Search for packages
Package details: pkg:maven/org.apache.tomcat/tomcat@6.0.16
purl pkg:maven/org.apache.tomcat/tomcat@6.0.16
Tags Ghost
Next non-vulnerable version None.
Latest non-vulnerable version None.
Risk 10.0
Vulnerabilities affecting this package (6)
Vulnerability Summary Fixed by
VCID-22we-qr8x-aaad
Aliases:
CVE-2008-2370
GHSA-m8h8-6rvg-f4mg
CVE-2008-2370 tomcat RequestDispatcher information disclosure vulnerability
6.0.18
Affected by 5 other vulnerabilities.
VCID-2a4u-vpgj-aaaa
Aliases:
CVE-2008-2938
GHSA-m7xj-ccqc-p4g2
CVE-2008-2938 tomcat Unicode directory traversal vulnerability
6.0.18
Affected by 5 other vulnerabilities.
VCID-nwsx-6pj2-aaap
Aliases:
CVE-2008-1947
GHSA-f98p-9pp6-7q6c
CVE-2008-1947 Tomcat host manager xss - name field
6.0.18
Affected by 5 other vulnerabilities.
VCID-p378-4jg4-aaam
Aliases:
CVE-2016-8745
GHSA-w3j5-q8f2-3cqq
Information Exposure A bug in the error handling of the NIO HTTP connector in Apache Tomcat resulted in the current Processor object being added to the Processor cache multiple times. This in turn meant that the same Processor could be used for concurrent requests. Sharing a Processor can result in information leakage.
6.0.50
Affected by 0 other vulnerabilities.
7.0.75
Affected by 29 other vulnerabilities.
8.0.41
Affected by 17 other vulnerabilities.
8.5.9
Affected by 54 other vulnerabilities.
9.0.0.M14
Affected by 0 other vulnerabilities.
9.0.0.M15
Affected by 54 other vulnerabilities.
VCID-q1t4-rzf5-aaac
Aliases:
CVE-2016-6816
GHSA-jc7p-5r39-9477
The code in Apache Tomcat 9.0.0.M1 to 9.0.0.M11, 8.5.0 to 8.5.6, 8.0.0.RC1 to 8.0.38, 7.0.0 to 7.0.72, and 6.0.0 to 6.0.47 that parsed the HTTP request line permitted invalid characters. This could be exploited, in conjunction with a proxy that also permitted the invalid characters but with a different interpretation, to inject data into the HTTP response. By manipulating the HTTP response the attacker could poison a web-cache, perform an XSS attack and/or obtain sensitive information from requests other then their own.
6.0.48
Affected by 1 other vulnerability.
7.0.73
Affected by 30 other vulnerabilities.
8.0.39
Affected by 18 other vulnerabilities.
8.5.8
Affected by 55 other vulnerabilities.
9.0.0.M12
Affected by 0 other vulnerabilities.
9.0.0.M13
Affected by 55 other vulnerabilities.
VCID-w2az-ahw2-aaah
Aliases:
CVE-2008-1232
GHSA-q74x-qqhr-f8rx
CVE-2008-1232 tomcat: Cross-Site-Scripting enabled by sendError call
6.0.17
Affected by 0 other vulnerabilities.
6.0.18
Affected by 5 other vulnerabilities.
Vulnerabilities fixed by this package (0)
Vulnerability Summary Aliases
This package is not known to fix vulnerabilities.

Date Actor Action Vulnerability Source VulnerableCode Version
2025-04-09T21:35:04.600780+00:00 GHSA Importer Affected by VCID-nwsx-6pj2-aaap https://github.com/advisories/GHSA-f98p-9pp6-7q6c 36.0.0
2025-03-28T13:19:35.552739+00:00 Apache Tomcat Importer Fixing VCID-z2f7-s672-aaan https://tomcat.apache.org/security-6.html 36.0.0
2025-03-28T13:19:35.502902+00:00 Apache Tomcat Importer Fixing VCID-u6sk-57c8-aaah https://tomcat.apache.org/security-6.html 36.0.0
2025-03-28T13:19:35.454629+00:00 Apache Tomcat Importer Fixing VCID-es7j-vwa1-aaar https://tomcat.apache.org/security-6.html 36.0.0
2025-03-28T13:19:35.406271+00:00 Apache Tomcat Importer Fixing VCID-xtxt-x8g1-aaan https://tomcat.apache.org/security-6.html 36.0.0
2025-03-28T13:19:35.358120+00:00 Apache Tomcat Importer Fixing VCID-8ha5-3wkt-aaaa https://tomcat.apache.org/security-6.html 36.0.0
2025-03-28T13:19:35.304456+00:00 Apache Tomcat Importer Affected by VCID-22we-qr8x-aaad https://tomcat.apache.org/security-6.html 36.0.0
2025-03-28T13:19:35.249988+00:00 Apache Tomcat Importer Affected by VCID-nwsx-6pj2-aaap https://tomcat.apache.org/security-6.html 36.0.0
2025-03-28T13:19:35.191228+00:00 Apache Tomcat Importer Affected by VCID-w2az-ahw2-aaah https://tomcat.apache.org/security-6.html 36.0.0
2025-03-28T13:19:32.303835+00:00 Apache Tomcat Importer Affected by VCID-p378-4jg4-aaam https://tomcat.apache.org/security-6.html 36.0.0
2025-01-17T02:30:12.810169+00:00 GHSA Importer Affected by VCID-q1t4-rzf5-aaac None 35.1.0
2024-10-15T18:00:18.477509+00:00 GithubOSV Importer Fixing VCID-z2f7-s672-aaan https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/05/GHSA-5x5f-9r6q-q7mh/GHSA-5x5f-9r6q-q7mh.json 34.0.2
2024-09-18T09:11:55.779046+00:00 GithubOSV Importer Fixing VCID-z2f7-s672-aaan https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/05/GHSA-5x5f-9r6q-q7mh/GHSA-5x5f-9r6q-q7mh.json 34.0.1
2024-09-18T08:17:45.532492+00:00 Apache Tomcat Importer Fixing VCID-z2f7-s672-aaan https://tomcat.apache.org/security-6.html 34.0.1
2024-09-18T08:17:45.484468+00:00 Apache Tomcat Importer Fixing VCID-u6sk-57c8-aaah https://tomcat.apache.org/security-6.html 34.0.1
2024-09-18T08:17:45.435365+00:00 Apache Tomcat Importer Fixing VCID-es7j-vwa1-aaar https://tomcat.apache.org/security-6.html 34.0.1
2024-09-18T08:17:45.386917+00:00 Apache Tomcat Importer Fixing VCID-xtxt-x8g1-aaan https://tomcat.apache.org/security-6.html 34.0.1
2024-09-18T08:17:45.332728+00:00 Apache Tomcat Importer Fixing VCID-8ha5-3wkt-aaaa https://tomcat.apache.org/security-6.html 34.0.1
2024-09-18T08:17:45.274386+00:00 Apache Tomcat Importer Affected by VCID-22we-qr8x-aaad https://tomcat.apache.org/security-6.html 34.0.1
2024-09-18T08:17:45.215760+00:00 Apache Tomcat Importer Affected by VCID-nwsx-6pj2-aaap https://tomcat.apache.org/security-6.html 34.0.1
2024-09-18T08:17:45.164662+00:00 Apache Tomcat Importer Affected by VCID-w2az-ahw2-aaah https://tomcat.apache.org/security-6.html 34.0.1
2024-09-18T08:17:42.444798+00:00 Apache Tomcat Importer Affected by VCID-p378-4jg4-aaam https://tomcat.apache.org/security-6.html 34.0.1
2024-09-17T22:36:50.564411+00:00 GitLab Importer Affected by VCID-nwsx-6pj2-aaap https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat/tomcat/CVE-2008-1947.yml 34.0.1
2024-09-17T22:36:49.270932+00:00 GitLab Importer Affected by VCID-q1t4-rzf5-aaac https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat/tomcat/CVE-2016-6816.yml 34.0.1
2024-09-17T22:36:46.252139+00:00 GitLab Importer Fixing VCID-z2f7-s672-aaan https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat/tomcat/CVE-2008-0002.yml 34.0.1
2024-09-17T22:36:40.745702+00:00 GitLab Importer Affected by VCID-w2az-ahw2-aaah https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat/tomcat/CVE-2008-1232.yml 34.0.1
2024-09-17T22:36:38.636081+00:00 GitLab Importer Affected by VCID-22we-qr8x-aaad https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat/tomcat/CVE-2008-2370.yml 34.0.1
2024-09-17T22:02:49.360393+00:00 GHSA Importer Affected by VCID-w2az-ahw2-aaah https://github.com/advisories/GHSA-q74x-qqhr-f8rx 34.0.1
2024-09-17T22:02:01.168984+00:00 GHSA Importer Affected by VCID-p378-4jg4-aaam https://github.com/advisories/GHSA-w3j5-q8f2-3cqq 34.0.1
2024-09-17T22:01:23.644139+00:00 GHSA Importer Affected by VCID-nwsx-6pj2-aaap https://github.com/advisories/GHSA-f98p-9pp6-7q6c 34.0.1
2024-09-17T22:01:09.713915+00:00 GHSA Importer Fixing VCID-z2f7-s672-aaan https://github.com/advisories/GHSA-5x5f-9r6q-q7mh 34.0.1
2024-09-17T22:01:09.338739+00:00 GHSA Importer Affected by VCID-22we-qr8x-aaad https://github.com/advisories/GHSA-m8h8-6rvg-f4mg 34.0.1
2024-09-17T22:00:55.468027+00:00 GHSA Importer Affected by VCID-2a4u-vpgj-aaaa https://github.com/advisories/GHSA-m7xj-ccqc-p4g2 34.0.1
2024-04-23T23:07:17.556867+00:00 GithubOSV Importer Fixing VCID-z2f7-s672-aaan https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/05/GHSA-5x5f-9r6q-q7mh/GHSA-5x5f-9r6q-q7mh.json 34.0.0rc4
2024-04-23T17:40:20.007107+00:00 GHSA Importer Affected by VCID-p378-4jg4-aaam https://github.com/advisories/GHSA-w3j5-q8f2-3cqq 34.0.0rc4
2024-04-23T17:40:11.102077+00:00 GHSA Importer Affected by VCID-nwsx-6pj2-aaap https://github.com/advisories/GHSA-f98p-9pp6-7q6c 34.0.0rc4
2024-04-23T17:39:58.621067+00:00 GHSA Importer Affected by VCID-2a4u-vpgj-aaaa https://github.com/advisories/GHSA-m7xj-ccqc-p4g2 34.0.0rc4
2024-02-13T15:59:41.231684+00:00 GitLab Importer Fixing VCID-z2f7-s672-aaan https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat/tomcat/CVE-2008-0002.yml 34.0.0rc2
2024-02-13T15:59:40.701506+00:00 GitLab Importer Affected by VCID-22we-qr8x-aaad https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat/tomcat/CVE-2008-2370.yml 34.0.0rc2
2024-02-09T20:11:08.746822+00:00 GHSA Importer Affected by VCID-22we-qr8x-aaad https://github.com/advisories/GHSA-m8h8-6rvg-f4mg 34.0.0rc2
2024-02-09T16:29:03.960551+00:00 GHSA Importer Fixing VCID-z2f7-s672-aaan https://github.com/advisories/GHSA-5x5f-9r6q-q7mh 34.0.0rc2
2024-01-09T15:41:57.544551+00:00 GitLab Importer Affected by VCID-nwsx-6pj2-aaap https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat/tomcat/CVE-2008-1947.yml 34.0.0rc1
2024-01-08T23:56:54.704951+00:00 GHSA Importer Affected by VCID-nwsx-6pj2-aaap https://github.com/advisories/GHSA-f98p-9pp6-7q6c 34.0.0rc1
2024-01-04T02:15:48.631537+00:00 Apache Tomcat Importer Fixing VCID-z2f7-s672-aaan https://tomcat.apache.org/security-6.html 34.0.0rc1
2024-01-04T02:15:48.582029+00:00 Apache Tomcat Importer Fixing VCID-u6sk-57c8-aaah https://tomcat.apache.org/security-6.html 34.0.0rc1
2024-01-04T02:15:48.532775+00:00 Apache Tomcat Importer Fixing VCID-es7j-vwa1-aaar https://tomcat.apache.org/security-6.html 34.0.0rc1
2024-01-04T02:15:48.488071+00:00 Apache Tomcat Importer Fixing VCID-xtxt-x8g1-aaan https://tomcat.apache.org/security-6.html 34.0.0rc1
2024-01-04T02:15:48.440477+00:00 Apache Tomcat Importer Fixing VCID-8ha5-3wkt-aaaa https://tomcat.apache.org/security-6.html 34.0.0rc1
2024-01-04T02:15:48.389812+00:00 Apache Tomcat Importer Affected by VCID-22we-qr8x-aaad https://tomcat.apache.org/security-6.html 34.0.0rc1
2024-01-04T02:15:48.335614+00:00 Apache Tomcat Importer Affected by VCID-nwsx-6pj2-aaap https://tomcat.apache.org/security-6.html 34.0.0rc1
2024-01-04T02:15:48.281251+00:00 Apache Tomcat Importer Affected by VCID-w2az-ahw2-aaah https://tomcat.apache.org/security-6.html 34.0.0rc1
2024-01-04T02:15:45.566413+00:00 Apache Tomcat Importer Affected by VCID-p378-4jg4-aaam https://tomcat.apache.org/security-6.html 34.0.0rc1
2024-01-03T17:59:53.180950+00:00 GitLab Importer Affected by VCID-q1t4-rzf5-aaac https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat/tomcat/CVE-2016-6816.yml 34.0.0rc1
2024-01-03T17:59:44.672757+00:00 GitLab Importer Affected by VCID-w2az-ahw2-aaah https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat/tomcat/CVE-2008-1232.yml 34.0.0rc1
2024-01-03T17:37:37.473589+00:00 GHSA Importer Affected by VCID-w2az-ahw2-aaah https://github.com/advisories/GHSA-q74x-qqhr-f8rx 34.0.0rc1
2024-01-03T17:36:51.719323+00:00 GHSA Importer Affected by VCID-p378-4jg4-aaam https://github.com/advisories/GHSA-w3j5-q8f2-3cqq 34.0.0rc1