Search for packages
| purl | pkg:apache/tomcat@5.5.28 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-9hhz-11ph-aaan
Aliases: CVE-2009-3548 |
The Windows installer for Apache Tomcat 6.0.0 through 6.0.20, 5.5.0 through 5.5.28, and possibly earlier versions uses a blank default password for the administrative user, which allows remote attackers to gain privileges. |
Affected by 3 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-kg1r-u6pn-aaak
Aliases: CVE-2009-2902 GHSA-8wch-9gcg-v2pr |
CVE-2009-2902 tomcat: unexpected file deletion in work directory |
Affected by 3 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-x2d7-89h7-aaac
Aliases: CVE-2009-2693 GHSA-ggx9-4728-588r |
Directory traversal vulnerability in Apache Tomcat 5.5.0 through 5.5.28 and 6.0.0 through 6.0.20 allows remote attackers to create or overwrite arbitrary files via a .. (dot dot) in an entry in a WAR file, as demonstrated by a ../../bin/catalina.bat entry. |
Affected by 3 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-z4zw-kc9e-aaas
Aliases: CVE-2009-2901 GHSA-hjfh-7c4v-7q8h |
CVE-2009-2901 tomcat: insecure partial deploy after failed undeploy |
Affected by 3 other vulnerabilities. Affected by 0 other vulnerabilities. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| VCID-14qy-gggs-aaaa | CVE-2009-0783 tomcat XML parser information disclosure |
CVE-2009-0783
GHSA-hhjg-g8xq-hhr3 |
| VCID-1um3-jpu8-aaaj | CVE-2009-0033 tomcat6 Denial-Of-Service with AJP connection |
CVE-2009-0033
GHSA-5cw4-ggx9-36vg |
| VCID-chav-tp7d-aaam | Directory Traversal in Apache Tomcat |
CVE-2008-5515
GHSA-9737-qmgc-hfr9 |
| VCID-u6b5-d1yp-aaah | CVE-2009-0580 tomcat6 Information disclosure in authentication classes |
CVE-2009-0580
GHSA-w227-xcfx-3pj8 |
| VCID-zte6-dz3c-aaan | CVE-2009-0781 tomcat: XSS in Apache Tomcat calendar application |
CVE-2009-0781
GHSA-j788-fx57-99wp |
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2025-03-28T13:19:37.140453+00:00 | Apache Tomcat Importer | Fixing | VCID-14qy-gggs-aaaa | https://tomcat.apache.org/security-5.html | 36.0.0 |
| 2025-03-28T13:19:37.087265+00:00 | Apache Tomcat Importer | Fixing | VCID-zte6-dz3c-aaan | https://tomcat.apache.org/security-5.html | 36.0.0 |
| 2025-03-28T13:19:37.021224+00:00 | Apache Tomcat Importer | Fixing | VCID-u6b5-d1yp-aaah | https://tomcat.apache.org/security-5.html | 36.0.0 |
| 2025-03-28T13:19:36.969255+00:00 | Apache Tomcat Importer | Fixing | VCID-1um3-jpu8-aaaj | https://tomcat.apache.org/security-5.html | 36.0.0 |
| 2025-03-28T13:19:36.914362+00:00 | Apache Tomcat Importer | Fixing | VCID-chav-tp7d-aaam | https://tomcat.apache.org/security-5.html | 36.0.0 |
| 2025-03-28T13:19:36.855687+00:00 | Apache Tomcat Importer | Affected by | VCID-9hhz-11ph-aaan | https://tomcat.apache.org/security-5.html | 36.0.0 |
| 2025-03-28T13:19:36.804079+00:00 | Apache Tomcat Importer | Affected by | VCID-kg1r-u6pn-aaak | https://tomcat.apache.org/security-5.html | 36.0.0 |
| 2025-03-28T13:19:36.752478+00:00 | Apache Tomcat Importer | Affected by | VCID-z4zw-kc9e-aaas | https://tomcat.apache.org/security-5.html | 36.0.0 |
| 2025-03-28T13:19:36.696225+00:00 | Apache Tomcat Importer | Affected by | VCID-x2d7-89h7-aaac | https://tomcat.apache.org/security-5.html | 36.0.0 |
| 2024-09-18T08:17:47.060015+00:00 | Apache Tomcat Importer | Fixing | VCID-14qy-gggs-aaaa | https://tomcat.apache.org/security-5.html | 34.0.1 |
| 2024-09-18T08:17:47.003823+00:00 | Apache Tomcat Importer | Fixing | VCID-zte6-dz3c-aaan | https://tomcat.apache.org/security-5.html | 34.0.1 |
| 2024-09-18T08:17:46.952370+00:00 | Apache Tomcat Importer | Fixing | VCID-u6b5-d1yp-aaah | https://tomcat.apache.org/security-5.html | 34.0.1 |
| 2024-09-18T08:17:46.900895+00:00 | Apache Tomcat Importer | Fixing | VCID-1um3-jpu8-aaaj | https://tomcat.apache.org/security-5.html | 34.0.1 |
| 2024-09-18T08:17:46.849362+00:00 | Apache Tomcat Importer | Fixing | VCID-chav-tp7d-aaam | https://tomcat.apache.org/security-5.html | 34.0.1 |
| 2024-09-18T08:17:46.793614+00:00 | Apache Tomcat Importer | Affected by | VCID-9hhz-11ph-aaan | https://tomcat.apache.org/security-5.html | 34.0.1 |
| 2024-09-18T08:17:46.745307+00:00 | Apache Tomcat Importer | Affected by | VCID-kg1r-u6pn-aaak | https://tomcat.apache.org/security-5.html | 34.0.1 |
| 2024-09-18T08:17:46.696542+00:00 | Apache Tomcat Importer | Affected by | VCID-z4zw-kc9e-aaas | https://tomcat.apache.org/security-5.html | 34.0.1 |
| 2024-09-18T08:17:46.647298+00:00 | Apache Tomcat Importer | Affected by | VCID-x2d7-89h7-aaac | https://tomcat.apache.org/security-5.html | 34.0.1 |
| 2024-01-04T02:15:50.174004+00:00 | Apache Tomcat Importer | Fixing | VCID-14qy-gggs-aaaa | https://tomcat.apache.org/security-5.html | 34.0.0rc1 |
| 2024-01-04T02:15:50.118407+00:00 | Apache Tomcat Importer | Fixing | VCID-zte6-dz3c-aaan | https://tomcat.apache.org/security-5.html | 34.0.0rc1 |
| 2024-01-04T02:15:50.064809+00:00 | Apache Tomcat Importer | Fixing | VCID-u6b5-d1yp-aaah | https://tomcat.apache.org/security-5.html | 34.0.0rc1 |
| 2024-01-04T02:15:50.011358+00:00 | Apache Tomcat Importer | Fixing | VCID-1um3-jpu8-aaaj | https://tomcat.apache.org/security-5.html | 34.0.0rc1 |
| 2024-01-04T02:15:49.957047+00:00 | Apache Tomcat Importer | Fixing | VCID-chav-tp7d-aaam | https://tomcat.apache.org/security-5.html | 34.0.0rc1 |
| 2024-01-04T02:15:49.898607+00:00 | Apache Tomcat Importer | Affected by | VCID-9hhz-11ph-aaan | https://tomcat.apache.org/security-5.html | 34.0.0rc1 |
| 2024-01-04T02:15:49.848228+00:00 | Apache Tomcat Importer | Affected by | VCID-kg1r-u6pn-aaak | https://tomcat.apache.org/security-5.html | 34.0.0rc1 |
| 2024-01-04T02:15:49.796823+00:00 | Apache Tomcat Importer | Affected by | VCID-z4zw-kc9e-aaas | https://tomcat.apache.org/security-5.html | 34.0.0rc1 |
| 2024-01-04T02:15:49.745871+00:00 | Apache Tomcat Importer | Affected by | VCID-x2d7-89h7-aaac | https://tomcat.apache.org/security-5.html | 34.0.0rc1 |