VulnerableCode Package Details - pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@9.0.0.M20

Search for packages

Package details: pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@9.0.0.M20

Essentials
History (121)

purl	pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@9.0.0.M20

Next non-vulnerable version	9.0.104
Latest non-vulnerable version	11.0.8
Risk	10.0

Vulnerabilities affecting this package (16)

Vulnerability	Summary	Fixed by
VCID-2c6h-srga-aaap Aliases: CVE-2023-24998 GHSA-hfrx-6qgj-fp6c	Apache Commons FileUpload denial of service vulnerability	9.0.71 Affected by 10 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 10.1.5 Affected by 9 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 11.0.0-M5 Affected by 11 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-2vk8-jkgn-aaap Aliases: CVE-2019-0232 GHSA-8vmx-qmch-mpqg	High severity vulnerability that affects org.apache.tomcat.embed:tomcat-embed-core	9.0.17 Affected by 29 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-417x-h7g6-aaar Aliases: GHSA-r53m-pfr5-7v87	Moderate severity vulnerability that affects org.apache.tomcat.embed:tomcat-embed-core	9.0.16 Affected by 31 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-7sta-sz5f-aaap Aliases: CVE-2023-28708 GHSA-2c9m-w27f-53rm	Apache Tomcat vulnerable to Unprotected Transport of Credentials	9.0.72 Affected by 9 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 10.1.6 Affected by 8 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 11.0.0 Affected by 8 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-7tp8-ektn-aaan Aliases: CVE-2022-42252 GHSA-p22x-g9px-3945	Apache Tomcat may reject request containing invalid Content-Length header	9.0.68 Affected by 10 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 10.0.27 Affected by 2 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 10.1.1 Affected by 10 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-7uaw-6w3w-aaar Aliases: CVE-2024-24549 GHSA-7w75-32cg-r6g2	Denial of Service due to improper input validation vulnerability for HTTP/2 requests in Apache Tomcat. When processing an HTTP/2 request, if the request exceeded any of the configured limits for headers, the associated HTTP/2 stream was not reset until after all of the headers had been processed.This issue affects Apache Tomcat: from 11.0.0-M1 through 11.0.0-M16, from 10.1.0-M1 through 10.1.18, from 9.0.0-M1 through 9.0.85, from 8.5.0 through 8.5.98. Users are recommended to upgrade to version 11.0.0-M17, 10.1.19, 9.0.86 or 8.5.99 which fix the issue.	9.0.86 Affected by 3 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 10.1.19 Affected by 3 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 11.0.0-M17 Affected by 4 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-983g-2nuz-aaaa Aliases: CVE-2019-10072 GHSA-q4hg-rmq2-52q9	Improper Locking in Apache Tomcat	9.0.20 Affected by 27 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-9pu2-we8w-aaar Aliases: CVE-2018-1305 GHSA-jx6h-3fjx-cgv5	Moderate severity vulnerability that affects org.apache.tomcat.embed:tomcat-embed-core	9.0.5 Affected by 37 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-b2z1-15m4-aaac Aliases: CVE-2018-1336 GHSA-m59c-jpc8-m2x4	In Apache Tomcat there is an improper handing of overflow in the UTF-8 decoder	9.0.8 Affected by 36 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-cp4z-y57s-aaah Aliases: CVE-2018-8014 GHSA-r4x2-3cq5-hqvp	The defaults settings for the CORS filter provided in Apache Tomcat are insecure and enable 'supportsCredentials' for all origins	9.0.9 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} 9.0.10 Affected by 33 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-e318-2aad-aaag Aliases: CVE-2023-41080 GHSA-q3mw-pvr8-9ggc	URL Redirection to Untrusted Site ('Open Redirect') vulnerability in FORM authentication feature Apache Tomcat.This issue affects Apache Tomcat: from 11.0.0-M1 through 11.0.0-M10, from 10.1.0-M1 through 10.0.12, from 9.0.0-M1 through 9.0.79 and from 8.5.0 through 8.5.92. The vulnerability is limited to the ROOT (default) web application.	9.0.80 Affected by 9 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 10.1.13 Affected by 8 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 11.0.0-M11 Affected by 8 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 11.0.1 Affected by 2 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-f68z-z5n7-aaae Aliases: CVE-2023-42795 GHSA-g8pj-r55q-5c2v	Incomplete Cleanup vulnerability in Apache Tomcat.When recycling various internal objects in Apache Tomcat from 11.0.0-M1 through 11.0.0-M11, from 10.1.0-M1 through 10.1.13, from 9.0.0-M1 through 9.0.80 and from 8.5.0 through 8.5.93, an error could cause Tomcat to skip some parts of the recycling process leading to information leaking from the current request/response to the next. Users are recommended to upgrade to version 11.0.0-M12 onwards, 10.1.14 onwards, 9.0.81 onwards or 8.5.94 onwards, which fixes the issue.	9.0.81 Affected by 7 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 9.0.82 Affected by 5 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 10.1.14 Affected by 7 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 10.1.15 Affected by 5 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 11.0.0-M12 Affected by 5 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 11.0.1 Affected by 2 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-h3d2-7evg-aaac Aliases: CVE-2018-8037 GHSA-6v52-mj5r-7j2m	Moderate severity vulnerability that affects org.apache.tomcat.embed:tomcat-embed-core	9.0.10 Affected by 33 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-pcvp-wv2z-aaas Aliases: CVE-2023-46589 GHSA-fccv-jmmp-qg76	Improper Input Validation vulnerability in Apache Tomcat.Tomcat from 11.0.0-M1 through 11.0.0-M10, from 10.1.0-M1 through 10.1.15, from 9.0.0-M1 through 9.0.82 and from 8.5.0 through 8.5.95 did not correctly parse HTTP trailer headers. A trailer header that exceeded the header size limit could cause Tomcat to treat a single request as multiple requests leading to the possibility of request smuggling when behind a reverse proxy. Users are recommended to upgrade to version 11.0.0-M11 onwards, 10.1.16 onwards, 9.0.83 onwards or 8.5.96 onwards, which fix the issue.	9.0.83 Affected by 4 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 10.1.16 Affected by 4 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 11.0.0-M11 Affected by 8 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 11.0.1 Affected by 2 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-r78u-gre6-aaaj Aliases: CVE-2023-45648 GHSA-r6j3-px5g-cq3x	Improper Input Validation vulnerability in Apache Tomcat.Tomcat from 11.0.0-M1 through 11.0.0-M11, from 10.1.0-M1 through 10.1.13, from 9.0.0-M1 through 9.0.81 and from 8.5.0 through 8.5.93 did not correctly parse HTTP trailer headers. A specially crafted, invalid trailer header could cause Tomcat to treat a single request as multiple requests leading to the possibility of request smuggling when behind a reverse proxy. Users are recommended to upgrade to version 11.0.0-M12 onwards, 10.1.14 onwards, 9.0.81 onwards or 8.5.94 onwards, which fix the issue.	9.0.81 Affected by 7 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 9.0.82 Affected by 5 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 10.1.14 Affected by 7 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 10.1.15 Affected by 5 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 11.0.0-M12 Affected by 5 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 11.0.1 Affected by 2 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-yktk-48uz-aaac Aliases: CVE-2024-34750 GHSA-wm9w-rjj3-j356	Improper Handling of Exceptional Conditions, Uncontrolled Resource Consumption vulnerability in Apache Tomcat. When processing an HTTP/2 stream, Tomcat did not handle some cases of excessive HTTP headers correctly. This led to a miscounting of active HTTP/2 streams which in turn led to the use of an incorrect infinite timeout which allowed connections to remain open which should have been closed. This issue affects Apache Tomcat: from 11.0.0-M1 through 11.0.0-M20, from 10.1.0-M1 through 10.1.24, from 9.0.0-M1 through 9.0.89. Users are recommended to upgrade to version 11.0.0-M21, 10.1.25 or 9.0.90, which fixes the issue.	9.0.90 Affected by 2 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 10.1.25 Affected by 2 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 11.0.0-M21 Affected by 3 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}

Vulnerabilities fixed by this package (0)

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2025-06-20T16:55:11.000675+00:00	GitLab Importer	Affected by	VCID-7uaw-6w3w-aaar	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2024-24549.yml	36.1.3
2025-06-20T16:40:53.692791+00:00	GitLab Importer	Affected by	VCID-e318-2aad-aaag	None	36.1.3
2025-06-20T16:25:29.766567+00:00	GitLab Importer	Affected by	VCID-7sta-sz5f-aaap	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2023-28708.yml	36.1.3
2025-06-20T16:25:27.284148+00:00	GitLab Importer	Affected by	VCID-7sta-sz5f-aaap	None	36.1.3
2025-06-20T14:28:12.246995+00:00	GitLab Importer	Affected by	VCID-983g-2nuz-aaaa	None	36.1.3
2025-06-20T14:28:11.724353+00:00	GitLab Importer	Affected by	VCID-983g-2nuz-aaaa	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2019-10072.yml	36.1.3
2025-06-03T23:32:02.294285+00:00	GitLab Importer	Affected by	VCID-7uaw-6w3w-aaar	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2024-24549.yml	36.1.0
2025-06-03T23:19:31.353031+00:00	GitLab Importer	Affected by	VCID-e318-2aad-aaag	None	36.1.0
2025-06-03T23:04:52.006270+00:00	GitLab Importer	Affected by	VCID-7sta-sz5f-aaap	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2023-28708.yml	36.1.0
2025-06-03T23:04:49.821650+00:00	GitLab Importer	Affected by	VCID-7sta-sz5f-aaap	None	36.1.0
2025-06-03T21:12:08.188582+00:00	GitLab Importer	Affected by	VCID-983g-2nuz-aaaa	None	36.1.0
2025-06-03T21:12:07.734018+00:00	GitLab Importer	Affected by	VCID-983g-2nuz-aaaa	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2019-10072.yml	36.1.0
2025-06-02T23:29:53.118966+00:00	GitLab Importer	Affected by	VCID-7uaw-6w3w-aaar	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2024-24549.yml	36.1.2
2025-06-02T23:16:35.925253+00:00	GitLab Importer	Affected by	VCID-e318-2aad-aaag	None	36.1.2
2025-06-02T23:01:29.683004+00:00	GitLab Importer	Affected by	VCID-7sta-sz5f-aaap	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2023-28708.yml	36.1.2
2025-06-02T23:01:27.334053+00:00	GitLab Importer	Affected by	VCID-7sta-sz5f-aaap	None	36.1.2
2025-06-02T20:52:45.869498+00:00	GitLab Importer	Affected by	VCID-983g-2nuz-aaaa	None	36.1.2
2025-06-02T20:52:45.340767+00:00	GitLab Importer	Affected by	VCID-983g-2nuz-aaaa	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2019-10072.yml	36.1.2
2025-04-03T21:59:43.448699+00:00	GitLab Importer	Affected by	VCID-7uaw-6w3w-aaar	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2024-24549.yml	36.0.0
2025-04-03T21:31:07.796228+00:00	GitLab Importer	Affected by	VCID-e318-2aad-aaag	None	36.0.0
2025-04-03T20:59:10.646060+00:00	GitLab Importer	Affected by	VCID-7sta-sz5f-aaap	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2023-28708.yml	36.0.0
2025-04-03T20:59:05.062844+00:00	GitLab Importer	Affected by	VCID-7sta-sz5f-aaap	None	36.0.0
2025-04-03T17:19:17.566921+00:00	GitLab Importer	Affected by	VCID-983g-2nuz-aaaa	None	36.0.0
2025-04-03T17:19:16.461879+00:00	GitLab Importer	Affected by	VCID-983g-2nuz-aaaa	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2019-10072.yml	36.0.0
2025-02-18T07:08:50.207022+00:00	GitLab Importer	Affected by	VCID-983g-2nuz-aaaa	None	35.1.0
2025-02-18T07:08:49.668132+00:00	GitLab Importer	Affected by	VCID-983g-2nuz-aaaa	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2019-10072.yml	35.1.0
2025-02-18T03:48:10.310786+00:00	GitLab Importer	Affected by	VCID-7uaw-6w3w-aaar	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2024-24549.yml	35.1.0
2025-02-18T03:36:19.527377+00:00	GitLab Importer	Affected by	VCID-e318-2aad-aaag	None	35.1.0
2025-02-18T03:15:37.911638+00:00	GitLab Importer	Affected by	VCID-7sta-sz5f-aaap	None	35.1.0
2025-02-18T03:15:33.553515+00:00	GitLab Importer	Affected by	VCID-7sta-sz5f-aaap	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2023-28708.yml	35.1.0
2024-11-21T02:53:22.640517+00:00	GitLab Importer	Affected by	VCID-983g-2nuz-aaaa	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2019-10072.yml	35.0.0
2024-11-21T01:03:02.437769+00:00	GitLab Importer	Affected by	VCID-7uaw-6w3w-aaar	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2024-24549.yml	35.0.0
2024-11-21T00:44:40.852852+00:00	GitLab Importer	Affected by	VCID-7sta-sz5f-aaap	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2023-28708.yml	35.0.0
2024-11-19T02:43:19.502514+00:00	GitLab Importer	Affected by	VCID-983g-2nuz-aaaa	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2019-10072.yml	34.3.2
2024-11-19T00:52:00.075331+00:00	GitLab Importer	Affected by	VCID-7uaw-6w3w-aaar	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2024-24549.yml	34.3.2
2024-11-19T00:30:35.852927+00:00	GitLab Importer	Affected by	VCID-7sta-sz5f-aaap	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2023-28708.yml	34.3.2
2024-10-08T03:11:42.055663+00:00	GitLab Importer	Affected by	VCID-983g-2nuz-aaaa	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2019-10072.yml	34.0.2
2024-10-08T01:23:06.509796+00:00	GitLab Importer	Affected by	VCID-7uaw-6w3w-aaar	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2024-24549.yml	34.0.2
2024-10-08T01:12:43.568040+00:00	GitLab Importer	Affected by	VCID-7sta-sz5f-aaap	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2023-28708.yml	34.0.2
2024-10-07T22:14:43.928575+00:00	GHSA Importer	Affected by	VCID-yktk-48uz-aaac	https://github.com/advisories/GHSA-wm9w-rjj3-j356	34.0.2
2024-10-07T22:05:11.001895+00:00	GHSA Importer	Affected by	VCID-7uaw-6w3w-aaar	https://github.com/advisories/GHSA-7w75-32cg-r6g2	34.0.2
2024-10-07T21:46:05.774002+00:00	GHSA Importer	Affected by	VCID-pcvp-wv2z-aaas	https://github.com/advisories/GHSA-fccv-jmmp-qg76	34.0.2
2024-10-07T21:45:06.352240+00:00	GHSA Importer	Affected by	VCID-r78u-gre6-aaaj	https://github.com/advisories/GHSA-r6j3-px5g-cq3x	34.0.2
2024-10-07T21:43:46.027428+00:00	GHSA Importer	Affected by	VCID-f68z-z5n7-aaae	https://github.com/advisories/GHSA-g8pj-r55q-5c2v	34.0.2
2024-10-07T21:42:32.344298+00:00	GHSA Importer	Affected by	VCID-e318-2aad-aaag	https://github.com/advisories/GHSA-q3mw-pvr8-9ggc	34.0.2
2024-10-07T21:09:52.779603+00:00	GHSA Importer	Affected by	VCID-2c6h-srga-aaap	https://github.com/advisories/GHSA-hfrx-6qgj-fp6c	34.0.2
2024-10-07T20:56:02.111332+00:00	GHSA Importer	Affected by	VCID-7tp8-ektn-aaan	https://github.com/advisories/GHSA-p22x-g9px-3945	34.0.2
2024-10-07T17:55:22.654972+00:00	GHSA Importer	Affected by	VCID-983g-2nuz-aaaa	https://github.com/advisories/GHSA-q4hg-rmq2-52q9	34.0.2
2024-10-07T17:47:12.091103+00:00	GHSA Importer	Affected by	VCID-2vk8-jkgn-aaap	https://github.com/advisories/GHSA-8vmx-qmch-mpqg	34.0.2
2024-10-07T17:45:39.515884+00:00	GHSA Importer	Affected by	VCID-h3d2-7evg-aaac	https://github.com/advisories/GHSA-6v52-mj5r-7j2m	34.0.2
2024-10-07T17:45:31.539940+00:00	GHSA Importer	Affected by	VCID-cp4z-y57s-aaah	https://github.com/advisories/GHSA-r4x2-3cq5-hqvp	34.0.2
2024-10-07T17:40:23.518998+00:00	GHSA Importer	Affected by	VCID-b2z1-15m4-aaac	https://github.com/advisories/GHSA-m59c-jpc8-m2x4	34.0.2
2024-10-07T17:40:12.421897+00:00	GHSA Importer	Affected by	VCID-9pu2-we8w-aaar	https://github.com/advisories/GHSA-jx6h-3fjx-cgv5	34.0.2
2024-10-07T16:28:28.156443+00:00	GHSA Importer	Affected by	VCID-417x-h7g6-aaar	https://github.com/advisories/GHSA-r53m-pfr5-7v87	34.0.2
2024-09-23T03:08:08.910914+00:00	GitLab Importer	Affected by	VCID-983g-2nuz-aaaa	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2019-10072.yml	34.0.1
2024-09-23T01:28:09.228190+00:00	GitLab Importer	Affected by	VCID-7uaw-6w3w-aaar	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2024-24549.yml	34.0.1
2024-09-23T01:19:35.333150+00:00	GitLab Importer	Affected by	VCID-7sta-sz5f-aaap	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2023-28708.yml	34.0.1
2024-09-22T22:41:26.446789+00:00	GHSA Importer	Affected by	VCID-yktk-48uz-aaac	https://github.com/advisories/GHSA-wm9w-rjj3-j356	34.0.1
2024-09-22T22:27:07.166515+00:00	GHSA Importer	Affected by	VCID-7uaw-6w3w-aaar	https://github.com/advisories/GHSA-7w75-32cg-r6g2	34.0.1
2024-09-22T22:15:32.809740+00:00	GHSA Importer	Affected by	VCID-pcvp-wv2z-aaas	https://github.com/advisories/GHSA-fccv-jmmp-qg76	34.0.1
2024-09-22T22:14:34.133384+00:00	GHSA Importer	Affected by	VCID-r78u-gre6-aaaj	https://github.com/advisories/GHSA-r6j3-px5g-cq3x	34.0.1
2024-09-22T22:13:17.256766+00:00	GHSA Importer	Affected by	VCID-f68z-z5n7-aaae	https://github.com/advisories/GHSA-g8pj-r55q-5c2v	34.0.1
2024-09-22T22:06:35.019365+00:00	GHSA Importer	Affected by	VCID-e318-2aad-aaag	https://github.com/advisories/GHSA-q3mw-pvr8-9ggc	34.0.1
2024-09-22T21:45:12.756578+00:00	GHSA Importer	Affected by	VCID-2c6h-srga-aaap	https://github.com/advisories/GHSA-hfrx-6qgj-fp6c	34.0.1
2024-09-22T21:33:11.892645+00:00	GHSA Importer	Affected by	VCID-7tp8-ektn-aaan	https://github.com/advisories/GHSA-p22x-g9px-3945	34.0.1
2024-09-22T18:32:14.296505+00:00	GHSA Importer	Affected by	VCID-983g-2nuz-aaaa	https://github.com/advisories/GHSA-q4hg-rmq2-52q9	34.0.1
2024-09-22T18:19:10.670776+00:00	GHSA Importer	Affected by	VCID-2vk8-jkgn-aaap	https://github.com/advisories/GHSA-8vmx-qmch-mpqg	34.0.1
2024-09-22T18:17:41.793963+00:00	GHSA Importer	Affected by	VCID-h3d2-7evg-aaac	https://github.com/advisories/GHSA-6v52-mj5r-7j2m	34.0.1
2024-09-22T18:17:33.310522+00:00	GHSA Importer	Affected by	VCID-cp4z-y57s-aaah	https://github.com/advisories/GHSA-r4x2-3cq5-hqvp	34.0.1
2024-09-22T18:12:09.641288+00:00	GHSA Importer	Affected by	VCID-b2z1-15m4-aaac	https://github.com/advisories/GHSA-m59c-jpc8-m2x4	34.0.1
2024-09-22T18:11:59.059654+00:00	GHSA Importer	Affected by	VCID-9pu2-we8w-aaar	https://github.com/advisories/GHSA-jx6h-3fjx-cgv5	34.0.1
2024-09-22T16:51:39.056627+00:00	GHSA Importer	Affected by	VCID-417x-h7g6-aaar	https://github.com/advisories/GHSA-r53m-pfr5-7v87	34.0.1
2024-05-17T21:14:35.167284+00:00	GHSA Importer	Affected by	VCID-7uaw-6w3w-aaar	https://github.com/advisories/GHSA-7w75-32cg-r6g2	34.0.0rc4
2024-05-17T20:54:42.095548+00:00	GHSA Importer	Affected by	VCID-pcvp-wv2z-aaas	https://github.com/advisories/GHSA-fccv-jmmp-qg76	34.0.0rc4
2024-05-17T20:52:04.263186+00:00	GHSA Importer	Affected by	VCID-r78u-gre6-aaaj	https://github.com/advisories/GHSA-r6j3-px5g-cq3x	34.0.0rc4
2024-05-17T19:42:10.946533+00:00	GHSA Importer	Affected by	VCID-7tp8-ektn-aaan	https://github.com/advisories/GHSA-p22x-g9px-3945	34.0.0rc4
2024-04-24T05:47:02.959182+00:00	GitLab Importer	Affected by	VCID-983g-2nuz-aaaa	None	34.0.0rc4
2024-04-24T05:47:02.395109+00:00	GitLab Importer	Affected by	VCID-983g-2nuz-aaaa	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2019-10072.yml	34.0.0rc4
2024-04-24T03:59:55.628909+00:00	GitLab Importer	Affected by	VCID-7uaw-6w3w-aaar	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2024-24549.yml	34.0.0rc4
2024-04-24T03:51:53.058867+00:00	GitLab Importer	Affected by	VCID-e318-2aad-aaag	None	34.0.0rc4
2024-04-24T03:42:53.553942+00:00	GitLab Importer	Affected by	VCID-7sta-sz5f-aaap	None	34.0.0rc4
2024-04-24T03:42:51.296949+00:00	GitLab Importer	Affected by	VCID-7sta-sz5f-aaap	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2023-28708.yml	34.0.0rc4
2024-04-24T00:49:28.908485+00:00	GHSA Importer	Affected by	VCID-f68z-z5n7-aaae	https://github.com/advisories/GHSA-g8pj-r55q-5c2v	34.0.0rc4
2024-04-24T00:47:08.258077+00:00	GHSA Importer	Affected by	VCID-e318-2aad-aaag	https://github.com/advisories/GHSA-q3mw-pvr8-9ggc	34.0.0rc4
2024-04-24T00:47:03.418046+00:00	GHSA Importer	Affected by	VCID-e318-2aad-aaag	None	34.0.0rc4
2024-04-24T00:04:19.215751+00:00	GHSA Importer	Affected by	VCID-2c6h-srga-aaap	https://github.com/advisories/GHSA-hfrx-6qgj-fp6c	34.0.0rc4
2024-04-23T19:21:02.160116+00:00	GHSA Importer	Affected by	VCID-983g-2nuz-aaaa	None	34.0.0rc4
2024-04-23T19:21:01.826278+00:00	GHSA Importer	Affected by	VCID-983g-2nuz-aaaa	https://github.com/advisories/GHSA-q4hg-rmq2-52q9	34.0.0rc4
2024-04-23T19:18:42.619314+00:00	GHSA Importer	Affected by	VCID-2vk8-jkgn-aaap	https://github.com/advisories/GHSA-8vmx-qmch-mpqg	34.0.0rc4
2024-04-23T19:14:56.756549+00:00	GHSA Importer	Affected by	VCID-h3d2-7evg-aaac	https://github.com/advisories/GHSA-6v52-mj5r-7j2m	34.0.0rc4
2024-04-23T19:14:26.367606+00:00	GHSA Importer	Affected by	VCID-cp4z-y57s-aaah	https://github.com/advisories/GHSA-r4x2-3cq5-hqvp	34.0.0rc4
2024-04-23T19:02:13.986386+00:00	GHSA Importer	Affected by	VCID-b2z1-15m4-aaac	https://github.com/advisories/GHSA-m59c-jpc8-m2x4	34.0.0rc4
2024-04-23T19:01:38.743265+00:00	GHSA Importer	Affected by	VCID-9pu2-we8w-aaar	https://github.com/advisories/GHSA-jx6h-3fjx-cgv5	34.0.0rc4
2024-04-23T17:35:15.055356+00:00	GHSA Importer	Affected by	VCID-417x-h7g6-aaar	https://github.com/advisories/GHSA-r53m-pfr5-7v87	34.0.0rc4
2024-04-23T17:35:14.514011+00:00	GHSA Importer	Affected by	VCID-417x-h7g6-aaar	None	34.0.0rc4
2024-01-10T08:18:03.979956+00:00	GitLab Importer	Affected by	VCID-983g-2nuz-aaaa	None	34.0.0rc2
2024-01-10T08:18:03.423481+00:00	GitLab Importer	Affected by	VCID-983g-2nuz-aaaa	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2019-10072.yml	34.0.0rc2
2024-01-10T06:33:47.382865+00:00	GitLab Importer	Affected by	VCID-e318-2aad-aaag	None	34.0.0rc2
2024-01-10T06:24:19.045653+00:00	GitLab Importer	Affected by	VCID-7sta-sz5f-aaap	None	34.0.0rc2
2024-01-10T06:24:16.853685+00:00	GitLab Importer	Affected by	VCID-7sta-sz5f-aaap	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2023-28708.yml	34.0.0rc2
2024-01-10T03:02:26.012348+00:00	GHSA Importer	Affected by	VCID-pcvp-wv2z-aaas	https://github.com/advisories/GHSA-fccv-jmmp-qg76	34.0.0rc2
2024-01-10T02:59:10.090801+00:00	GHSA Importer	Affected by	VCID-r78u-gre6-aaaj	https://github.com/advisories/GHSA-r6j3-px5g-cq3x	34.0.0rc2
2024-01-10T02:56:05.085872+00:00	GHSA Importer	Affected by	VCID-f68z-z5n7-aaae	https://github.com/advisories/GHSA-g8pj-r55q-5c2v	34.0.0rc2
2024-01-10T02:53:51.483225+00:00	GHSA Importer	Affected by	VCID-e318-2aad-aaag	https://github.com/advisories/GHSA-q3mw-pvr8-9ggc	34.0.0rc2
2024-01-10T02:53:46.925011+00:00	GHSA Importer	Affected by	VCID-e318-2aad-aaag	None	34.0.0rc2
2024-01-09T21:12:28.180627+00:00	GHSA Importer	Affected by	VCID-983g-2nuz-aaaa	None	34.0.0rc2
2024-01-09T21:12:27.803926+00:00	GHSA Importer	Affected by	VCID-983g-2nuz-aaaa	https://github.com/advisories/GHSA-q4hg-rmq2-52q9	34.0.0rc2
2024-01-09T21:09:59.093961+00:00	GHSA Importer	Affected by	VCID-2vk8-jkgn-aaap	https://github.com/advisories/GHSA-8vmx-qmch-mpqg	34.0.0rc2
2024-01-09T21:05:27.679294+00:00	GHSA Importer	Affected by	VCID-h3d2-7evg-aaac	https://github.com/advisories/GHSA-6v52-mj5r-7j2m	34.0.0rc2
2024-01-09T21:04:56.557430+00:00	GHSA Importer	Affected by	VCID-cp4z-y57s-aaah	https://github.com/advisories/GHSA-r4x2-3cq5-hqvp	34.0.0rc2
2024-01-09T20:54:11.001878+00:00	GHSA Importer	Affected by	VCID-b2z1-15m4-aaac	https://github.com/advisories/GHSA-m59c-jpc8-m2x4	34.0.0rc2
2024-01-09T20:53:42.295248+00:00	GHSA Importer	Affected by	VCID-9pu2-we8w-aaar	https://github.com/advisories/GHSA-jx6h-3fjx-cgv5	34.0.0rc2
2024-01-09T19:34:28.681047+00:00	GHSA Importer	Affected by	VCID-417x-h7g6-aaar	https://github.com/advisories/GHSA-r53m-pfr5-7v87	34.0.0rc2
2024-01-09T19:34:28.133508+00:00	GHSA Importer	Affected by	VCID-417x-h7g6-aaar	None	34.0.0rc2
2024-01-04T01:03:24.378352+00:00	GitLab Importer	Affected by	VCID-983g-2nuz-aaaa	None	34.0.0rc1
2024-01-04T01:03:23.830044+00:00	GitLab Importer	Affected by	VCID-983g-2nuz-aaaa	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2019-10072.yml	34.0.0rc1
2024-01-03T23:20:05.775765+00:00	GitLab Importer	Affected by	VCID-e318-2aad-aaag	None	34.0.0rc1
2024-01-03T23:10:49.715181+00:00	GitLab Importer	Affected by	VCID-7sta-sz5f-aaap	None	34.0.0rc1
2024-01-03T23:10:47.513320+00:00	GitLab Importer	Affected by	VCID-7sta-sz5f-aaap	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2023-28708.yml	34.0.0rc1
2024-01-03T16:14:34.333894+00:00	GHSA Importer	Affected by	VCID-983g-2nuz-aaaa	None	34.0.0rc1
2024-01-03T15:11:32.554611+00:00	GHSA Importer	Affected by	VCID-417x-h7g6-aaar	None	34.0.0rc1