Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-bwbm-vktd-jbd5
Summary
Aliases
0
alias CVE-2011-3375
1
alias GHSA-rp8h-vr48-4j8p
Fixed_packages
0
url pkg:apache/tomcat@6.0.35
purl pkg:apache/tomcat@6.0.35
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-rbvf-c791-e7cg
1
vulnerability VCID-redv-2x5y-8khx
2
vulnerability VCID-t57j-pu79-dbbn
3
vulnerability VCID-tc66-7b7t-k7h3
4
vulnerability VCID-tmjv-jvfy-judb
resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@6.0.35
1
url pkg:apache/tomcat@7.0.22
purl pkg:apache/tomcat@7.0.22
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-fu9h-e3jx-abe2
resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@7.0.22
2
url pkg:ebuild/www-servers/tomcat@7.0.23
purl pkg:ebuild/www-servers/tomcat@7.0.23
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:ebuild/www-servers/tomcat@7.0.23
Affected_packages
0
url pkg:apache/tomcat@6.0.30
purl pkg:apache/tomcat@6.0.30
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-bwbm-vktd-jbd5
1
vulnerability VCID-mwr3-83kd-s7g3
2
vulnerability VCID-redv-2x5y-8khx
3
vulnerability VCID-vsta-e8jg-4qa8
resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@6.0.30
1
url pkg:apache/tomcat@6.0.33
purl pkg:apache/tomcat@6.0.33
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4t2h-jjhm-y7fq
1
vulnerability VCID-bwbm-vktd-jbd5
2
vulnerability VCID-ft1c-mand-mkcb
3
vulnerability VCID-fu9h-e3jx-abe2
resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@6.0.33
2
url pkg:apache/tomcat@7.0.0
purl pkg:apache/tomcat@7.0.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1a1b-3pdg-jbfq
1
vulnerability VCID-299p-e7fh-qfa2
2
vulnerability VCID-2kjh-4r2g-rqe6
3
vulnerability VCID-333t-ujej-7yhu
4
vulnerability VCID-3tme-zh53-7ubx
5
vulnerability VCID-3txt-1psa-5kf5
6
vulnerability VCID-4qcn-52ug-mbd5
7
vulnerability VCID-4t2h-jjhm-y7fq
8
vulnerability VCID-59dd-qzpt-aucm
9
vulnerability VCID-5m85-3zyu-7qak
10
vulnerability VCID-5udv-rheh-kqfy
11
vulnerability VCID-6umz-z8db-kqcy
12
vulnerability VCID-6uuq-2a39-yubx
13
vulnerability VCID-7fh9-36qs-jfg5
14
vulnerability VCID-89e9-m968-vfhe
15
vulnerability VCID-8fn4-hnez-y3eb
16
vulnerability VCID-937w-2w2q-7fdy
17
vulnerability VCID-9e2b-7qtg-tbaj
18
vulnerability VCID-9gz4-7etq-pyba
19
vulnerability VCID-aar2-398x-p3d8
20
vulnerability VCID-axzz-cadr-b7fv
21
vulnerability VCID-b83j-cebv-9ua6
22
vulnerability VCID-bwbm-vktd-jbd5
23
vulnerability VCID-ct4z-hxx3-53bw
24
vulnerability VCID-dk58-p9py-rka9
25
vulnerability VCID-e72e-axdj-7qfw
26
vulnerability VCID-essq-6syu-6ygm
27
vulnerability VCID-et9y-m4hb-43h7
28
vulnerability VCID-f4ka-47dk-zffs
29
vulnerability VCID-fu9h-e3jx-abe2
30
vulnerability VCID-g3vd-74yh-s7bn
31
vulnerability VCID-gc4t-aqwd-rkba
32
vulnerability VCID-gmjm-6ck2-skgu
33
vulnerability VCID-hqzu-shyu-j3hp
34
vulnerability VCID-j1m6-79yt-f7h5
35
vulnerability VCID-jw6e-g8z9-43ej
36
vulnerability VCID-jzta-navk-87bn
37
vulnerability VCID-m7ja-6efp-tyh1
38
vulnerability VCID-mwr3-83kd-s7g3
39
vulnerability VCID-n4zk-mdyw-3fcz
40
vulnerability VCID-nnye-4xbb-kuf5
41
vulnerability VCID-nxb3-55eu-auhp
42
vulnerability VCID-pq53-6deg-abfx
43
vulnerability VCID-qhqg-ekuv-z7fc
44
vulnerability VCID-qthw-u9bp-zkdp
45
vulnerability VCID-qurk-u1gg-gkdy
46
vulnerability VCID-rbvf-c791-e7cg
47
vulnerability VCID-rbvh-4npk-nub9
48
vulnerability VCID-redv-2x5y-8khx
49
vulnerability VCID-s37s-p75k-27e6
50
vulnerability VCID-se44-f85s-xyex
51
vulnerability VCID-sk1w-8yt4-93cv
52
vulnerability VCID-t57j-pu79-dbbn
53
vulnerability VCID-tc66-7b7t-k7h3
54
vulnerability VCID-tcmv-6ftg-fqen
55
vulnerability VCID-tmjv-jvfy-judb
56
vulnerability VCID-ua64-94fd-ekad
57
vulnerability VCID-vp5s-ekhc-w7ck
58
vulnerability VCID-vsta-e8jg-4qa8
59
vulnerability VCID-webw-gryb-7ucv
60
vulnerability VCID-xa95-zsnk-3kg9
61
vulnerability VCID-xjj5-fy4e-e7ha
62
vulnerability VCID-xra9-q91u-rfd5
63
vulnerability VCID-y9hs-ymcm-3ucx
64
vulnerability VCID-yusx-ncpv-sfhg
65
vulnerability VCID-yvcg-96dp-r7e6
66
vulnerability VCID-zm75-zwps-h3fv
67
vulnerability VCID-zrc5-bf77-aygn
resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@7.0.0
3
url pkg:apache/tomcat@7.0.21
purl pkg:apache/tomcat@7.0.21
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-299p-e7fh-qfa2
1
vulnerability VCID-bwbm-vktd-jbd5
resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@7.0.21
4
url pkg:maven/org.apache.tomcat/tomcat@6.0.30
purl pkg:maven/org.apache.tomcat/tomcat@6.0.30
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-bwbm-vktd-jbd5
1
vulnerability VCID-mwr3-83kd-s7g3
2
vulnerability VCID-redv-2x5y-8khx
3
vulnerability VCID-vsta-e8jg-4qa8
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@6.0.30
5
url pkg:maven/org.apache.tomcat/tomcat@6.0.33
purl pkg:maven/org.apache.tomcat/tomcat@6.0.33
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4t2h-jjhm-y7fq
1
vulnerability VCID-bwbm-vktd-jbd5
2
vulnerability VCID-ft1c-mand-mkcb
3
vulnerability VCID-fu9h-e3jx-abe2
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@6.0.33
6
url pkg:maven/org.apache.tomcat/tomcat@7.0.0
purl pkg:maven/org.apache.tomcat/tomcat@7.0.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1a1b-3pdg-jbfq
1
vulnerability VCID-299p-e7fh-qfa2
2
vulnerability VCID-2kjh-4r2g-rqe6
3
vulnerability VCID-333t-ujej-7yhu
4
vulnerability VCID-3tme-zh53-7ubx
5
vulnerability VCID-3txt-1psa-5kf5
6
vulnerability VCID-46sr-9kr3-1ubw
7
vulnerability VCID-4qcn-52ug-mbd5
8
vulnerability VCID-4t2h-jjhm-y7fq
9
vulnerability VCID-59dd-qzpt-aucm
10
vulnerability VCID-5m85-3zyu-7qak
11
vulnerability VCID-5udv-rheh-kqfy
12
vulnerability VCID-6umz-z8db-kqcy
13
vulnerability VCID-6uuq-2a39-yubx
14
vulnerability VCID-74c7-a56p-kufz
15
vulnerability VCID-7fh9-36qs-jfg5
16
vulnerability VCID-89e9-m968-vfhe
17
vulnerability VCID-8fn4-hnez-y3eb
18
vulnerability VCID-937w-2w2q-7fdy
19
vulnerability VCID-9e2b-7qtg-tbaj
20
vulnerability VCID-9gz4-7etq-pyba
21
vulnerability VCID-9hm5-e4dw-6ffe
22
vulnerability VCID-aar2-398x-p3d8
23
vulnerability VCID-atus-ryef-17h1
24
vulnerability VCID-axzz-cadr-b7fv
25
vulnerability VCID-b83j-cebv-9ua6
26
vulnerability VCID-bwbm-vktd-jbd5
27
vulnerability VCID-ct4z-hxx3-53bw
28
vulnerability VCID-dk58-p9py-rka9
29
vulnerability VCID-dnsu-tqgt-audm
30
vulnerability VCID-e2gy-1c6a-6fdf
31
vulnerability VCID-e72e-axdj-7qfw
32
vulnerability VCID-essq-6syu-6ygm
33
vulnerability VCID-et9y-m4hb-43h7
34
vulnerability VCID-f4ka-47dk-zffs
35
vulnerability VCID-fu9h-e3jx-abe2
36
vulnerability VCID-g3vd-74yh-s7bn
37
vulnerability VCID-gc4t-aqwd-rkba
38
vulnerability VCID-gmjm-6ck2-skgu
39
vulnerability VCID-hqzu-shyu-j3hp
40
vulnerability VCID-j1m6-79yt-f7h5
41
vulnerability VCID-jw6e-g8z9-43ej
42
vulnerability VCID-jzta-navk-87bn
43
vulnerability VCID-m7ja-6efp-tyh1
44
vulnerability VCID-mwr3-83kd-s7g3
45
vulnerability VCID-n4zk-mdyw-3fcz
46
vulnerability VCID-nnye-4xbb-kuf5
47
vulnerability VCID-nxb3-55eu-auhp
48
vulnerability VCID-phm8-b2ym-rqd5
49
vulnerability VCID-pq53-6deg-abfx
50
vulnerability VCID-qhqg-ekuv-z7fc
51
vulnerability VCID-qthw-u9bp-zkdp
52
vulnerability VCID-qurk-u1gg-gkdy
53
vulnerability VCID-rbvf-c791-e7cg
54
vulnerability VCID-rbvh-4npk-nub9
55
vulnerability VCID-redv-2x5y-8khx
56
vulnerability VCID-s37s-p75k-27e6
57
vulnerability VCID-se44-f85s-xyex
58
vulnerability VCID-sk1w-8yt4-93cv
59
vulnerability VCID-t57j-pu79-dbbn
60
vulnerability VCID-tc66-7b7t-k7h3
61
vulnerability VCID-tcmv-6ftg-fqen
62
vulnerability VCID-tmjv-jvfy-judb
63
vulnerability VCID-ua64-94fd-ekad
64
vulnerability VCID-vp5s-ekhc-w7ck
65
vulnerability VCID-vsta-e8jg-4qa8
66
vulnerability VCID-webw-gryb-7ucv
67
vulnerability VCID-wtke-y2cx-x3et
68
vulnerability VCID-xa95-zsnk-3kg9
69
vulnerability VCID-xjj5-fy4e-e7ha
70
vulnerability VCID-xra9-q91u-rfd5
71
vulnerability VCID-y9hs-ymcm-3ucx
72
vulnerability VCID-yusx-ncpv-sfhg
73
vulnerability VCID-yvcg-96dp-r7e6
74
vulnerability VCID-zm75-zwps-h3fv
75
vulnerability VCID-zrc5-bf77-aygn
76
vulnerability VCID-zuee-5t4z-47he
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@7.0.0
7
url pkg:maven/org.apache.tomcat/tomcat@7.0
purl pkg:maven/org.apache.tomcat/tomcat@7.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-333t-ujej-7yhu
1
vulnerability VCID-bwbm-vktd-jbd5
2
vulnerability VCID-qg9k-3w1w-zqa1
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@7.0
8
url pkg:maven/org.apache.tomcat/tomcat@7.0.21
purl pkg:maven/org.apache.tomcat/tomcat@7.0.21
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-299p-e7fh-qfa2
1
vulnerability VCID-bwbm-vktd-jbd5
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@7.0.21
9
url pkg:rpm/redhat/tomcat6@6.0.32-24_patch_07.ep5?arch=el6
purl pkg:rpm/redhat/tomcat6@6.0.32-24_patch_07.ep5?arch=el6
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-46sr-9kr3-1ubw
1
vulnerability VCID-4t2h-jjhm-y7fq
2
vulnerability VCID-74c7-a56p-kufz
3
vulnerability VCID-89e9-m968-vfhe
4
vulnerability VCID-9hm5-e4dw-6ffe
5
vulnerability VCID-aar2-398x-p3d8
6
vulnerability VCID-bwbm-vktd-jbd5
7
vulnerability VCID-fu9h-e3jx-abe2
8
vulnerability VCID-jw6e-g8z9-43ej
9
vulnerability VCID-wtke-y2cx-x3et
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/tomcat6@6.0.32-24_patch_07.ep5%3Farch=el6
10
url pkg:rpm/redhat/tomcat6@6.0.32-24_patch_07.ep5?arch=el5
purl pkg:rpm/redhat/tomcat6@6.0.32-24_patch_07.ep5?arch=el5
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-46sr-9kr3-1ubw
1
vulnerability VCID-4t2h-jjhm-y7fq
2
vulnerability VCID-74c7-a56p-kufz
3
vulnerability VCID-89e9-m968-vfhe
4
vulnerability VCID-9hm5-e4dw-6ffe
5
vulnerability VCID-aar2-398x-p3d8
6
vulnerability VCID-bwbm-vktd-jbd5
7
vulnerability VCID-fu9h-e3jx-abe2
8
vulnerability VCID-jw6e-g8z9-43ej
9
vulnerability VCID-wtke-y2cx-x3et
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/tomcat6@6.0.32-24_patch_07.ep5%3Farch=el5
References
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-3375.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-3375.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2011-3375
reference_id
reference_type
scores
0
value 0.02015
scoring_system epss
scoring_elements 0.8405
published_at 2026-06-04T12:55:00Z
1
value 0.02015
scoring_system epss
scoring_elements 0.84073
published_at 2026-06-05T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2011-3375
2
reference_url https://github.com/apache/tomcat
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/apache/tomcat
3
reference_url https://github.com/apache/tomcat70/commit/9eae334e9492f55a841e6eb7ab302ff11d03ab21
reference_id
reference_type
scores
url https://github.com/apache/tomcat70/commit/9eae334e9492f55a841e6eb7ab302ff11d03ab21
4
reference_url https://github.com/apache/tomcat/commit/9eae334e9492f55a841e6eb7ab302ff11d03ab21
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/apache/tomcat/commit/9eae334e9492f55a841e6eb7ab302ff11d03ab21
5
reference_url https://nvd.nist.gov/vuln/detail/CVE-2011-3375
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2011-3375
6
reference_url https://svn.apache.org/viewvc?view=rev&rev=1176592
reference_id
reference_type
scores
url https://svn.apache.org/viewvc?view=rev&rev=1176592
7
reference_url https://svn.apache.org/viewvc?view=rev&rev=1185998
reference_id
reference_type
scores
url https://svn.apache.org/viewvc?view=rev&rev=1185998
8
reference_url http://tomcat.apache.org/security-6.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://tomcat.apache.org/security-6.html
9
reference_url http://tomcat.apache.org/security-7.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://tomcat.apache.org/security-7.html
10
reference_url http://www.debian.org/security/2012/dsa-2401
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://www.debian.org/security/2012/dsa-2401
11
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=782624
reference_id 782624
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=782624
12
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3375
reference_id CVE-2011-3375
reference_type
scores
0
value Important
scoring_system apache_tomcat
scoring_elements
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3375
13
reference_url https://github.com/advisories/GHSA-rp8h-vr48-4j8p
reference_id GHSA-rp8h-vr48-4j8p
reference_type
scores
url https://github.com/advisories/GHSA-rp8h-vr48-4j8p
14
reference_url https://security.gentoo.org/glsa/201206-24
reference_id GLSA-201206-24
reference_type
scores
url https://security.gentoo.org/glsa/201206-24
15
reference_url https://access.redhat.com/errata/RHSA-2012:0681
reference_id RHSA-2012:0681
reference_type
scores
url https://access.redhat.com/errata/RHSA-2012:0681
16
reference_url https://access.redhat.com/errata/RHSA-2012:0682
reference_id RHSA-2012:0682
reference_type
scores
url https://access.redhat.com/errata/RHSA-2012:0682
17
reference_url https://usn.ubuntu.com/1359-1/
reference_id USN-1359-1
reference_type
scores
url https://usn.ubuntu.com/1359-1/
Weaknesses
0
cwe_id 200
name Exposure of Sensitive Information to an Unauthorized Actor
description The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.
1
cwe_id 1035
name OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities
description Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2017.
2
cwe_id 937
name OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities
description Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2013.
Exploits
Severity_range_score4.0 - 8.9
Exploitability0.5
Weighted_severity8.0
Risk_score4.0
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-bwbm-vktd-jbd5