VulnerableCode Package Details - pkg:apache/tomcat@6.0.16

Search for packages

Package details: pkg:apache/tomcat@6.0.16

Essentials
History (27)

purl	pkg:apache/tomcat@6.0.16

Next non-vulnerable version	6.0.24
Latest non-vulnerable version	11.0.8
Risk	10.0

Vulnerabilities affecting this package (4)

Vulnerability	Summary	Fixed by
VCID-22we-qr8x-aaad Aliases: CVE-2008-2370 GHSA-m8h8-6rvg-f4mg	CVE-2008-2370 tomcat RequestDispatcher information disclosure vulnerability	6.0.18 Affected by 5 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-nwsx-6pj2-aaap Aliases: CVE-2008-1947 GHSA-f98p-9pp6-7q6c	CVE-2008-1947 Tomcat host manager xss - name field	6.0.18 Affected by 5 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-p378-4jg4-aaam Aliases: CVE-2016-8745 GHSA-w3j5-q8f2-3cqq	Information Exposure A bug in the error handling of the NIO HTTP connector in Apache Tomcat resulted in the current Processor object being added to the Processor cache multiple times. This in turn meant that the same Processor could be used for concurrent requests. Sharing a Processor can result in information leakage.	6.0.50 Affected by 0 other vulnerabilities. 7.0.74 Affected by 25 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 7.0.75 Affected by 25 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 8.0.41 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} 8.5.9 Affected by 46 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 9.0.0+M15 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}
VCID-w2az-ahw2-aaah Aliases: CVE-2008-1232 GHSA-q74x-qqhr-f8rx	CVE-2008-1232 tomcat: Cross-Site-Scripting enabled by sendError call	6.0.18 Affected by 5 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}

Vulnerabilities fixed by this package (5)

Vulnerability	Summary	Aliases
VCID-8ha5-3wkt-aaaa	CVE-2007-5333 Improve cookie parsing for tomcat5	CVE-2007-5333 GHSA-cww4-vj5r-rx57
VCID-es7j-vwa1-aaar	CVE-2007-5461 Absolute path traversal Apache Tomcat WEBDAV	CVE-2007-5461 GHSA-v5p2-vg3c-pmrr
VCID-u6sk-57c8-aaah	CVE-2007-6286 Tomcat5 Data integrity	CVE-2007-6286 GHSA-qrj4-rmqg-4hcp
VCID-xtxt-x8g1-aaan	CVE-2007-5342 Apache Tomcat's default security policy is too open	CVE-2007-5342 GHSA-w65j-cmqc-37p2
VCID-z2f7-s672-aaan	CVE-2008-0002 Tomcat information disclosure vulnerability	CVE-2008-0002 GHSA-5x5f-9r6q-q7mh

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2025-03-28T13:19:35.531872+00:00	Apache Tomcat Importer	Fixing	VCID-z2f7-s672-aaan	https://tomcat.apache.org/security-6.html	36.0.0
2025-03-28T13:19:35.481515+00:00	Apache Tomcat Importer	Fixing	VCID-u6sk-57c8-aaah	https://tomcat.apache.org/security-6.html	36.0.0
2025-03-28T13:19:35.432998+00:00	Apache Tomcat Importer	Fixing	VCID-es7j-vwa1-aaar	https://tomcat.apache.org/security-6.html	36.0.0
2025-03-28T13:19:35.384532+00:00	Apache Tomcat Importer	Fixing	VCID-xtxt-x8g1-aaan	https://tomcat.apache.org/security-6.html	36.0.0
2025-03-28T13:19:35.336000+00:00	Apache Tomcat Importer	Fixing	VCID-8ha5-3wkt-aaaa	https://tomcat.apache.org/security-6.html	36.0.0
2025-03-28T13:19:35.281168+00:00	Apache Tomcat Importer	Affected by	VCID-22we-qr8x-aaad	https://tomcat.apache.org/security-6.html	36.0.0
2025-03-28T13:19:35.226643+00:00	Apache Tomcat Importer	Affected by	VCID-nwsx-6pj2-aaap	https://tomcat.apache.org/security-6.html	36.0.0
2025-03-28T13:19:35.167827+00:00	Apache Tomcat Importer	Affected by	VCID-w2az-ahw2-aaah	https://tomcat.apache.org/security-6.html	36.0.0
2025-03-28T13:19:32.279580+00:00	Apache Tomcat Importer	Affected by	VCID-p378-4jg4-aaam	https://tomcat.apache.org/security-6.html	36.0.0
2024-09-18T08:17:45.512579+00:00	Apache Tomcat Importer	Fixing	VCID-z2f7-s672-aaan	https://tomcat.apache.org/security-6.html	34.0.1
2024-09-18T08:17:45.464158+00:00	Apache Tomcat Importer	Fixing	VCID-u6sk-57c8-aaah	https://tomcat.apache.org/security-6.html	34.0.1
2024-09-18T08:17:45.415075+00:00	Apache Tomcat Importer	Fixing	VCID-es7j-vwa1-aaar	https://tomcat.apache.org/security-6.html	34.0.1
2024-09-18T08:17:45.366628+00:00	Apache Tomcat Importer	Fixing	VCID-xtxt-x8g1-aaan	https://tomcat.apache.org/security-6.html	34.0.1
2024-09-18T08:17:45.311649+00:00	Apache Tomcat Importer	Fixing	VCID-8ha5-3wkt-aaaa	https://tomcat.apache.org/security-6.html	34.0.1
2024-09-18T08:17:45.252302+00:00	Apache Tomcat Importer	Affected by	VCID-22we-qr8x-aaad	https://tomcat.apache.org/security-6.html	34.0.1
2024-09-18T08:17:45.193912+00:00	Apache Tomcat Importer	Affected by	VCID-nwsx-6pj2-aaap	https://tomcat.apache.org/security-6.html	34.0.1
2024-09-18T08:17:45.143015+00:00	Apache Tomcat Importer	Affected by	VCID-w2az-ahw2-aaah	https://tomcat.apache.org/security-6.html	34.0.1
2024-09-18T08:17:42.423380+00:00	Apache Tomcat Importer	Affected by	VCID-p378-4jg4-aaam	https://tomcat.apache.org/security-6.html	34.0.1
2024-01-04T02:15:48.611760+00:00	Apache Tomcat Importer	Fixing	VCID-z2f7-s672-aaan	https://tomcat.apache.org/security-6.html	34.0.0rc1
2024-01-04T02:15:48.562012+00:00	Apache Tomcat Importer	Fixing	VCID-u6sk-57c8-aaah	https://tomcat.apache.org/security-6.html	34.0.0rc1
2024-01-04T02:15:48.512738+00:00	Apache Tomcat Importer	Fixing	VCID-es7j-vwa1-aaar	https://tomcat.apache.org/security-6.html	34.0.0rc1
2024-01-04T02:15:48.467962+00:00	Apache Tomcat Importer	Fixing	VCID-xtxt-x8g1-aaan	https://tomcat.apache.org/security-6.html	34.0.0rc1
2024-01-04T02:15:48.420422+00:00	Apache Tomcat Importer	Fixing	VCID-8ha5-3wkt-aaaa	https://tomcat.apache.org/security-6.html	34.0.0rc1
2024-01-04T02:15:48.367372+00:00	Apache Tomcat Importer	Affected by	VCID-22we-qr8x-aaad	https://tomcat.apache.org/security-6.html	34.0.0rc1
2024-01-04T02:15:48.313462+00:00	Apache Tomcat Importer	Affected by	VCID-nwsx-6pj2-aaap	https://tomcat.apache.org/security-6.html	34.0.0rc1
2024-01-04T02:15:48.258940+00:00	Apache Tomcat Importer	Affected by	VCID-w2az-ahw2-aaah	https://tomcat.apache.org/security-6.html	34.0.0rc1
2024-01-04T02:15:45.546410+00:00	Apache Tomcat Importer	Affected by	VCID-p378-4jg4-aaam	https://tomcat.apache.org/security-6.html	34.0.0rc1