Search for packages
Package details: pkg:maven/org.apache.tomcat/tomcat@5.5.28
purl pkg:maven/org.apache.tomcat/tomcat@5.5.28
Tags Ghost
Next non-vulnerable version None.
Latest non-vulnerable version None.
Risk 10.0
Vulnerabilities affecting this package (4)
Vulnerability Summary Fixed by
VCID-9hhz-11ph-aaan
Aliases:
CVE-2009-3548
The Windows installer for Apache Tomcat 6.0.0 through 6.0.20, 5.5.0 through 5.5.28, and possibly earlier versions uses a blank default password for the administrative user, which allows remote attackers to gain privileges.
5.5.29
Affected by 3 other vulnerabilities.
6.0.24
Affected by 0 other vulnerabilities.
VCID-kg1r-u6pn-aaak
Aliases:
CVE-2009-2902
GHSA-8wch-9gcg-v2pr
CVE-2009-2902 tomcat: unexpected file deletion in work directory
5.5.29
Affected by 3 other vulnerabilities.
6.0.24
Affected by 0 other vulnerabilities.
VCID-x2d7-89h7-aaac
Aliases:
CVE-2009-2693
GHSA-ggx9-4728-588r
Directory traversal vulnerability in Apache Tomcat 5.5.0 through 5.5.28 and 6.0.0 through 6.0.20 allows remote attackers to create or overwrite arbitrary files via a .. (dot dot) in an entry in a WAR file, as demonstrated by a ../../bin/catalina.bat entry.
5.5.29
Affected by 3 other vulnerabilities.
6.0.24
Affected by 0 other vulnerabilities.
VCID-z4zw-kc9e-aaas
Aliases:
CVE-2009-2901
GHSA-hjfh-7c4v-7q8h
CVE-2009-2901 tomcat: insecure partial deploy after failed undeploy
5.5.29
Affected by 3 other vulnerabilities.
6.0.24
Affected by 0 other vulnerabilities.
Vulnerabilities fixed by this package (0)
Vulnerability Summary Aliases
This package is not known to fix vulnerabilities.

Date Actor Action Vulnerability Source VulnerableCode Version
2025-03-28T13:19:37.165479+00:00 Apache Tomcat Importer Fixing VCID-14qy-gggs-aaaa https://tomcat.apache.org/security-5.html 36.0.0
2025-03-28T13:19:37.110641+00:00 Apache Tomcat Importer Fixing VCID-zte6-dz3c-aaan https://tomcat.apache.org/security-5.html 36.0.0
2025-03-28T13:19:37.044340+00:00 Apache Tomcat Importer Fixing VCID-u6b5-d1yp-aaah https://tomcat.apache.org/security-5.html 36.0.0
2025-03-28T13:19:36.992387+00:00 Apache Tomcat Importer Fixing VCID-1um3-jpu8-aaaj https://tomcat.apache.org/security-5.html 36.0.0
2025-03-28T13:19:36.940401+00:00 Apache Tomcat Importer Fixing VCID-chav-tp7d-aaam https://tomcat.apache.org/security-5.html 36.0.0
2025-03-28T13:19:36.878909+00:00 Apache Tomcat Importer Affected by VCID-9hhz-11ph-aaan https://tomcat.apache.org/security-5.html 36.0.0
2025-03-28T13:19:36.827155+00:00 Apache Tomcat Importer Affected by VCID-kg1r-u6pn-aaak https://tomcat.apache.org/security-5.html 36.0.0
2025-03-28T13:19:36.775424+00:00 Apache Tomcat Importer Affected by VCID-z4zw-kc9e-aaas https://tomcat.apache.org/security-5.html 36.0.0
2025-03-28T13:19:36.721146+00:00 Apache Tomcat Importer Affected by VCID-x2d7-89h7-aaac https://tomcat.apache.org/security-5.html 36.0.0
2025-01-17T02:28:37.055196+00:00 GHSA Importer Affected by VCID-kg1r-u6pn-aaak None 35.1.0
2025-01-17T02:28:36.919994+00:00 GHSA Importer Affected by VCID-z4zw-kc9e-aaas None 35.1.0
2025-01-17T02:28:35.005216+00:00 GHSA Importer Fixing VCID-u6b5-d1yp-aaah None 35.1.0
2025-01-17T02:28:33.695856+00:00 GHSA Importer Fixing VCID-chav-tp7d-aaam None 35.1.0
2024-10-15T18:07:22.613742+00:00 GithubOSV Importer Fixing VCID-u6b5-d1yp-aaah https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/05/GHSA-w227-xcfx-3pj8/GHSA-w227-xcfx-3pj8.json 34.0.2
2024-10-15T18:00:24.374306+00:00 GithubOSV Importer Fixing VCID-chav-tp7d-aaam https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/05/GHSA-9737-qmgc-hfr9/GHSA-9737-qmgc-hfr9.json 34.0.2
2024-09-18T09:12:54.799442+00:00 GithubOSV Importer Fixing VCID-u6b5-d1yp-aaah https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/05/GHSA-w227-xcfx-3pj8/GHSA-w227-xcfx-3pj8.json 34.0.1
2024-09-18T09:12:12.835166+00:00 GithubOSV Importer Fixing VCID-chav-tp7d-aaam https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/05/GHSA-9737-qmgc-hfr9/GHSA-9737-qmgc-hfr9.json 34.0.1
2024-09-18T08:17:47.083980+00:00 Apache Tomcat Importer Fixing VCID-14qy-gggs-aaaa https://tomcat.apache.org/security-5.html 34.0.1
2024-09-18T08:17:47.026158+00:00 Apache Tomcat Importer Fixing VCID-zte6-dz3c-aaan https://tomcat.apache.org/security-5.html 34.0.1
2024-09-18T08:17:46.974220+00:00 Apache Tomcat Importer Fixing VCID-u6b5-d1yp-aaah https://tomcat.apache.org/security-5.html 34.0.1
2024-09-18T08:17:46.922780+00:00 Apache Tomcat Importer Fixing VCID-1um3-jpu8-aaaj https://tomcat.apache.org/security-5.html 34.0.1
2024-09-18T08:17:46.873426+00:00 Apache Tomcat Importer Fixing VCID-chav-tp7d-aaam https://tomcat.apache.org/security-5.html 34.0.1
2024-09-18T08:17:46.815435+00:00 Apache Tomcat Importer Affected by VCID-9hhz-11ph-aaan https://tomcat.apache.org/security-5.html 34.0.1
2024-09-18T08:17:46.767135+00:00 Apache Tomcat Importer Affected by VCID-kg1r-u6pn-aaak https://tomcat.apache.org/security-5.html 34.0.1
2024-09-18T08:17:46.718176+00:00 Apache Tomcat Importer Affected by VCID-z4zw-kc9e-aaas https://tomcat.apache.org/security-5.html 34.0.1
2024-09-18T08:17:46.669363+00:00 Apache Tomcat Importer Affected by VCID-x2d7-89h7-aaac https://tomcat.apache.org/security-5.html 34.0.1
2024-09-17T22:36:49.093486+00:00 GitLab Importer Affected by VCID-z4zw-kc9e-aaas https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat/tomcat/CVE-2009-2901.yml 34.0.1
2024-09-17T22:36:46.836578+00:00 GitLab Importer Affected by VCID-kg1r-u6pn-aaak https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat/tomcat/CVE-2009-2902.yml 34.0.1
2024-09-17T22:36:45.922937+00:00 GitLab Importer Fixing VCID-chav-tp7d-aaam https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat/tomcat/CVE-2008-5515.yml 34.0.1
2024-09-17T22:36:41.400512+00:00 GitLab Importer Affected by VCID-x2d7-89h7-aaac https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat/tomcat/CVE-2009-2693.yml 34.0.1
2024-09-17T22:36:30.001519+00:00 GitLab Importer Fixing VCID-u6b5-d1yp-aaah https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat/tomcat/CVE-2009-0580.yml 34.0.1
2024-09-17T22:04:40.092332+00:00 GHSA Importer Fixing VCID-u6b5-d1yp-aaah https://github.com/advisories/GHSA-w227-xcfx-3pj8 34.0.1
2024-09-17T22:01:04.561099+00:00 GHSA Importer Affected by VCID-x2d7-89h7-aaac https://github.com/advisories/GHSA-ggx9-4728-588r 34.0.1
2024-09-17T22:01:04.354323+00:00 GHSA Importer Affected by VCID-z4zw-kc9e-aaas https://github.com/advisories/GHSA-hjfh-7c4v-7q8h 34.0.1
2024-09-17T22:01:04.202075+00:00 GHSA Importer Affected by VCID-kg1r-u6pn-aaak https://github.com/advisories/GHSA-8wch-9gcg-v2pr 34.0.1
2024-09-17T22:01:03.542568+00:00 GHSA Importer Fixing VCID-chav-tp7d-aaam https://github.com/advisories/GHSA-9737-qmgc-hfr9 34.0.1
2024-04-23T23:08:03.330124+00:00 GithubOSV Importer Fixing VCID-u6b5-d1yp-aaah https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/05/GHSA-w227-xcfx-3pj8/GHSA-w227-xcfx-3pj8.json 34.0.0rc4
2024-04-23T23:07:32.379271+00:00 GithubOSV Importer Fixing VCID-chav-tp7d-aaam https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/05/GHSA-9737-qmgc-hfr9/GHSA-9737-qmgc-hfr9.json 34.0.0rc4
2024-04-23T17:40:08.168779+00:00 GHSA Importer Affected by VCID-x2d7-89h7-aaac https://github.com/advisories/GHSA-ggx9-4728-588r 34.0.0rc4
2024-04-23T17:40:07.954405+00:00 GHSA Importer Affected by VCID-z4zw-kc9e-aaas https://github.com/advisories/GHSA-hjfh-7c4v-7q8h 34.0.0rc4
2024-04-23T17:40:07.814520+00:00 GHSA Importer Affected by VCID-kg1r-u6pn-aaak https://github.com/advisories/GHSA-8wch-9gcg-v2pr 34.0.0rc4
2024-04-23T17:40:07.183922+00:00 GHSA Importer Fixing VCID-chav-tp7d-aaam https://github.com/advisories/GHSA-9737-qmgc-hfr9 34.0.0rc4
2024-02-10T15:38:46.368171+00:00 GitLab Importer Affected by VCID-x2d7-89h7-aaac https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat/tomcat/CVE-2009-2693.yml 34.0.0rc2
2024-02-08T23:36:11.196690+00:00 GHSA Importer Affected by VCID-x2d7-89h7-aaac https://github.com/advisories/GHSA-ggx9-4728-588r 34.0.0rc2
2024-01-04T02:15:50.198361+00:00 Apache Tomcat Importer Fixing VCID-14qy-gggs-aaaa https://tomcat.apache.org/security-5.html 34.0.0rc1
2024-01-04T02:15:50.140756+00:00 Apache Tomcat Importer Fixing VCID-zte6-dz3c-aaan https://tomcat.apache.org/security-5.html 34.0.0rc1
2024-01-04T02:15:50.087112+00:00 Apache Tomcat Importer Fixing VCID-u6b5-d1yp-aaah https://tomcat.apache.org/security-5.html 34.0.0rc1
2024-01-04T02:15:50.033543+00:00 Apache Tomcat Importer Fixing VCID-1um3-jpu8-aaaj https://tomcat.apache.org/security-5.html 34.0.0rc1
2024-01-04T02:15:49.981528+00:00 Apache Tomcat Importer Fixing VCID-chav-tp7d-aaam https://tomcat.apache.org/security-5.html 34.0.0rc1
2024-01-04T02:15:49.920975+00:00 Apache Tomcat Importer Affected by VCID-9hhz-11ph-aaan https://tomcat.apache.org/security-5.html 34.0.0rc1
2024-01-04T02:15:49.870325+00:00 Apache Tomcat Importer Affected by VCID-kg1r-u6pn-aaak https://tomcat.apache.org/security-5.html 34.0.0rc1
2024-01-04T02:15:49.819090+00:00 Apache Tomcat Importer Affected by VCID-z4zw-kc9e-aaas https://tomcat.apache.org/security-5.html 34.0.0rc1
2024-01-04T02:15:49.768078+00:00 Apache Tomcat Importer Affected by VCID-x2d7-89h7-aaac https://tomcat.apache.org/security-5.html 34.0.0rc1
2024-01-03T17:59:52.977281+00:00 GitLab Importer Affected by VCID-z4zw-kc9e-aaas https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat/tomcat/CVE-2009-2901.yml 34.0.0rc1
2024-01-03T17:59:50.948396+00:00 GitLab Importer Affected by VCID-kg1r-u6pn-aaak https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat/tomcat/CVE-2009-2902.yml 34.0.0rc1
2024-01-03T17:59:50.027241+00:00 GitLab Importer Fixing VCID-chav-tp7d-aaam https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat/tomcat/CVE-2008-5515.yml 34.0.0rc1
2024-01-03T17:59:35.160748+00:00 GitLab Importer Fixing VCID-u6b5-d1yp-aaah https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat/tomcat/CVE-2009-0580.yml 34.0.0rc1
2024-01-03T17:39:31.205349+00:00 GHSA Importer Fixing VCID-chav-tp7d-aaam https://github.com/advisories/GHSA-9737-qmgc-hfr9 34.0.0rc1
2024-01-03T17:39:30.674155+00:00 GHSA Importer Fixing VCID-u6b5-d1yp-aaah https://github.com/advisories/GHSA-w227-xcfx-3pj8 34.0.0rc1
2024-01-03T17:39:30.254195+00:00 GHSA Importer Affected by VCID-z4zw-kc9e-aaas https://github.com/advisories/GHSA-hjfh-7c4v-7q8h 34.0.0rc1
2024-01-03T17:39:29.004432+00:00 GHSA Importer Affected by VCID-kg1r-u6pn-aaak https://github.com/advisories/GHSA-8wch-9gcg-v2pr 34.0.0rc1