Search for packages
Package details: pkg:maven/org.apache.tomcat/tomcat@6.0.48
purl pkg:maven/org.apache.tomcat/tomcat@6.0.48
Tags Ghost
Next non-vulnerable version None.
Latest non-vulnerable version None.
Risk 4.0
Vulnerabilities affecting this package (1)
Vulnerability Summary Fixed by
VCID-p378-4jg4-aaam
Aliases:
CVE-2016-8745
GHSA-w3j5-q8f2-3cqq
Information Exposure A bug in the error handling of the NIO HTTP connector in Apache Tomcat resulted in the current Processor object being added to the Processor cache multiple times. This in turn meant that the same Processor could be used for concurrent requests. Sharing a Processor can result in information leakage.
6.0.50
Affected by 0 other vulnerabilities.
7.0.75
Affected by 29 other vulnerabilities.
8.0.41
Affected by 17 other vulnerabilities.
8.5.9
Affected by 54 other vulnerabilities.
9.0.0.M14
Affected by 0 other vulnerabilities.
9.0.0.M15
Affected by 54 other vulnerabilities.
Vulnerabilities fixed by this package (0)
Vulnerability Summary Aliases
This package is not known to fix vulnerabilities.

Date Actor Action Vulnerability Source VulnerableCode Version
2025-03-28T13:19:32.415553+00:00 Apache Tomcat Importer Fixing VCID-q1t4-rzf5-aaac https://tomcat.apache.org/security-6.html 36.0.0
2025-03-28T13:19:32.364924+00:00 Apache Tomcat Importer Fixing VCID-sc5t-244h-aaas https://tomcat.apache.org/security-6.html 36.0.0
2025-03-28T13:19:32.309248+00:00 Apache Tomcat Importer Affected by VCID-p378-4jg4-aaam https://tomcat.apache.org/security-6.html 36.0.0
2025-01-17T02:30:12.815071+00:00 GHSA Importer Fixing VCID-q1t4-rzf5-aaac None 35.1.0
2024-09-18T08:17:42.549469+00:00 Apache Tomcat Importer Fixing VCID-q1t4-rzf5-aaac https://tomcat.apache.org/security-6.html 34.0.1
2024-09-18T08:17:42.502417+00:00 Apache Tomcat Importer Fixing VCID-sc5t-244h-aaas https://tomcat.apache.org/security-6.html 34.0.1
2024-09-18T08:17:42.449823+00:00 Apache Tomcat Importer Affected by VCID-p378-4jg4-aaam https://tomcat.apache.org/security-6.html 34.0.1
2024-09-17T22:36:49.747087+00:00 GitLab Importer Fixing VCID-q1t4-rzf5-aaac https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat/tomcat/CVE-2016-6816.yml 34.0.1
2024-09-17T22:36:46.435865+00:00 GitLab Importer Fixing VCID-sc5t-244h-aaas https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat/tomcat/CVE-2016-8735.yml 34.0.1
2024-01-04T02:15:45.671047+00:00 Apache Tomcat Importer Fixing VCID-q1t4-rzf5-aaac https://tomcat.apache.org/security-6.html 34.0.0rc1
2024-01-04T02:15:45.623029+00:00 Apache Tomcat Importer Fixing VCID-sc5t-244h-aaas https://tomcat.apache.org/security-6.html 34.0.0rc1
2024-01-04T02:15:45.571142+00:00 Apache Tomcat Importer Affected by VCID-p378-4jg4-aaam https://tomcat.apache.org/security-6.html 34.0.0rc1
2024-01-03T17:59:53.689968+00:00 GitLab Importer Fixing VCID-q1t4-rzf5-aaac https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat/tomcat/CVE-2016-6816.yml 34.0.0rc1
2024-01-03T17:59:50.552772+00:00 GitLab Importer Fixing VCID-sc5t-244h-aaas https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat/tomcat/CVE-2016-8735.yml 34.0.0rc1
2024-01-03T17:36:56.933001+00:00 GHSA Importer Fixing VCID-sc5t-244h-aaas https://github.com/advisories/GHSA-cw54-59pw-4g8c 34.0.0rc1