VulnerableCode Package Details - pkg:apache/tomcat@4.1.31

Search for packages

Package details: pkg:apache/tomcat@4.1.31

Essentials
History (18)

purl	pkg:apache/tomcat@4.1.31

Next non-vulnerable version	4.1.35
Latest non-vulnerable version	11.0.8
Risk	10.0

Vulnerabilities affecting this package (6)

Vulnerability	Summary	Fixed by
VCID-31ma-z76n-aaaa Aliases: CVE-2007-1858	CVE-2007-1858 tomcat anonymous cipher issue	4.1.32 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} 5.5.17 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}
VCID-3cn3-wbw7-aaaf Aliases: CVE-2005-4838	Multiple cross-site scripting (XSS) vulnerabilities in the example web applications for Jakarta Tomcat 5.5.6 and earlier allow remote attackers to inject arbitrary web script or HTML via (1) el/functions.jsp, (2) el/implicit-objects.jsp, and (3) jspx/textRotate.jspx in examples/jsp2/, as demonstrated via script in a request to snp/snoop.jsp. NOTE: other XSS issues in the manager were simultaneously reported, but these require admin access and do not cross privilege boundaries.	4.1.32 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} 5.5.7 Affected by 0 other vulnerabilities.
VCID-gte7-xda1-aaas Aliases: CVE-2005-3510 GHSA-8f4w-jwqv-5cxc	Apache Tomcat 5.5.0 to 5.5.11 allows remote attackers to cause a denial of service (CPU consumption) via a large number of simultaneous requests to list a web directory that has a large number of files.	4.1.32 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} 5.5.13 Affected by 0 other vulnerabilities.
VCID-mtv2-58p5-aaag Aliases: CVE-2008-3271	CVE-2008-3271 tomcat RemoteFilterValve Information disclosure	4.1.32 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} 5.5.1 Affected by 0 other vulnerabilities.
VCID-ugfm-9gaz-aaab Aliases: CVE-2006-3835 GHSA-wfj7-mhr5-pcwq	CVE-2006-3835 tomcat directory listing issue	4.1.32 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} 5.5.13 Affected by 0 other vulnerabilities.
VCID-zpve-n9ex-aaak Aliases: CVE-2006-7196 GHSA-pm78-wxxf-fw98	CVE-2006-7196 tomcat XSS in example webapps	4.1.32 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} 5.5.16 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}

Vulnerabilities fixed by this package (0)

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2025-03-28T13:19:40.360128+00:00	Apache Tomcat Importer	Affected by	VCID-gte7-xda1-aaas	https://tomcat.apache.org/security-4.html	36.0.0
2025-03-28T13:19:40.292194+00:00	Apache Tomcat Importer	Affected by	VCID-3cn3-wbw7-aaaf	https://tomcat.apache.org/security-4.html	36.0.0
2025-03-28T13:19:40.224368+00:00	Apache Tomcat Importer	Affected by	VCID-ugfm-9gaz-aaab	https://tomcat.apache.org/security-4.html	36.0.0
2025-03-28T13:19:40.151236+00:00	Apache Tomcat Importer	Affected by	VCID-zpve-n9ex-aaak	https://tomcat.apache.org/security-4.html	36.0.0
2025-03-28T13:19:40.091093+00:00	Apache Tomcat Importer	Affected by	VCID-31ma-z76n-aaaa	https://tomcat.apache.org/security-4.html	36.0.0
2025-03-28T13:19:40.037923+00:00	Apache Tomcat Importer	Affected by	VCID-mtv2-58p5-aaag	https://tomcat.apache.org/security-4.html	36.0.0
2024-09-18T08:17:50.237384+00:00	Apache Tomcat Importer	Affected by	VCID-gte7-xda1-aaas	https://tomcat.apache.org/security-4.html	34.0.1
2024-09-18T08:17:50.170759+00:00	Apache Tomcat Importer	Affected by	VCID-3cn3-wbw7-aaaf	https://tomcat.apache.org/security-4.html	34.0.1
2024-09-18T08:17:50.101915+00:00	Apache Tomcat Importer	Affected by	VCID-ugfm-9gaz-aaab	https://tomcat.apache.org/security-4.html	34.0.1
2024-09-18T08:17:50.035883+00:00	Apache Tomcat Importer	Affected by	VCID-zpve-n9ex-aaak	https://tomcat.apache.org/security-4.html	34.0.1
2024-09-18T08:17:49.976608+00:00	Apache Tomcat Importer	Affected by	VCID-31ma-z76n-aaaa	https://tomcat.apache.org/security-4.html	34.0.1
2024-09-18T08:17:49.914910+00:00	Apache Tomcat Importer	Affected by	VCID-mtv2-58p5-aaag	https://tomcat.apache.org/security-4.html	34.0.1
2024-01-04T02:15:53.305377+00:00	Apache Tomcat Importer	Affected by	VCID-gte7-xda1-aaas	https://tomcat.apache.org/security-4.html	34.0.0rc1
2024-01-04T02:15:53.236682+00:00	Apache Tomcat Importer	Affected by	VCID-3cn3-wbw7-aaaf	https://tomcat.apache.org/security-4.html	34.0.0rc1
2024-01-04T02:15:53.169674+00:00	Apache Tomcat Importer	Affected by	VCID-ugfm-9gaz-aaab	https://tomcat.apache.org/security-4.html	34.0.0rc1
2024-01-04T02:15:53.101456+00:00	Apache Tomcat Importer	Affected by	VCID-zpve-n9ex-aaak	https://tomcat.apache.org/security-4.html	34.0.0rc1
2024-01-04T02:15:53.043929+00:00	Apache Tomcat Importer	Affected by	VCID-31ma-z76n-aaaa	https://tomcat.apache.org/security-4.html	34.0.0rc1
2024-01-04T02:15:52.996792+00:00	Apache Tomcat Importer	Affected by	VCID-mtv2-58p5-aaag	https://tomcat.apache.org/security-4.html	34.0.0rc1