

vulnerability	VCID-9xyf-k9wq-g7b9

vulnerability	VCID-bwn2-ebxb-xqbm

vulnerability	VCID-cpun-p57h-2fc7

vulnerability	VCID-dj7q-4map-ebg4

vulnerability	VCID-evws-hrsq-ybfw

vulnerability	VCID-fwgq-vmfm-j7bh

vulnerability	VCID-fy3t-qn64-bkhn

vulnerability	VCID-g2x3-6kx1-x7bg

vulnerability	VCID-hv33-kv9q-gugf

vulnerability	VCID-k11z-qhvd-9ugj

vulnerability	VCID-kfs5-k8h6-afa6

vulnerability	VCID-mdsb-pema-d3ds

vulnerability	VCID-ncxb-rxhz-u3eu

vulnerability	VCID-p4j1-xp15-t3b8

vulnerability	VCID-p65m-6crd-bufr

vulnerability	VCID-qvgx-r4rr-xugp

vulnerability	VCID-qxbw-zvw5-ckdp

vulnerability	VCID-qxfb-yg6b-nfda

vulnerability	VCID-rfbc-9e8h-gfhr

vulnerability	VCID-rwqs-mabh-17c9

vulnerability	VCID-s2kf-jwgc-pfas

vulnerability	VCID-snut-ece8-sbfv

vulnerability	VCID-swxs-3ua6-3yfn

vulnerability	VCID-t7xw-r7rz-u3g5

vulnerability	VCID-t8tc-zb3w-57gv

vulnerability	VCID-vfh6-rc99-e3bf

vulnerability	VCID-vyf9-rzw1-sffy

vulnerability	VCID-vz4c-rt19-pbaf

vulnerability	VCID-wkxm-2pd8-vqg9

vulnerability	VCID-wu55-n9ff-sbbf

vulnerability	VCID-x57v-g2md-7bbq

vulnerability	VCID-xjen-b9ss-33by

vulnerability	VCID-yg5s-2fsb-gub2

vulnerability	VCID-yqd8-3j9e-cken

vulnerability	VCID-znw1-bajd-7yfp

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@7.0.40

aliases CVE-2013-4444, GHSA-h6c8-x5r3-pm88

risk_score 4.0

exploitability 0.5

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-x6m9-ka8g-sbdc

Fixing_vulnerabilities

Risk_score 4.0

Resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@7.0

Package Instance