Search for packages
Package details: pkg:apache/tomcat@8.0.9
purl pkg:apache/tomcat@8.0.9
Vulnerabilities affecting this package (0)
Vulnerability Summary Fixed by
This package is not known to be affected by vulnerabilities.
Vulnerabilities fixed by this package (2)
Vulnerability Summary Aliases
VCID-5wj3-qn6v-aaab Apache Tomcat 6.x before 6.0.44, 7.x before 7.0.55, and 8.x before 8.0.9 does not properly handle cases where an HTTP response occurs before finishing the reading of an entire request body, which allows remote attackers to cause a denial of service (thread consumption) via a series of aborted upload attempts. CVE-2014-0230
GHSA-pxcx-cxq8-4mmw
VCID-y7g9-rfw9-aaaa java/org/apache/coyote/http11/filters/ChunkedInputFilter.java in Apache Tomcat 6.x before 6.0.42, 7.x before 7.0.55, and 8.x before 8.0.9 does not properly handle attempts to continue reading data after an error has occurred, which allows remote attackers to conduct HTTP request smuggling attacks or cause a denial of service (resource consumption) by streaming data with malformed chunked transfer coding. CVE-2014-0227
GHSA-42j3-498q-m6vp

Date Actor Action Vulnerability Source VulnerableCode Version
2025-03-28T13:19:27.104458+00:00 Apache Tomcat Importer Fixing VCID-5wj3-qn6v-aaab https://tomcat.apache.org/security-8.html 36.0.0
2025-03-28T13:19:27.009150+00:00 Apache Tomcat Importer Fixing VCID-y7g9-rfw9-aaaa https://tomcat.apache.org/security-8.html 36.0.0
2024-09-18T08:17:37.370998+00:00 Apache Tomcat Importer Fixing VCID-5wj3-qn6v-aaab https://tomcat.apache.org/security-8.html 34.0.1
2024-09-18T08:17:37.295498+00:00 Apache Tomcat Importer Fixing VCID-y7g9-rfw9-aaaa https://tomcat.apache.org/security-8.html 34.0.1
2024-01-04T02:15:40.714088+00:00 Apache Tomcat Importer Fixing VCID-5wj3-qn6v-aaab https://tomcat.apache.org/security-8.html 34.0.0rc1
2024-01-04T02:15:40.648704+00:00 Apache Tomcat Importer Fixing VCID-y7g9-rfw9-aaaa https://tomcat.apache.org/security-8.html 34.0.0rc1