Search for packages
| purl | pkg:apache/tomcat@6.0.30 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-21dz-gxvm-aaam
Aliases: CVE-2011-3375 GHSA-rp8h-vr48-4j8p |
Apache Tomcat 6.0.30 through 6.0.33 and 7.x before 7.0.22 does not properly perform certain caching and recycling operations involving request objects, which allows remote attackers to obtain unintended read access to IP address and HTTP header information in opportunistic circumstances by reading TCP data. |
Affected by 5 other vulnerabilities. Affected by 56 other vulnerabilities. |
|
VCID-7r1z-a7qf-aaas
Aliases: CVE-2011-0534 GHSA-43v2-6grp-9pp9 |
CVE-2011-0534 tomcat: remote DoS via NIO connector |
Affected by 4 other vulnerabilities. Affected by 66 other vulnerabilities. Affected by 66 other vulnerabilities. |
|
VCID-ntxm-uwj5-aaae
Aliases: CVE-2012-4431 GHSA-76vr-72mv-mf3q |
org/apache/catalina/filters/CsrfPreventionFilter.java in Apache Tomcat 6.x before 6.0.36 and 7.x before 7.0.32 allows remote attackers to bypass the cross-site request forgery (CSRF) protection mechanism via a request that lacks a session identifier. |
Affected by 2 other vulnerabilities. Affected by 53 other vulnerabilities. |
|
VCID-uuww-g5z6-aaad
Aliases: CVE-2011-2729 |
native/unix/native/jsvc-unix.c in jsvc in the Daemon component 1.0.3 through 1.0.6 in Apache Commons, as used in Apache Tomcat 5.5.32 through 5.5.33, 6.0.30 through 6.0.32, and 7.0.x before 7.0.20 on Linux, does not drop capabilities, which allows remote attackers to bypass read permissions for files via a request to an application. |
Affected by 4 other vulnerabilities. Affected by 59 other vulnerabilities. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| VCID-gyt6-3ggt-aaaj | CVE-2010-3718 tomcat: file permission bypass flaw |
CVE-2010-3718
GHSA-fj6c-prgj-gr3r |
| VCID-hkqr-snht-aaan | CVE-2010-4172 tomcat: cross-site-scripting vulnerability in the manager application |
CVE-2010-4172
GHSA-c78g-qwpw-2jgv |
| VCID-w4v5-xn5g-aaag | CVE-2011-0013 tomcat: XSS vulnerability in HTML Manager interface |
CVE-2011-0013
GHSA-3p86-xgrq-m6p6 |
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2025-03-28T13:19:34.526134+00:00 | Apache Tomcat Importer | Fixing | VCID-gyt6-3ggt-aaaj | https://tomcat.apache.org/security-6.html | 36.0.0 |
| 2025-03-28T13:19:34.469204+00:00 | Apache Tomcat Importer | Fixing | VCID-hkqr-snht-aaan | https://tomcat.apache.org/security-6.html | 36.0.0 |
| 2025-03-28T13:19:34.413819+00:00 | Apache Tomcat Importer | Fixing | VCID-w4v5-xn5g-aaag | https://tomcat.apache.org/security-6.html | 36.0.0 |
| 2025-03-28T13:19:34.347024+00:00 | Apache Tomcat Importer | Affected by | VCID-7r1z-a7qf-aaas | https://tomcat.apache.org/security-6.html | 36.0.0 |
| 2025-03-28T13:19:34.290780+00:00 | Apache Tomcat Importer | Affected by | VCID-uuww-g5z6-aaad | https://tomcat.apache.org/security-6.html | 36.0.0 |
| 2025-03-28T13:19:33.960128+00:00 | Apache Tomcat Importer | Affected by | VCID-21dz-gxvm-aaam | https://tomcat.apache.org/security-6.html | 36.0.0 |
| 2025-03-28T13:19:33.849274+00:00 | Apache Tomcat Importer | Affected by | VCID-ntxm-uwj5-aaae | https://tomcat.apache.org/security-6.html | 36.0.0 |
| 2024-09-18T08:17:44.517436+00:00 | Apache Tomcat Importer | Fixing | VCID-gyt6-3ggt-aaaj | https://tomcat.apache.org/security-6.html | 34.0.1 |
| 2024-09-18T08:17:44.466826+00:00 | Apache Tomcat Importer | Fixing | VCID-hkqr-snht-aaan | https://tomcat.apache.org/security-6.html | 34.0.1 |
| 2024-09-18T08:17:44.412948+00:00 | Apache Tomcat Importer | Fixing | VCID-w4v5-xn5g-aaag | https://tomcat.apache.org/security-6.html | 34.0.1 |
| 2024-09-18T08:17:44.355329+00:00 | Apache Tomcat Importer | Affected by | VCID-7r1z-a7qf-aaas | https://tomcat.apache.org/security-6.html | 34.0.1 |
| 2024-09-18T08:17:44.298925+00:00 | Apache Tomcat Importer | Affected by | VCID-uuww-g5z6-aaad | https://tomcat.apache.org/security-6.html | 34.0.1 |
| 2024-09-18T08:17:43.995090+00:00 | Apache Tomcat Importer | Affected by | VCID-21dz-gxvm-aaam | https://tomcat.apache.org/security-6.html | 34.0.1 |
| 2024-09-18T08:17:43.889669+00:00 | Apache Tomcat Importer | Affected by | VCID-ntxm-uwj5-aaae | https://tomcat.apache.org/security-6.html | 34.0.1 |
| 2024-01-04T02:15:47.621847+00:00 | Apache Tomcat Importer | Fixing | VCID-gyt6-3ggt-aaaj | https://tomcat.apache.org/security-6.html | 34.0.0rc1 |
| 2024-01-04T02:15:47.569119+00:00 | Apache Tomcat Importer | Fixing | VCID-hkqr-snht-aaan | https://tomcat.apache.org/security-6.html | 34.0.0rc1 |
| 2024-01-04T02:15:47.513954+00:00 | Apache Tomcat Importer | Fixing | VCID-w4v5-xn5g-aaag | https://tomcat.apache.org/security-6.html | 34.0.0rc1 |
| 2024-01-04T02:15:47.458377+00:00 | Apache Tomcat Importer | Affected by | VCID-7r1z-a7qf-aaas | https://tomcat.apache.org/security-6.html | 34.0.0rc1 |
| 2024-01-04T02:15:47.403850+00:00 | Apache Tomcat Importer | Affected by | VCID-uuww-g5z6-aaad | https://tomcat.apache.org/security-6.html | 34.0.0rc1 |
| 2024-01-04T02:15:47.077047+00:00 | Apache Tomcat Importer | Affected by | VCID-21dz-gxvm-aaam | https://tomcat.apache.org/security-6.html | 34.0.0rc1 |
| 2024-01-04T02:15:46.972343+00:00 | Apache Tomcat Importer | Affected by | VCID-ntxm-uwj5-aaae | https://tomcat.apache.org/security-6.html | 34.0.0rc1 |