{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/30331?format=json","vulnerability_id":"VCID-e9dg-8439-nucb","summary":"","aliases":[{"alias":"CVE-2011-3375"},{"alias":"GHSA-rp8h-vr48-4j8p"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/1060?format=json","purl":"pkg:apache/tomcat@6.0.35","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-74c9-hu6z-8kg4"},{"vulnerability":"VCID-a4k2-q92y-7khb"},{"vulnerability":"VCID-fje8-2ajy-kyb4"},{"vulnerability":"VCID-r94g-m96h-k3e6"},{"vulnerability":"VCID-y97x-xaq8-h3bu"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@6.0.35"},{"url":"http://public2.vulnerablecode.io/api/packages/996?format=json","purl":"pkg:apache/tomcat@7.0.22","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-mbz3-479y-ruey"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@7.0.22"},{"url":"http://public2.vulnerablecode.io/api/packages/1437?format=json","purl":"pkg:ebuild/www-servers/tomcat@7.0.23","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:ebuild/www-servers/tomcat@7.0.23"}],"affected_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/1062?format=json","purl":"pkg:apache/tomcat@6.0.30","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-8av4-cm9e-4kh9"},{"vulnerability":"VCID-e9dg-8439-nucb"},{"vulnerability":"VCID-f6dc-5wps-z3ax"},{"vulnerability":"VCID-r94g-m96h-k3e6"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@6.0.30"},{"url":"http://public2.vulnerablecode.io/api/packages/1054?format=json","purl":"pkg:apache/tomcat@6.0.33","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-a4yd-d7cp-yfgn"},{"vulnerability":"VCID-e9dg-8439-nucb"},{"vulnerability":"VCID-mbz3-479y-ruey"},{"vulnerability":"VCID-va9j-s3bx-nycu"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@6.0.33"},{"url":"http://public2.vulnerablecode.io/api/packages/876?format=json","purl":"pkg:apache/tomcat@7.0.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1f31-et57-5qbx"},{"vulnerability":"VCID-1xhq-fftg-ufd2"},{"vulnerability":"VCID-3cvx-fuuh-ybf9"},{"vulnerability":"VCID-3p2v-jj5g-qbbp"},{"vulnerability":"VCID-4c8y-tn9d-v3d5"},{"vulnerability":"VCID-4tdx-52h3-bkfj"},{"vulnerability":"VCID-5hp9-mbcu-2bdt"},{"vulnerability":"VCID-5nu4-5ude-4yhc"},{"vulnerability":"VCID-5uvn-j8na-kuf7"},{"vulnerability":"VCID-62hn-sj8p-9fgs"},{"vulnerability":"VCID-65td-2enz-63hf"},{"vulnerability":"VCID-6tzd-v653-9bdq"},{"vulnerability":"VCID-74c9-hu6z-8kg4"},{"vulnerability":"VCID-824z-m36f-87ea"},{"vulnerability":"VCID-8aty-dfqt-ufe1"},{"vulnerability":"VCID-8av4-cm9e-4kh9"},{"vulnerability":"VCID-9a2q-ujcy-u3dx"},{"vulnerability":"VCID-9gs9-4vzf-uqbu"},{"vulnerability":"VCID-a4k2-q92y-7khb"},{"vulnerability":"VCID-b25a-4gka-5yhr"},{"vulnerability":"VCID-b2j2-rqat-3yhq"},{"vulnerability":"VCID-bwn2-ebxb-xqbm"},{"vulnerability":"VCID-cpun-p57h-2fc7"},{"vulnerability":"VCID-dt1c-w14g-2fbd"},{"vulnerability":"VCID-e9dg-8439-nucb"},{"vulnerability":"VCID-f6dc-5wps-z3ax"},{"vulnerability":"VCID-fje8-2ajy-kyb4"},{"vulnerability":"VCID-fp1r-r3sv-wbfp"},{"vulnerability":"VCID-fwgq-vmfm-j7bh"},{"vulnerability":"VCID-fy3t-qn64-bkhn"},{"vulnerability":"VCID-g2x3-6kx1-x7bg"},{"vulnerability":"VCID-k7n8-grbj-dbbr"},{"vulnerability":"VCID-kfs5-k8h6-afa6"},{"vulnerability":"VCID-kv5j-8eqv-7bhy"},{"vulnerability":"VCID-m7b3-kxzn-t7hj"},{"vulnerability":"VCID-mbz3-479y-ruey"},{"vulnerability":"VCID-mu17-2uxr-4kd5"},{"vulnerability":"VCID-n5t6-xtd3-hfa7"},{"vulnerability":"VCID-ncxb-rxhz-u3eu"},{"vulnerability":"VCID-nz4k-nfug-tufw"},{"vulnerability":"VCID-q1pv-h34q-7ufy"},{"vulnerability":"VCID-q8sq-kpxp-3bb4"},{"vulnerability":"VCID-qe1e-a1yz-wubq"},{"vulnerability":"VCID-qvgx-r4rr-xugp"},{"vulnerability":"VCID-qxbw-zvw5-ckdp"},{"vulnerability":"VCID-qxfb-yg6b-nfda"},{"vulnerability":"VCID-r94g-m96h-k3e6"},{"vulnerability":"VCID-rfbc-9e8h-gfhr"},{"vulnerability":"VCID-rrb9-d3a6-q3bz"},{"vulnerability":"VCID-rwqs-mabh-17c9"},{"vulnerability":"VCID-rxdf-fjd8-6yhk"},{"vulnerability":"VCID-s3gw-mg9k-mfg2"},{"vulnerability":"VCID-s4fd-atmc-qkcz"},{"vulnerability":"VCID-snut-ece8-sbfv"},{"vulnerability":"VCID-swxs-3ua6-3yfn"},{"vulnerability":"VCID-t7xw-r7rz-u3g5"},{"vulnerability":"VCID-t9tx-g25k-wfe9"},{"vulnerability":"VCID-va9j-s3bx-nycu"},{"vulnerability":"VCID-vfh6-rc99-e3bf"},{"vulnerability":"VCID-vyf9-rzw1-sffy"},{"vulnerability":"VCID-wkxm-2pd8-vqg9"},{"vulnerability":"VCID-wu55-n9ff-sbbf"},{"vulnerability":"VCID-x6m9-ka8g-sbdc"},{"vulnerability":"VCID-xjen-b9ss-33by"},{"vulnerability":"VCID-y97x-xaq8-h3bu"},{"vulnerability":"VCID-yqd8-3j9e-cken"},{"vulnerability":"VCID-zby8-fvjf-afde"},{"vulnerability":"VCID-znw1-bajd-7yfp"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@7.0.0"},{"url":"http://public2.vulnerablecode.io/api/packages/998?format=json","purl":"pkg:apache/tomcat@7.0.21","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-e9dg-8439-nucb"},{"vulnerability":"VCID-qe1e-a1yz-wubq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@7.0.21"},{"url":"http://public2.vulnerablecode.io/api/packages/1063?format=json","purl":"pkg:maven/org.apache.tomcat/tomcat@6.0.30","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-8av4-cm9e-4kh9"},{"vulnerability":"VCID-e9dg-8439-nucb"},{"vulnerability":"VCID-f6dc-5wps-z3ax"},{"vulnerability":"VCID-r94g-m96h-k3e6"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@6.0.30"},{"url":"http://public2.vulnerablecode.io/api/packages/1055?format=json","purl":"pkg:maven/org.apache.tomcat/tomcat@6.0.33","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-a4yd-d7cp-yfgn"},{"vulnerability":"VCID-e9dg-8439-nucb"},{"vulnerability":"VCID-mbz3-479y-ruey"},{"vulnerability":"VCID-va9j-s3bx-nycu"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@6.0.33"},{"url":"http://public2.vulnerablecode.io/api/packages/21322?format=json","purl":"pkg:maven/org.apache.tomcat/tomcat@7.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-bet5-4798-2kcq"},{"vulnerability":"VCID-e9dg-8439-nucb"},{"vulnerability":"VCID-x6m9-ka8g-sbdc"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@7.0"},{"url":"http://public2.vulnerablecode.io/api/packages/879?format=json","purl":"pkg:maven/org.apache.tomcat/tomcat@7.0.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1f31-et57-5qbx"},{"vulnerability":"VCID-1xhq-fftg-ufd2"},{"vulnerability":"VCID-3cvx-fuuh-ybf9"},{"vulnerability":"VCID-3p2v-jj5g-qbbp"},{"vulnerability":"VCID-3urp-gu8z-fke3"},{"vulnerability":"VCID-46g2-sepj-guhe"},{"vulnerability":"VCID-4c8y-tn9d-v3d5"},{"vulnerability":"VCID-4tdx-52h3-bkfj"},{"vulnerability":"VCID-5hp9-mbcu-2bdt"},{"vulnerability":"VCID-5nu4-5ude-4yhc"},{"vulnerability":"VCID-5uvn-j8na-kuf7"},{"vulnerability":"VCID-62hn-sj8p-9fgs"},{"vulnerability":"VCID-65td-2enz-63hf"},{"vulnerability":"VCID-6tzd-v653-9bdq"},{"vulnerability":"VCID-74c9-hu6z-8kg4"},{"vulnerability":"VCID-824z-m36f-87ea"},{"vulnerability":"VCID-8aty-dfqt-ufe1"},{"vulnerability":"VCID-8av4-cm9e-4kh9"},{"vulnerability":"VCID-8q8c-3e7u-qbc5"},{"vulnerability":"VCID-9a2q-ujcy-u3dx"},{"vulnerability":"VCID-9gs9-4vzf-uqbu"},{"vulnerability":"VCID-a4k2-q92y-7khb"},{"vulnerability":"VCID-b25a-4gka-5yhr"},{"vulnerability":"VCID-b2j2-rqat-3yhq"},{"vulnerability":"VCID-bwn2-ebxb-xqbm"},{"vulnerability":"VCID-c3qy-96ka-pucw"},{"vulnerability":"VCID-cpun-p57h-2fc7"},{"vulnerability":"VCID-dt1c-w14g-2fbd"},{"vulnerability":"VCID-e9dg-8439-nucb"},{"vulnerability":"VCID-f6dc-5wps-z3ax"},{"vulnerability":"VCID-fje8-2ajy-kyb4"},{"vulnerability":"VCID-fp1r-r3sv-wbfp"},{"vulnerability":"VCID-fwgq-vmfm-j7bh"},{"vulnerability":"VCID-fy3t-qn64-bkhn"},{"vulnerability":"VCID-g2x3-6kx1-x7bg"},{"vulnerability":"VCID-hn9b-5btp-v3fn"},{"vulnerability":"VCID-j5g2-s3ps-eqem"},{"vulnerability":"VCID-jvtf-mg1j-a3ab"},{"vulnerability":"VCID-k7n8-grbj-dbbr"},{"vulnerability":"VCID-kfs5-k8h6-afa6"},{"vulnerability":"VCID-kv5j-8eqv-7bhy"},{"vulnerability":"VCID-m7b3-kxzn-t7hj"},{"vulnerability":"VCID-mbz3-479y-ruey"},{"vulnerability":"VCID-mdsb-pema-d3ds"},{"vulnerability":"VCID-mu17-2uxr-4kd5"},{"vulnerability":"VCID-n5t6-xtd3-hfa7"},{"vulnerability":"VCID-ncxb-rxhz-u3eu"},{"vulnerability":"VCID-nz4k-nfug-tufw"},{"vulnerability":"VCID-ptqm-vybp-xbdc"},{"vulnerability":"VCID-q1pv-h34q-7ufy"},{"vulnerability":"VCID-q8sq-kpxp-3bb4"},{"vulnerability":"VCID-qe1e-a1yz-wubq"},{"vulnerability":"VCID-qvgx-r4rr-xugp"},{"vulnerability":"VCID-qxbw-zvw5-ckdp"},{"vulnerability":"VCID-qxfb-yg6b-nfda"},{"vulnerability":"VCID-r94g-m96h-k3e6"},{"vulnerability":"VCID-rfbc-9e8h-gfhr"},{"vulnerability":"VCID-rrb9-d3a6-q3bz"},{"vulnerability":"VCID-rwqs-mabh-17c9"},{"vulnerability":"VCID-rxdf-fjd8-6yhk"},{"vulnerability":"VCID-s3gw-mg9k-mfg2"},{"vulnerability":"VCID-s4fd-atmc-qkcz"},{"vulnerability":"VCID-snut-ece8-sbfv"},{"vulnerability":"VCID-swxs-3ua6-3yfn"},{"vulnerability":"VCID-t7xw-r7rz-u3g5"},{"vulnerability":"VCID-t8tc-zb3w-57gv"},{"vulnerability":"VCID-t9tx-g25k-wfe9"},{"vulnerability":"VCID-va9j-s3bx-nycu"},{"vulnerability":"VCID-vfh6-rc99-e3bf"},{"vulnerability":"VCID-vvzb-u4yd-fueg"},{"vulnerability":"VCID-vyf9-rzw1-sffy"},{"vulnerability":"VCID-wkxm-2pd8-vqg9"},{"vulnerability":"VCID-wu55-n9ff-sbbf"},{"vulnerability":"VCID-x6m9-ka8g-sbdc"},{"vulnerability":"VCID-xjen-b9ss-33by"},{"vulnerability":"VCID-y97x-xaq8-h3bu"},{"vulnerability":"VCID-yqd8-3j9e-cken"},{"vulnerability":"VCID-zby8-fvjf-afde"},{"vulnerability":"VCID-znw1-bajd-7yfp"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@7.0.0"},{"url":"http://public2.vulnerablecode.io/api/packages/999?format=json","purl":"pkg:maven/org.apache.tomcat/tomcat@7.0.21","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-e9dg-8439-nucb"},{"vulnerability":"VCID-qe1e-a1yz-wubq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@7.0.21"},{"url":"http://public2.vulnerablecode.io/api/packages/367026?format=json","purl":"pkg:rpm/redhat/tomcat6@6.0.32-24_patch_07.ep5?arch=el6","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-3urp-gu8z-fke3"},{"vulnerability":"VCID-46g2-sepj-guhe"},{"vulnerability":"VCID-8q8c-3e7u-qbc5"},{"vulnerability":"VCID-e9dg-8439-nucb"},{"vulnerability":"VCID-hn9b-5btp-v3fn"},{"vulnerability":"VCID-mbz3-479y-ruey"},{"vulnerability":"VCID-mu17-2uxr-4kd5"},{"vulnerability":"VCID-rrb9-d3a6-q3bz"},{"vulnerability":"VCID-va9j-s3bx-nycu"},{"vulnerability":"VCID-zby8-fvjf-afde"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/tomcat6@6.0.32-24_patch_07.ep5%3Farch=el6"},{"url":"http://public2.vulnerablecode.io/api/packages/367027?format=json","purl":"pkg:rpm/redhat/tomcat6@6.0.32-24_patch_07.ep5?arch=el5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-3urp-gu8z-fke3"},{"vulnerability":"VCID-46g2-sepj-guhe"},{"vulnerability":"VCID-8q8c-3e7u-qbc5"},{"vulnerability":"VCID-e9dg-8439-nucb"},{"vulnerability":"VCID-hn9b-5btp-v3fn"},{"vulnerability":"VCID-mbz3-479y-ruey"},{"vulnerability":"VCID-mu17-2uxr-4kd5"},{"vulnerability":"VCID-rrb9-d3a6-q3bz"},{"vulnerability":"VCID-va9j-s3bx-nycu"},{"vulnerability":"VCID-zby8-fvjf-afde"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/tomcat6@6.0.32-24_patch_07.ep5%3Farch=el5"}],"references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-3375.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-3375.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2011-3375","reference_id":"","reference_type":"","scores":[{"value":"0.02015","scoring_system":"epss","scoring_elements":"0.84164","published_at":"2026-06-12T12:55:00Z"},{"value":"0.02015","scoring_system":"epss","scoring_elements":"0.84107","published_at":"2026-06-11T12:55:00Z"},{"value":"0.02015","scoring_system":"epss","scoring_elements":"0.84167","published_at":"2026-06-14T12:55:00Z"},{"value":"0.02015","scoring_system":"epss","scoring_elements":"0.84172","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2011-3375"},{"reference_url":"https://github.com/apache/tomcat","reference_id":"","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/apache/tomcat"},{"reference_url":"https://github.com/apache/tomcat70/commit/9eae334e9492f55a841e6eb7ab302ff11d03ab21","reference_id":"","reference_type":"","scores":[],"url":"https://github.com/apache/tomcat70/commit/9eae334e9492f55a841e6eb7ab302ff11d03ab21"},{"reference_url":"https://github.com/apache/tomcat/commit/9eae334e9492f55a841e6eb7ab302ff11d03ab21","reference_id":"","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/apache/tomcat/commit/9eae334e9492f55a841e6eb7ab302ff11d03ab21"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2011-3375","reference_id":"","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2011-3375"},{"reference_url":"https://svn.apache.org/viewvc?view=rev&rev=1176592","reference_id":"","reference_type":"","scores":[],"url":"https://svn.apache.org/viewvc?view=rev&rev=1176592"},{"reference_url":"https://svn.apache.org/viewvc?view=rev&rev=1185998","reference_id":"","reference_type":"","scores":[],"url":"https://svn.apache.org/viewvc?view=rev&rev=1185998"},{"reference_url":"http://www.debian.org/security/2012/dsa-2401","reference_id":"","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://www.debian.org/security/2012/dsa-2401"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=782624","reference_id":"782624","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=782624"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3375","reference_id":"CVE-2011-3375","reference_type":"","scores":[{"value":"Important","scoring_system":"apache_tomcat","scoring_elements":""}],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3375"},{"reference_url":"https://github.com/advisories/GHSA-rp8h-vr48-4j8p","reference_id":"GHSA-rp8h-vr48-4j8p","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-rp8h-vr48-4j8p"},{"reference_url":"https://security.gentoo.org/glsa/201206-24","reference_id":"GLSA-201206-24","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201206-24"},{"reference_url":"https://access.redhat.com/errata/RHSA-2012:0681","reference_id":"RHSA-2012:0681","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2012:0681"},{"reference_url":"https://access.redhat.com/errata/RHSA-2012:0682","reference_id":"RHSA-2012:0682","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2012:0682"},{"reference_url":"https://usn.ubuntu.com/1359-1/","reference_id":"USN-1359-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1359-1/"}],"weaknesses":[{"cwe_id":200,"name":"Exposure of Sensitive Information to an Unauthorized Actor","description":"The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information."},{"cwe_id":1035,"name":"OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities","description":"Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2017."},{"cwe_id":937,"name":"OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities","description":"Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2013."}],"exploits":[],"severity_range_score":"4.0 - 8.9","exploitability":"0.5","weighted_severity":"8.0","risk_score":4.0,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-e9dg-8439-nucb"}