VulnerableCode Package Details - pkg:apache/tomcat@9.0.0%2BM17

Search for packages

Package details: pkg:apache/tomcat@9.0.0%2BM17

Essentials
History (2)

purl	pkg:apache/tomcat@9.0.0%2BM17

Next non-vulnerable version	9.0.0+M19
Latest non-vulnerable version	11.0.10
Risk	4.5

Vulnerabilities affecting this package (1)

Vulnerability	Summary	Fixed by
VCID-s2yw-ayf9-gfgp Aliases: CVE-2017-5648 GHSA-3vx3-xf6q-r5xp		9.0.0+M18 Affected by 3 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}

Vulnerabilities fixed by this package (1)

Vulnerability	Summary	Aliases
VCID-u1n8-g1e6-y7e9		CVE-2016-8747 GHSA-fjwp-r6fm-q6qw

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2025-07-31T08:03:20.645581+00:00	Apache Tomcat Importer	Fixing	VCID-u1n8-g1e6-y7e9	https://tomcat.apache.org/security-9.html	37.0.0
2025-07-31T08:03:20.614022+00:00	Apache Tomcat Importer	Affected by	VCID-s2yw-ayf9-gfgp	https://tomcat.apache.org/security-9.html	37.0.0