Search for packages
Package details: pkg:maven/org.apache.tomcat/tomcat@8.5.7
purl pkg:maven/org.apache.tomcat/tomcat@8.5.7
Tags Ghost
Next non-vulnerable version None.
Latest non-vulnerable version None.
Risk 4.0
Vulnerabilities affecting this package (2)
Vulnerability Summary Fixed by
VCID-fen9-e5k1-aaap
Aliases:
CVE-2016-8747
GHSA-fjwp-r6fm-q6qw
An information disclosure issue was discovered in Apache Tomcat 8.5.7 to 8.5.9 and 9.0.0.M11 to 9.0.0.M15 in reverse-proxy configurations. Http11InputBuffer.java allows remote attackers to read data that was intended to be associated with a different request.
8.5.10
Affected by 0 other vulnerabilities.
8.5.11
Affected by 53 other vulnerabilities.
9.0.0.M16
Affected by 0 other vulnerabilities.
9.0.0.M17
Affected by 53 other vulnerabilities.
VCID-tzx4-sq6x-aaap
Aliases:
CVE-2024-21733
GHSA-f4qf-m5gf-8jm8
Generation of Error Message Containing Sensitive Information vulnerability in Apache Tomcat.This issue affects Apache Tomcat: from 8.5.7 through 8.5.63, from 9.0.0-M11 through 9.0.43. Users are recommended to upgrade to version 8.5.64 onwards or 9.0.44 onwards, which contain a fix for the issue.
8.5.64
Affected by 23 other vulnerabilities.
9.0.44
Affected by 26 other vulnerabilities.
Vulnerabilities fixed by this package (0)
Vulnerability Summary Aliases
This package is not known to fix vulnerabilities.

Date Actor Action Vulnerability Source VulnerableCode Version
2025-03-28T13:19:25.222861+00:00 Apache Tomcat Importer Affected by VCID-fen9-e5k1-aaap https://tomcat.apache.org/security-8.html 36.0.0
2025-03-28T13:19:22.420093+00:00 Apache Tomcat Importer Affected by VCID-tzx4-sq6x-aaap https://tomcat.apache.org/security-8.html 36.0.0
2024-10-16T23:01:03.832184+00:00 GitLab Importer Affected by VCID-fen9-e5k1-aaap https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat/tomcat/CVE-2016-8747.yml 34.0.2
2024-10-16T08:22:08.392507+00:00 GHSA Importer Affected by VCID-fen9-e5k1-aaap https://github.com/advisories/GHSA-fjwp-r6fm-q6qw 34.0.2
2024-09-18T08:17:35.642229+00:00 Apache Tomcat Importer Affected by VCID-fen9-e5k1-aaap https://tomcat.apache.org/security-8.html 34.0.1
2024-09-18T08:17:32.990883+00:00 Apache Tomcat Importer Affected by VCID-tzx4-sq6x-aaap https://tomcat.apache.org/security-8.html 34.0.1
2024-09-17T22:36:46.562832+00:00 GitLab Importer Fixing VCID-sc5t-244h-aaas https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat/tomcat/CVE-2016-8735.yml 34.0.1
2024-09-17T22:36:45.346324+00:00 GitLab Importer Affected by VCID-fen9-e5k1-aaap https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat/tomcat/CVE-2016-8747.yml 34.0.1
2024-09-17T22:36:41.175362+00:00 GitLab Importer Affected by VCID-tzx4-sq6x-aaap https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat/tomcat/CVE-2024-21733.yml 34.0.1
2024-09-17T22:02:04.135916+00:00 GHSA Importer Affected by VCID-fen9-e5k1-aaap https://github.com/advisories/GHSA-fjwp-r6fm-q6qw 34.0.1
2024-04-23T17:43:14.865258+00:00 GitLab Importer Affected by VCID-tzx4-sq6x-aaap https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat/tomcat/CVE-2024-21733.yml 34.0.0rc4
2024-04-23T17:40:22.730154+00:00 GHSA Importer Affected by VCID-fen9-e5k1-aaap https://github.com/advisories/GHSA-fjwp-r6fm-q6qw 34.0.0rc4
2024-04-23T17:40:10.184656+00:00 GHSA Importer Affected by VCID-tzx4-sq6x-aaap https://github.com/advisories/GHSA-f4qf-m5gf-8jm8 34.0.0rc4
2024-01-30T00:32:22.486092+00:00 GHSA Importer Affected by VCID-tzx4-sq6x-aaap https://github.com/advisories/GHSA-f4qf-m5gf-8jm8 34.0.0rc2
2024-01-19T11:35:22.029160+00:00 Apache Tomcat Importer Affected by VCID-tzx4-sq6x-aaap https://tomcat.apache.org/security-8.html 34.0.0rc2
2024-01-04T02:15:39.121220+00:00 Apache Tomcat Importer Affected by VCID-fen9-e5k1-aaap https://tomcat.apache.org/security-8.html 34.0.0rc1
2024-01-03T17:59:50.679796+00:00 GitLab Importer Fixing VCID-sc5t-244h-aaas https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat/tomcat/CVE-2016-8735.yml 34.0.0rc1
2024-01-03T17:59:49.453637+00:00 GitLab Importer Affected by VCID-fen9-e5k1-aaap https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat/tomcat/CVE-2016-8747.yml 34.0.0rc1
2024-01-03T17:36:56.532761+00:00 GHSA Importer Fixing VCID-sc5t-244h-aaas https://github.com/advisories/GHSA-cw54-59pw-4g8c 34.0.0rc1
2024-01-03T17:36:54.889623+00:00 GHSA Importer Affected by VCID-fen9-e5k1-aaap https://github.com/advisories/GHSA-fjwp-r6fm-q6qw 34.0.0rc1