Search for packages
| purl | pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@10.1.27 |
| Tags | Ghost |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-rcr4-rbsk-myej
Aliases: CVE-2024-52317 GHSA-qvf5-hvjx-wm27 |
Apache Tomcat Request and/or response mix-up Incorrect object re-cycling and re-use vulnerability in Apache Tomcat. Incorrect recycling of the request and response used by HTTP/2 requests could lead to request and/or response mix-up between users. This issue affects Apache Tomcat: from 11.0.0-M23 through 11.0.0-M26, from 10.1.27 through 10.1.30, from 9.0.92 through 9.0.95. Users are recommended to upgrade to version 11.0.0, 10.1.31 or 9.0.96, which fixes the issue. |
Affected by 3 other vulnerabilities. Affected by 5 other vulnerabilities. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| This package is not known to fix vulnerabilities. | ||
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2025-07-03T13:57:26.853972+00:00 | GitLab Importer | Affected by | VCID-rcr4-rbsk-myej | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2024-52317.yml | 36.1.3 |
| 2025-07-01T14:35:51.238200+00:00 | GHSA Importer | Affected by | VCID-rcr4-rbsk-myej | https://github.com/advisories/GHSA-qvf5-hvjx-wm27 | 36.1.3 |