VulnerableCode Package Details - pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@10.0.23

Vulnerability	Summary	Fixed by
VCID-59sa-ur8p-aaaa Aliases: CVE-2021-42340 GHSA-wph7-x527-w3h5	Missing Release of Resource after Effective Lifetime in Apache Tomcat	10.1.1 Affected by 10 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-6y3x-kyj7-aaaf Aliases: CVE-2023-44487 GHSA-qppj-fm5r-hxr3 VSV00013	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.	10.1.14 Affected by 7 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 11.0.0-M12 Affected by 5 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 11.0.1 Affected by 2 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-7tp8-ektn-aaan Aliases: CVE-2022-42252 GHSA-p22x-g9px-3945	Apache Tomcat may reject request containing invalid Content-Length header	10.0.27 Affected by 2 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 10.1.1 Affected by 10 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}

Vulnerability	Summary	Aliases
VCID-c5mx-k2k4-aaag	Cross-site Scripting in Apache Tomcat	CVE-2022-34305 GHSA-6j88-6whg-x687

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2025-06-20T16:12:29.586912+00:00	GitLab Importer	Affected by	VCID-7tp8-ektn-aaan	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2022-42252.yml	36.1.3
2025-06-20T16:12:26.712143+00:00	GitLab Importer	Affected by	VCID-7tp8-ektn-aaan	None	36.1.3
2025-06-20T15:58:21.648273+00:00	GitLab Importer	Fixing	VCID-c5mx-k2k4-aaag	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2022-34305.yml	36.1.3
2025-06-20T15:58:11.420637+00:00	GitLab Importer	Fixing	VCID-c5mx-k2k4-aaag	None	36.1.3
2025-06-20T15:18:17.220588+00:00	GitLab Importer	Affected by	VCID-59sa-ur8p-aaaa	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2021-42340.yml	36.1.3
2025-06-20T15:18:16.875241+00:00	GitLab Importer	Affected by	VCID-59sa-ur8p-aaaa	None	36.1.3
2025-06-03T22:52:30.981578+00:00	GitLab Importer	Affected by	VCID-7tp8-ektn-aaan	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2022-42252.yml	36.1.0
2025-06-03T22:52:28.373038+00:00	GitLab Importer	Affected by	VCID-7tp8-ektn-aaan	None	36.1.0
2025-06-03T22:38:57.251566+00:00	GitLab Importer	Fixing	VCID-c5mx-k2k4-aaag	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2022-34305.yml	36.1.0
2025-06-03T22:38:48.233109+00:00	GitLab Importer	Fixing	VCID-c5mx-k2k4-aaag	None	36.1.0
2025-06-03T22:00:15.910148+00:00	GitLab Importer	Affected by	VCID-59sa-ur8p-aaaa	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2021-42340.yml	36.1.0
2025-06-03T22:00:15.558200+00:00	GitLab Importer	Affected by	VCID-59sa-ur8p-aaaa	None	36.1.0
2025-06-02T22:48:30.986002+00:00	GitLab Importer	Affected by	VCID-7tp8-ektn-aaan	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2022-42252.yml	36.1.2
2025-06-02T22:48:28.081613+00:00	GitLab Importer	Affected by	VCID-7tp8-ektn-aaan	None	36.1.2
2025-06-02T22:27:35.234391+00:00	GitLab Importer	Fixing	VCID-c5mx-k2k4-aaag	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2022-34305.yml	36.1.2
2025-06-02T22:27:25.576212+00:00	GitLab Importer	Fixing	VCID-c5mx-k2k4-aaag	None	36.1.2
2025-06-02T21:46:16.231296+00:00	GitLab Importer	Affected by	VCID-59sa-ur8p-aaaa	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2021-42340.yml	36.1.2
2025-06-02T21:46:15.823661+00:00	GitLab Importer	Affected by	VCID-59sa-ur8p-aaaa	None	36.1.2
2025-04-03T20:32:26.057921+00:00	GitLab Importer	Affected by	VCID-7tp8-ektn-aaan	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2022-42252.yml	36.0.0
2025-04-03T20:32:20.394734+00:00	GitLab Importer	Affected by	VCID-7tp8-ektn-aaan	None	36.0.0
2025-04-03T20:06:26.672045+00:00	GitLab Importer	Fixing	VCID-c5mx-k2k4-aaag	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2022-34305.yml	36.0.0
2025-04-03T20:06:04.953790+00:00	GitLab Importer	Fixing	VCID-c5mx-k2k4-aaag	None	36.0.0
2025-04-03T18:54:12.274080+00:00	GitLab Importer	Affected by	VCID-59sa-ur8p-aaaa	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2021-42340.yml	36.0.0
2025-04-03T18:54:11.305275+00:00	GitLab Importer	Affected by	VCID-59sa-ur8p-aaaa	None	36.0.0
2025-02-18T03:00:23.676133+00:00	GitLab Importer	Affected by	VCID-7tp8-ektn-aaan	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2022-42252.yml	35.1.0
2025-02-18T03:00:22.783396+00:00	GitLab Importer	Affected by	VCID-7tp8-ektn-aaan	None	35.1.0
2025-02-18T02:51:11.975281+00:00	GitLab Importer	Fixing	VCID-c5mx-k2k4-aaag	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2022-34305.yml	35.1.0
2025-02-18T02:51:10.929718+00:00	GitLab Importer	Fixing	VCID-c5mx-k2k4-aaag	None	35.1.0
2025-02-18T00:29:24.419151+00:00	GitLab Importer	Affected by	VCID-59sa-ur8p-aaaa	None	35.1.0
2025-02-18T00:29:23.365900+00:00	GitLab Importer	Affected by	VCID-59sa-ur8p-aaaa	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2021-42340.yml	35.1.0
2024-11-21T00:39:09.200832+00:00	GitLab Importer	Affected by	VCID-7tp8-ektn-aaan	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2022-42252.yml	35.0.0
2024-11-21T00:35:57.724934+00:00	GitLab Importer	Fixing	VCID-c5mx-k2k4-aaag	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2022-34305.yml	35.0.0
2024-11-20T23:13:23.702679+00:00	GitLab Importer	Affected by	VCID-59sa-ur8p-aaaa	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2021-42340.yml	35.0.0
2024-11-19T00:24:51.496009+00:00	GitLab Importer	Affected by	VCID-7tp8-ektn-aaan	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2022-42252.yml	34.3.2
2024-11-19T00:21:07.923881+00:00	GitLab Importer	Fixing	VCID-c5mx-k2k4-aaag	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2022-34305.yml	34.3.2
2024-11-18T23:00:59.651408+00:00	GitLab Importer	Affected by	VCID-59sa-ur8p-aaaa	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2021-42340.yml	34.3.2
2024-10-08T01:07:37.033955+00:00	GitLab Importer	Affected by	VCID-7tp8-ektn-aaan	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2022-42252.yml	34.0.2
2024-10-08T01:04:26.467221+00:00	GitLab Importer	Fixing	VCID-c5mx-k2k4-aaag	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2022-34305.yml	34.0.2
2024-10-07T23:59:59.440295+00:00	GitLab Importer	Affected by	VCID-59sa-ur8p-aaaa	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2021-42340.yml	34.0.2
2024-10-07T21:44:35.603666+00:00	GHSA Importer	Affected by	VCID-6y3x-kyj7-aaaf	https://github.com/advisories/GHSA-qppj-fm5r-hxr3	34.0.2
2024-10-07T20:56:00.333679+00:00	GHSA Importer	Affected by	VCID-7tp8-ektn-aaan	https://github.com/advisories/GHSA-p22x-g9px-3945	34.0.2
2024-09-23T01:15:01.385518+00:00	GitLab Importer	Affected by	VCID-7tp8-ektn-aaan	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2022-42252.yml	34.0.1
2024-09-23T00:13:55.344439+00:00	GitLab Importer	Affected by	VCID-59sa-ur8p-aaaa	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2021-42340.yml	34.0.1
2024-09-22T22:14:06.334781+00:00	GHSA Importer	Affected by	VCID-6y3x-kyj7-aaaf	https://github.com/advisories/GHSA-qppj-fm5r-hxr3	34.0.1
2024-09-22T21:33:09.882761+00:00	GHSA Importer	Affected by	VCID-7tp8-ektn-aaan	https://github.com/advisories/GHSA-p22x-g9px-3945	34.0.1
2024-09-17T22:40:45.213545+00:00	GitLab Importer	Fixing	VCID-c5mx-k2k4-aaag	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2022-34305.yml	34.0.1
2024-05-17T20:50:43.117818+00:00	GHSA Importer	Affected by	VCID-6y3x-kyj7-aaaf	https://github.com/advisories/GHSA-qppj-fm5r-hxr3	34.0.0rc4
2024-05-17T19:42:09.559342+00:00	GHSA Importer	Affected by	VCID-7tp8-ektn-aaan	https://github.com/advisories/GHSA-p22x-g9px-3945	34.0.0rc4
2024-04-24T03:33:32.425006+00:00	GitLab Importer	Affected by	VCID-7tp8-ektn-aaan	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2022-42252.yml	34.0.0rc4
2024-04-24T03:33:31.542482+00:00	GitLab Importer	Affected by	VCID-7tp8-ektn-aaan	None	34.0.0rc4
2024-04-24T03:27:33.057895+00:00	GitLab Importer	Fixing	VCID-c5mx-k2k4-aaag	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2022-34305.yml	34.0.0rc4
2024-04-24T03:27:32.529860+00:00	GitLab Importer	Fixing	VCID-c5mx-k2k4-aaag	None	34.0.0rc4
2024-04-24T02:18:18.432705+00:00	GitLab Importer	Affected by	VCID-59sa-ur8p-aaaa	None	34.0.0rc4
2024-04-24T02:18:17.967720+00:00	GitLab Importer	Affected by	VCID-59sa-ur8p-aaaa	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2021-42340.yml	34.0.0rc4
2024-01-10T06:14:37.234002+00:00	GitLab Importer	Affected by	VCID-7tp8-ektn-aaan	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2022-42252.yml	34.0.0rc2
2024-01-10T06:14:36.355628+00:00	GitLab Importer	Affected by	VCID-7tp8-ektn-aaan	None	34.0.0rc2
2024-01-10T06:08:27.478833+00:00	GitLab Importer	Fixing	VCID-c5mx-k2k4-aaag	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2022-34305.yml	34.0.0rc2
2024-01-10T06:08:26.933296+00:00	GitLab Importer	Fixing	VCID-c5mx-k2k4-aaag	None	34.0.0rc2
2024-01-10T04:52:52.330865+00:00	GitLab Importer	Affected by	VCID-59sa-ur8p-aaaa	None	34.0.0rc2
2024-01-10T04:52:51.911457+00:00	GitLab Importer	Affected by	VCID-59sa-ur8p-aaaa	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2021-42340.yml	34.0.0rc2
2024-01-10T02:58:02.764008+00:00	GHSA Importer	Affected by	VCID-6y3x-kyj7-aaaf	https://github.com/advisories/GHSA-qppj-fm5r-hxr3	34.0.0rc2
2024-01-03T23:01:32.930763+00:00	GitLab Importer	Affected by	VCID-7tp8-ektn-aaan	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2022-42252.yml	34.0.0rc1
2024-01-03T23:01:32.068989+00:00	GitLab Importer	Affected by	VCID-7tp8-ektn-aaan	None	34.0.0rc1
2024-01-03T22:55:39.722522+00:00	GitLab Importer	Fixing	VCID-c5mx-k2k4-aaag	None	34.0.0rc1
2024-01-03T21:40:22.390217+00:00	GitLab Importer	Affected by	VCID-59sa-ur8p-aaaa	None	34.0.0rc1
2024-01-03T21:40:21.986535+00:00	GitLab Importer	Affected by	VCID-59sa-ur8p-aaaa	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2021-42340.yml	34.0.0rc1
2024-01-03T18:03:09.058274+00:00	GitLab Importer	Fixing	VCID-c5mx-k2k4-aaag	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2022-34305.yml	34.0.0rc1

Next non-vulnerable version	10.1.40
Latest non-vulnerable version	11.0.8
Risk	10.0