Search for packages
Package details: pkg:maven/org.apache.tomcat/tomcat@7.0.5
purl pkg:maven/org.apache.tomcat/tomcat@7.0.5
Tags Ghost
Next non-vulnerable version None.
Latest non-vulnerable version None.
Risk 4.0
Vulnerabilities affecting this package (2)
Vulnerability Summary Fixed by
VCID-2uwh-1pm5-aaad
Aliases:
CVE-2015-5346
GHSA-jrcp-c39h-r29x
Session fixation vulnerability in Apache Tomcat 7.x before 7.0.66, 8.x before 8.0.30, and 9.x before 9.0.0.M2, when different session settings are used for deployments of multiple versions of the same web application, might allow remote attackers to hijack web sessions by leveraging use of a requestedSessionSSL field for an unintended request, related to CoyoteAdapter.java and Request.java.
7.0.66
Affected by 0 other vulnerabilities.
7.0.67
Affected by 43 other vulnerabilities.
8.0.31
Affected by 0 other vulnerabilities.
8.0.32
Affected by 26 other vulnerabilities.
9.0.0.M2
Affected by 1 other vulnerability.
9.0.0.M3
Affected by 61 other vulnerabilities.
VCID-w4v5-xn5g-aaag
Aliases:
CVE-2011-0013
GHSA-3p86-xgrq-m6p6
CVE-2011-0013 tomcat: XSS vulnerability in HTML Manager interface
7.0.6
Affected by 1 other vulnerability.
Vulnerabilities fixed by this package (0)
Vulnerability Summary Aliases
This package is not known to fix vulnerabilities.

Date Actor Action Vulnerability Source VulnerableCode Version
2025-03-28T13:19:32.082625+00:00 Apache Tomcat Importer Fixing VCID-hkqr-snht-aaan https://tomcat.apache.org/security-7.html 36.0.0
2025-03-28T13:19:32.022745+00:00 Apache Tomcat Importer Affected by VCID-w4v5-xn5g-aaag https://tomcat.apache.org/security-7.html 36.0.0
2025-03-28T13:19:30.052013+00:00 Apache Tomcat Importer Affected by VCID-2uwh-1pm5-aaad https://tomcat.apache.org/security-7.html 36.0.0
2025-01-17T02:28:41.601630+00:00 GHSA Importer Fixing VCID-hkqr-snht-aaan None 35.1.0
2024-10-15T18:07:40.288692+00:00 GithubOSV Importer Fixing VCID-hkqr-snht-aaan https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/05/GHSA-c78g-qwpw-2jgv/GHSA-c78g-qwpw-2jgv.json 34.0.2
2024-09-18T09:11:35.938842+00:00 GithubOSV Importer Fixing VCID-hkqr-snht-aaan https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/05/GHSA-c78g-qwpw-2jgv/GHSA-c78g-qwpw-2jgv.json 34.0.1
2024-09-18T08:17:42.248410+00:00 Apache Tomcat Importer Fixing VCID-hkqr-snht-aaan https://tomcat.apache.org/security-7.html 34.0.1
2024-09-18T08:17:42.192190+00:00 Apache Tomcat Importer Affected by VCID-w4v5-xn5g-aaag https://tomcat.apache.org/security-7.html 34.0.1
2024-09-18T08:17:40.041491+00:00 Apache Tomcat Importer Affected by VCID-2uwh-1pm5-aaad https://tomcat.apache.org/security-7.html 34.0.1
2024-09-17T22:36:31.650591+00:00 GitLab Importer Fixing VCID-hkqr-snht-aaan https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat/tomcat/CVE-2010-4172.yml 34.0.1
2024-09-17T22:00:44.666092+00:00 GHSA Importer Fixing VCID-hkqr-snht-aaan https://github.com/advisories/GHSA-c78g-qwpw-2jgv 34.0.1
2024-04-23T23:07:01.506162+00:00 GithubOSV Importer Fixing VCID-hkqr-snht-aaan https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/05/GHSA-c78g-qwpw-2jgv/GHSA-c78g-qwpw-2jgv.json 34.0.0rc4
2024-04-23T17:39:47.894393+00:00 GHSA Importer Fixing VCID-hkqr-snht-aaan https://github.com/advisories/GHSA-c78g-qwpw-2jgv 34.0.0rc4
2024-01-04T02:15:45.387089+00:00 Apache Tomcat Importer Fixing VCID-hkqr-snht-aaan https://tomcat.apache.org/security-7.html 34.0.0rc1
2024-01-04T02:15:45.324701+00:00 Apache Tomcat Importer Affected by VCID-w4v5-xn5g-aaag https://tomcat.apache.org/security-7.html 34.0.0rc1
2024-01-04T02:15:43.364707+00:00 Apache Tomcat Importer Affected by VCID-2uwh-1pm5-aaad https://tomcat.apache.org/security-7.html 34.0.0rc1
2024-01-03T17:59:36.494363+00:00 GitLab Importer Fixing VCID-hkqr-snht-aaan https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat/tomcat/CVE-2010-4172.yml 34.0.0rc1
2024-01-03T17:39:10.066705+00:00 GHSA Importer Fixing VCID-hkqr-snht-aaan https://github.com/advisories/GHSA-c78g-qwpw-2jgv 34.0.0rc1