Search for packages
| purl | pkg:maven/org.apache.tomcat/tomcat@6.0.43 |
| Tags | Ghost |
| Next non-vulnerable version | None. |
| Latest non-vulnerable version | None. |
| Risk | 4.0 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-5wj3-qn6v-aaab
Aliases: CVE-2014-0230 GHSA-pxcx-cxq8-4mmw |
Apache Tomcat 6.x before 6.0.44, 7.x before 7.0.55, and 8.x before 8.0.9 does not properly handle cases where an HTTP response occurs before finishing the reading of an entire request body, which allows remote attackers to cause a denial of service (thread consumption) via a series of aborted upload attempts. |
Affected by 4 other vulnerabilities. Affected by 46 other vulnerabilities. Affected by 34 other vulnerabilities. |
|
VCID-cxzy-t2vt-aaar
Aliases: CVE-2014-7810 GHSA-4c43-cwvx-9crh |
The Expression Language (EL) implementation in Apache Tomcat 6.x before 6.0.44, 7.x before 7.0.58, and 8.x before 8.0.16 does not properly consider the possibility of an accessible interface implemented by an inaccessible class, which allows attackers to bypass a SecurityManager protection mechanism via a web application that leverages use of incorrect privileges during EL evaluation. |
Affected by 4 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 45 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 33 other vulnerabilities. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| This package is not known to fix vulnerabilities. | ||
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2025-03-28T13:19:33.066131+00:00 | Apache Tomcat Importer | Fixing | VCID-y7g9-rfw9-aaaa | https://tomcat.apache.org/security-6.html | 36.0.0 |
| 2025-03-28T13:19:33.010900+00:00 | Apache Tomcat Importer | Affected by | VCID-cxzy-t2vt-aaar | https://tomcat.apache.org/security-6.html | 36.0.0 |
| 2025-03-28T13:19:32.955632+00:00 | Apache Tomcat Importer | Affected by | VCID-5wj3-qn6v-aaab | https://tomcat.apache.org/security-6.html | 36.0.0 |
| 2024-09-18T08:17:43.163497+00:00 | Apache Tomcat Importer | Fixing | VCID-y7g9-rfw9-aaaa | https://tomcat.apache.org/security-6.html | 34.0.1 |
| 2024-09-18T08:17:43.112932+00:00 | Apache Tomcat Importer | Affected by | VCID-cxzy-t2vt-aaar | https://tomcat.apache.org/security-6.html | 34.0.1 |
| 2024-09-18T08:17:43.063458+00:00 | Apache Tomcat Importer | Affected by | VCID-5wj3-qn6v-aaab | https://tomcat.apache.org/security-6.html | 34.0.1 |
| 2024-01-04T02:15:46.256269+00:00 | Apache Tomcat Importer | Fixing | VCID-y7g9-rfw9-aaaa | https://tomcat.apache.org/security-6.html | 34.0.0rc1 |
| 2024-01-04T02:15:46.205086+00:00 | Apache Tomcat Importer | Affected by | VCID-cxzy-t2vt-aaar | https://tomcat.apache.org/security-6.html | 34.0.0rc1 |
| 2024-01-04T02:15:46.153665+00:00 | Apache Tomcat Importer | Affected by | VCID-5wj3-qn6v-aaab | https://tomcat.apache.org/security-6.html | 34.0.0rc1 |