VulnerableCode Package Details - pkg:apache/tomcat@5.5.27

Search for packages

Package details: pkg:apache/tomcat@5.5.27

Essentials
History (24)

purl	pkg:apache/tomcat@5.5.27

Next non-vulnerable version	5.5.30
Latest non-vulnerable version	11.0.8
Risk	10.0

Vulnerabilities affecting this package (5)

Vulnerability	Summary	Fixed by
VCID-14qy-gggs-aaaa Aliases: CVE-2009-0783 GHSA-hhjg-g8xq-hhr3	CVE-2009-0783 tomcat XML parser information disclosure	5.5.28 Affected by 4 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 6.0.20 Affected by 4 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-1um3-jpu8-aaaj Aliases: CVE-2009-0033 GHSA-5cw4-ggx9-36vg	CVE-2009-0033 tomcat6 Denial-Of-Service with AJP connection	5.5.28 Affected by 4 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 6.0.20 Affected by 4 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-chav-tp7d-aaam Aliases: CVE-2008-5515 GHSA-9737-qmgc-hfr9	Directory Traversal in Apache Tomcat	5.5.28 Affected by 4 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 6.0.20 Affected by 4 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-u6b5-d1yp-aaah Aliases: CVE-2009-0580 GHSA-w227-xcfx-3pj8	CVE-2009-0580 tomcat6 Information disclosure in authentication classes	5.5.28 Affected by 4 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 6.0.20 Affected by 4 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-zte6-dz3c-aaan Aliases: CVE-2009-0781 GHSA-j788-fx57-99wp	CVE-2009-0781 tomcat: XSS in Apache Tomcat calendar application	5.5.28 Affected by 4 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 6.0.20 Affected by 4 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}

Vulnerabilities fixed by this package (3)

Vulnerability	Summary	Aliases
VCID-22we-qr8x-aaad	CVE-2008-2370 tomcat RequestDispatcher information disclosure vulnerability	CVE-2008-2370 GHSA-m8h8-6rvg-f4mg
VCID-nwsx-6pj2-aaap	CVE-2008-1947 Tomcat host manager xss - name field	CVE-2008-1947 GHSA-f98p-9pp6-7q6c
VCID-w2az-ahw2-aaah	CVE-2008-1232 tomcat: Cross-Site-Scripting enabled by sendError call	CVE-2008-1232 GHSA-q74x-qqhr-f8rx

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2025-03-28T13:19:37.296755+00:00	Apache Tomcat Importer	Fixing	VCID-22we-qr8x-aaad	https://tomcat.apache.org/security-5.html	36.0.0
2025-03-28T13:19:37.245590+00:00	Apache Tomcat Importer	Fixing	VCID-nwsx-6pj2-aaap	https://tomcat.apache.org/security-5.html	36.0.0
2025-03-28T13:19:37.193707+00:00	Apache Tomcat Importer	Fixing	VCID-w2az-ahw2-aaah	https://tomcat.apache.org/security-5.html	36.0.0
2025-03-28T13:19:37.135567+00:00	Apache Tomcat Importer	Affected by	VCID-14qy-gggs-aaaa	https://tomcat.apache.org/security-5.html	36.0.0
2025-03-28T13:19:37.082382+00:00	Apache Tomcat Importer	Affected by	VCID-zte6-dz3c-aaan	https://tomcat.apache.org/security-5.html	36.0.0
2025-03-28T13:19:37.016327+00:00	Apache Tomcat Importer	Affected by	VCID-u6b5-d1yp-aaah	https://tomcat.apache.org/security-5.html	36.0.0
2025-03-28T13:19:36.964327+00:00	Apache Tomcat Importer	Affected by	VCID-1um3-jpu8-aaaj	https://tomcat.apache.org/security-5.html	36.0.0
2025-03-28T13:19:36.909534+00:00	Apache Tomcat Importer	Affected by	VCID-chav-tp7d-aaam	https://tomcat.apache.org/security-5.html	36.0.0
2024-09-18T08:17:47.227055+00:00	Apache Tomcat Importer	Fixing	VCID-22we-qr8x-aaad	https://tomcat.apache.org/security-5.html	34.0.1
2024-09-18T08:17:47.175407+00:00	Apache Tomcat Importer	Fixing	VCID-nwsx-6pj2-aaap	https://tomcat.apache.org/security-5.html	34.0.1
2024-09-18T08:17:47.122359+00:00	Apache Tomcat Importer	Fixing	VCID-w2az-ahw2-aaah	https://tomcat.apache.org/security-5.html	34.0.1
2024-09-18T08:17:47.055141+00:00	Apache Tomcat Importer	Affected by	VCID-14qy-gggs-aaaa	https://tomcat.apache.org/security-5.html	34.0.1
2024-09-18T08:17:46.999173+00:00	Apache Tomcat Importer	Affected by	VCID-zte6-dz3c-aaan	https://tomcat.apache.org/security-5.html	34.0.1
2024-09-18T08:17:46.947730+00:00	Apache Tomcat Importer	Affected by	VCID-u6b5-d1yp-aaah	https://tomcat.apache.org/security-5.html	34.0.1
2024-09-18T08:17:46.896233+00:00	Apache Tomcat Importer	Affected by	VCID-1um3-jpu8-aaaj	https://tomcat.apache.org/security-5.html	34.0.1
2024-09-18T08:17:46.844589+00:00	Apache Tomcat Importer	Affected by	VCID-chav-tp7d-aaam	https://tomcat.apache.org/security-5.html	34.0.1
2024-01-04T02:15:50.337509+00:00	Apache Tomcat Importer	Fixing	VCID-22we-qr8x-aaad	https://tomcat.apache.org/security-5.html	34.0.0rc1
2024-01-04T02:15:50.285698+00:00	Apache Tomcat Importer	Fixing	VCID-nwsx-6pj2-aaap	https://tomcat.apache.org/security-5.html	34.0.0rc1
2024-01-04T02:15:50.231185+00:00	Apache Tomcat Importer	Fixing	VCID-w2az-ahw2-aaah	https://tomcat.apache.org/security-5.html	34.0.0rc1
2024-01-04T02:15:50.169353+00:00	Apache Tomcat Importer	Affected by	VCID-14qy-gggs-aaaa	https://tomcat.apache.org/security-5.html	34.0.0rc1
2024-01-04T02:15:50.113674+00:00	Apache Tomcat Importer	Affected by	VCID-zte6-dz3c-aaan	https://tomcat.apache.org/security-5.html	34.0.0rc1
2024-01-04T02:15:50.060178+00:00	Apache Tomcat Importer	Affected by	VCID-u6b5-d1yp-aaah	https://tomcat.apache.org/security-5.html	34.0.0rc1
2024-01-04T02:15:50.006739+00:00	Apache Tomcat Importer	Affected by	VCID-1um3-jpu8-aaaj	https://tomcat.apache.org/security-5.html	34.0.0rc1
2024-01-04T02:15:49.952415+00:00	Apache Tomcat Importer	Affected by	VCID-chav-tp7d-aaam	https://tomcat.apache.org/security-5.html	34.0.0rc1