Search for packages
Package details: pkg:maven/org.apache.tomcat/tomcat@7.0.32
purl pkg:maven/org.apache.tomcat/tomcat@7.0.32
Tags Ghost
Next non-vulnerable version None.
Latest non-vulnerable version None.
Risk 4.0
Vulnerabilities affecting this package (1)
Vulnerability Summary Fixed by
VCID-5j2e-wm7n-aaah
Aliases:
CVE-2013-2067
GHSA-6m48-jxwx-76q7
java/org/apache/catalina/authenticator/FormAuthenticator.java in the form authentication feature in Apache Tomcat 6.0.21 through 6.0.36 and 7.x before 7.0.33 does not properly handle the relationships between authentication requirements and sessions, which allows remote attackers to inject a request into a session by sending this request during completion of the login form, a variant of a session fixation attack.
7.0.33
Affected by 0 other vulnerabilities.
Vulnerabilities fixed by this package (0)
Vulnerability Summary Aliases
This package is not known to fix vulnerabilities.

Date Actor Action Vulnerability Source VulnerableCode Version
2025-03-28T13:19:30.954867+00:00 Apache Tomcat Importer Fixing VCID-ntxm-uwj5-aaae https://tomcat.apache.org/security-7.html 36.0.0
2025-03-28T13:19:30.897513+00:00 Apache Tomcat Importer Affected by VCID-5j2e-wm7n-aaah https://tomcat.apache.org/security-7.html 36.0.0
2025-01-17T02:28:55.891907+00:00 GHSA Importer Fixing VCID-ntxm-uwj5-aaae None 35.1.0
2024-10-15T18:08:09.991543+00:00 GithubOSV Importer Fixing VCID-ntxm-uwj5-aaae https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/05/GHSA-76vr-72mv-mf3q/GHSA-76vr-72mv-mf3q.json 34.0.2
2024-09-18T09:13:59.864821+00:00 GithubOSV Importer Fixing VCID-ntxm-uwj5-aaae https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/05/GHSA-76vr-72mv-mf3q/GHSA-76vr-72mv-mf3q.json 34.0.1
2024-09-18T08:17:41.022977+00:00 Apache Tomcat Importer Fixing VCID-ntxm-uwj5-aaae https://tomcat.apache.org/security-7.html 34.0.1
2024-09-18T08:17:40.959768+00:00 Apache Tomcat Importer Affected by VCID-5j2e-wm7n-aaah https://tomcat.apache.org/security-7.html 34.0.1
2024-09-17T22:36:37.419546+00:00 GitLab Importer Fixing VCID-ntxm-uwj5-aaae https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat/tomcat/CVE-2012-4431.yml 34.0.1
2024-09-17T22:04:20.022114+00:00 GHSA Importer Fixing VCID-ntxm-uwj5-aaae https://github.com/advisories/GHSA-76vr-72mv-mf3q 34.0.1
2024-04-23T23:08:54.374118+00:00 GithubOSV Importer Fixing VCID-ntxm-uwj5-aaae https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/05/GHSA-76vr-72mv-mf3q/GHSA-76vr-72mv-mf3q.json 34.0.0rc4
2024-01-04T02:15:44.196640+00:00 Apache Tomcat Importer Fixing VCID-ntxm-uwj5-aaae https://tomcat.apache.org/security-7.html 34.0.0rc1
2024-01-04T02:15:44.140941+00:00 Apache Tomcat Importer Affected by VCID-5j2e-wm7n-aaah https://tomcat.apache.org/security-7.html 34.0.0rc1
2024-01-03T17:59:41.939980+00:00 GitLab Importer Fixing VCID-ntxm-uwj5-aaae https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat/tomcat/CVE-2012-4431.yml 34.0.0rc1
2024-01-03T17:39:03.557400+00:00 GHSA Importer Fixing VCID-ntxm-uwj5-aaae https://github.com/advisories/GHSA-76vr-72mv-mf3q 34.0.0rc1