{"url":"http://public2.vulnerablecode.io/api/packages/83105?format=json","purl":"pkg:ebuild/www-apache/mod_jk@1.2.21-r1","type":"ebuild","namespace":"www-apache","name":"mod_jk","version":"1.2.21-r1","qualifiers":{},"subpath":"","is_vulnerable":false,"next_non_vulnerable_version":"1.2.23","latest_non_vulnerable_version":"1.2.27","affected_by_vulnerabilities":[],"fixing_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/56573?format=json","vulnerability_id":"VCID-y2ux-nm69-uuam","summary":"The Apache Tomcat Connector (mod_jk) contains a buffer overflow\n    vulnerability that could result in the remote execution of arbitrary code.","references":[{"reference_url":"http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01178795","reference_id":"","reference_type":"","scores":[],"url":"http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01178795"},{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-0774.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-0774.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2007-0774","reference_id":"","reference_type":"","scores":[{"value":"0.88357","scoring_system":"epss","scoring_elements":"0.99507","published_at":"2026-05-14T12:55:00Z"},{"value":"0.88357","scoring_system":"epss","scoring_elements":"0.9949","published_at":"2026-04-01T12:55:00Z"},{"value":"0.88357","scoring_system":"epss","scoring_elements":"0.99489","published_at":"2026-04-02T12:55:00Z"},{"value":"0.88357","scoring_system":"epss","scoring_elements":"0.99491","published_at":"2026-04-04T12:55:00Z"},{"value":"0.88357","scoring_system":"epss","scoring_elements":"0.99493","published_at":"2026-04-07T12:55:00Z"},{"value":"0.88357","scoring_system":"epss","scoring_elements":"0.99494","published_at":"2026-04-08T12:55:00Z"},{"value":"0.88357","scoring_system":"epss","scoring_elements":"0.99495","published_at":"2026-04-13T12:55:00Z"},{"value":"0.88357","scoring_system":"epss","scoring_elements":"0.99496","published_at":"2026-04-12T12:55:00Z"},{"value":"0.88357","scoring_system":"epss","scoring_elements":"0.99498","published_at":"2026-04-16T12:55:00Z"},{"value":"0.88357","scoring_system":"epss","scoring_elements":"0.99499","published_at":"2026-04-18T12:55:00Z"},{"value":"0.88357","scoring_system":"epss","scoring_elements":"0.995","published_at":"2026-04-21T12:55:00Z"},{"value":"0.88357","scoring_system":"epss","scoring_elements":"0.99501","published_at":"2026-04-24T12:55:00Z"},{"value":"0.88357","scoring_system":"epss","scoring_elements":"0.99503","published_at":"2026-05-05T12:55:00Z"},{"value":"0.88357","scoring_system":"epss","scoring_elements":"0.99504","published_at":"2026-05-09T12:55:00Z"},{"value":"0.88357","scoring_system":"epss","scoring_elements":"0.99506","published_at":"2026-05-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2007-0774"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-0774","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-0774"},{"reference_url":"http://secunia.com/advisories/24398","reference_id":"","reference_type":"","scores":[],"url":"http://secunia.com/advisories/24398"},{"reference_url":"http://secunia.com/advisories/24558","reference_id":"","reference_type":"","scores":[],"url":"http://secunia.com/advisories/24558"},{"reference_url":"http://secunia.com/advisories/27037","reference_id":"","reference_type":"","scores":[],"url":"http://secunia.com/advisories/27037"},{"reference_url":"http://secunia.com/advisories/28711","reference_id":"","reference_type":"","scores":[],"url":"http://secunia.com/advisories/28711"},{"reference_url":"http://securitytracker.com/id?1017719","reference_id":"","reference_type":"","scores":[],"url":"http://securitytracker.com/id?1017719"},{"reference_url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/32794","reference_id":"","reference_type":"","scores":[],"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/32794"},{"reference_url":"https://lists.apache.org/thread.html/277d42b48b6e9aef50949c0dcc79ce21693091d73da246b3c1981925%40%3Cdev.tomcat.apache.org%3E","reference_id":"","reference_type":"","scores":[],"url":"https://lists.apache.org/thread.html/277d42b48b6e9aef50949c0dcc79ce21693091d73da246b3c1981925%40%3Cdev.tomcat.apache.org%3E"},{"reference_url":"https://lists.apache.org/thread.html/5b7a23e245c93235c503900da854a143596d901bf1a1f67e851a5de4%40%3Cdev.tomcat.apache.org%3E","reference_id":"","reference_type":"","scores":[],"url":"https://lists.apache.org/thread.html/5b7a23e245c93235c503900da854a143596d901bf1a1f67e851a5de4%40%3Cdev.tomcat.apache.org%3E"},{"reference_url":"https://lists.apache.org/thread.html/8d2a579bbd977c225c70cb23b0ec54865fb0dab5da3eff1e060c9935%40%3Cdev.tomcat.apache.org%3E","reference_id":"","reference_type":"","scores":[],"url":"https://lists.apache.org/thread.html/8d2a579bbd977c225c70cb23b0ec54865fb0dab5da3eff1e060c9935%40%3Cdev.tomcat.apache.org%3E"},{"reference_url":"https://lists.apache.org/thread.html/ba661b0edd913b39ff129a32d855620dd861883ade05fd88a8ce517d%40%3Cdev.tomcat.apache.org%3E","reference_id":"","reference_type":"","scores":[],"url":"https://lists.apache.org/thread.html/ba661b0edd913b39ff129a32d855620dd861883ade05fd88a8ce517d%40%3Cdev.tomcat.apache.org%3E"},{"reference_url":"https://lists.apache.org/thread.html/r5c616dfc49156e4b06ffab842800c80f4425924d0f20c452c127a53c%40%3Cdev.tomcat.apache.org%3E","reference_id":"","reference_type":"","scores":[],"url":"https://lists.apache.org/thread.html/r5c616dfc49156e4b06ffab842800c80f4425924d0f20c452c127a53c%40%3Cdev.tomcat.apache.org%3E"},{"reference_url":"https://lists.apache.org/thread.html/rf8e8c091182b45daa50d3557cad9b10bb4198e3f08cf8f1c66a1b08d%40%3Cdev.tomcat.apache.org%3E","reference_id":"","reference_type":"","scores":[],"url":"https://lists.apache.org/thread.html/rf8e8c091182b45daa50d3557cad9b10bb4198e3f08cf8f1c66a1b08d%40%3Cdev.tomcat.apache.org%3E"},{"reference_url":"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5513","reference_id":"","reference_type":"","scores":[],"url":"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5513"},{"reference_url":"http://tomcat.apache.org/connectors-doc/miscellaneous/changelog.html","reference_id":"","reference_type":"","scores":[],"url":"http://tomcat.apache.org/connectors-doc/miscellaneous/changelog.html"},{"reference_url":"http://tomcat.apache.org/security-jk.html","reference_id":"","reference_type":"","scores":[],"url":"http://tomcat.apache.org/security-jk.html"},{"reference_url":"http://www.cisco.com/en/US/products/products_security_advisory09186a008093f040.shtml","reference_id":"","reference_type":"","scores":[],"url":"http://www.cisco.com/en/US/products/products_security_advisory09186a008093f040.shtml"},{"reference_url":"http://www.gentoo.org/security/en/glsa/glsa-200703-16.xml","reference_id":"","reference_type":"","scores":[],"url":"http://www.gentoo.org/security/en/glsa/glsa-200703-16.xml"},{"reference_url":"http://www.redhat.com/support/errata/RHSA-2007-0096.html","reference_id":"","reference_type":"","scores":[],"url":"http://www.redhat.com/support/errata/RHSA-2007-0096.html"},{"reference_url":"http://www.securityfocus.com/archive/1/461734/100/0/threaded","reference_id":"","reference_type":"","scores":[],"url":"http://www.securityfocus.com/archive/1/461734/100/0/threaded"},{"reference_url":"http://www.securityfocus.com/bid/22791","reference_id":"","reference_type":"","scores":[],"url":"http://www.securityfocus.com/bid/22791"},{"reference_url":"http://www.vupen.com/english/advisories/2007/0809","reference_id":"","reference_type":"","scores":[],"url":"http://www.vupen.com/english/advisories/2007/0809"},{"reference_url":"http://www.vupen.com/english/advisories/2007/3386","reference_id":"","reference_type":"","scores":[],"url":"http://www.vupen.com/english/advisories/2007/3386"},{"reference_url":"http://www.vupen.com/english/advisories/2008/0331","reference_id":"","reference_type":"","scores":[],"url":"http://www.vupen.com/english/advisories/2008/0331"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1618272","reference_id":"1618272","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1618272"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat_jk_web_server_connector:1.2.19:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:apache:tomcat_jk_web_server_connector:1.2.19:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat_jk_web_server_connector:1.2.19:*:*:*:*:*:*:*"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat_jk_web_server_connector:1.2.20:*:*:*:*:*:*:*","reference_id":"cpe:2.3:a:apache:tomcat_jk_web_server_connector:1.2.20:*:*:*:*:*:*:*","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:tomcat_jk_web_server_connector:1.2.20:*:*:*:*:*:*:*"},{"reference_url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/remote/4162.c","reference_id":"CVE-2007-0774","reference_type":"exploit","scores":[],"url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/remote/4162.c"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2007-0774","reference_id":"CVE-2007-0774","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv2","scoring_elements":"AV:N/AC:L/Au:N/C:P/I:P/A:P"}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2007-0774"},{"reference_url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/remote/16798.rb","reference_id":"CVE-2007-0774;OSVDB-33855","reference_type":"exploit","scores":[],"url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/remote/16798.rb"},{"reference_url":"http://www.zerodayinitiative.com/advisories/ZDI-07-008.html","reference_id":"CVE-2007-0774;OSVDB-33855","reference_type":"exploit","scores":[],"url":"http://www.zerodayinitiative.com/advisories/ZDI-07-008.html"},{"reference_url":"https://security.gentoo.org/glsa/200703-16","reference_id":"GLSA-200703-16","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/200703-16"},{"reference_url":"https://access.redhat.com/errata/RHSA-2007:0096","reference_id":"RHSA-2007:0096","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2007:0096"},{"reference_url":"https://access.redhat.com/errata/RHSA-2007:0164","reference_id":"RHSA-2007:0164","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2007:0164"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/83105?format=json","purl":"pkg:ebuild/www-apache/mod_jk@1.2.21-r1","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:ebuild/www-apache/mod_jk@1.2.21-r1"}],"aliases":["CVE-2007-0774"],"risk_score":10.0,"exploitability":"2.0","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-y2ux-nm69-uuam"}],"risk_score":null,"resource_url":"http://public2.vulnerablecode.io/packages/pkg:ebuild/www-apache/mod_jk@1.2.21-r1"}