VulnerableCode Package Details - pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@9.0.0.M21

Search for packages

Package details: pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@9.0.0.M21

Essentials
History (121)

purl	pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@9.0.0.M21

Next non-vulnerable version	9.0.104
Latest non-vulnerable version	11.0.8
Risk	10.0

Vulnerabilities affecting this package (16)

Vulnerability	Summary	Fixed by
VCID-2c6h-srga-aaap Aliases: CVE-2023-24998 GHSA-hfrx-6qgj-fp6c	Apache Commons FileUpload denial of service vulnerability	9.0.71 Affected by 10 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 10.1.5 Affected by 9 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 11.0.0-M5 Affected by 11 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-2vk8-jkgn-aaap Aliases: CVE-2019-0232 GHSA-8vmx-qmch-mpqg	High severity vulnerability that affects org.apache.tomcat.embed:tomcat-embed-core	9.0.17 Affected by 29 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-417x-h7g6-aaar Aliases: GHSA-r53m-pfr5-7v87	Moderate severity vulnerability that affects org.apache.tomcat.embed:tomcat-embed-core	9.0.16 Affected by 31 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-7sta-sz5f-aaap Aliases: CVE-2023-28708 GHSA-2c9m-w27f-53rm	Apache Tomcat vulnerable to Unprotected Transport of Credentials	9.0.72 Affected by 9 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 10.1.6 Affected by 8 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 11.0.0 Affected by 8 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-7tp8-ektn-aaan Aliases: CVE-2022-42252 GHSA-p22x-g9px-3945	Apache Tomcat may reject request containing invalid Content-Length header	9.0.68 Affected by 10 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 10.0.27 Affected by 2 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 10.1.1 Affected by 10 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-7uaw-6w3w-aaar Aliases: CVE-2024-24549 GHSA-7w75-32cg-r6g2	Denial of Service due to improper input validation vulnerability for HTTP/2 requests in Apache Tomcat. When processing an HTTP/2 request, if the request exceeded any of the configured limits for headers, the associated HTTP/2 stream was not reset until after all of the headers had been processed.This issue affects Apache Tomcat: from 11.0.0-M1 through 11.0.0-M16, from 10.1.0-M1 through 10.1.18, from 9.0.0-M1 through 9.0.85, from 8.5.0 through 8.5.98. Users are recommended to upgrade to version 11.0.0-M17, 10.1.19, 9.0.86 or 8.5.99 which fix the issue.	9.0.86 Affected by 3 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 10.1.19 Affected by 3 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 11.0.0-M17 Affected by 4 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-983g-2nuz-aaaa Aliases: CVE-2019-10072 GHSA-q4hg-rmq2-52q9	Improper Locking in Apache Tomcat	9.0.20 Affected by 27 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-9pu2-we8w-aaar Aliases: CVE-2018-1305 GHSA-jx6h-3fjx-cgv5	Moderate severity vulnerability that affects org.apache.tomcat.embed:tomcat-embed-core	9.0.5 Affected by 37 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-b2z1-15m4-aaac Aliases: CVE-2018-1336 GHSA-m59c-jpc8-m2x4	In Apache Tomcat there is an improper handing of overflow in the UTF-8 decoder	9.0.8 Affected by 36 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-cp4z-y57s-aaah Aliases: CVE-2018-8014 GHSA-r4x2-3cq5-hqvp	The defaults settings for the CORS filter provided in Apache Tomcat are insecure and enable 'supportsCredentials' for all origins	9.0.9 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} 9.0.10 Affected by 33 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-e318-2aad-aaag Aliases: CVE-2023-41080 GHSA-q3mw-pvr8-9ggc	URL Redirection to Untrusted Site ('Open Redirect') vulnerability in FORM authentication feature Apache Tomcat.This issue affects Apache Tomcat: from 11.0.0-M1 through 11.0.0-M10, from 10.1.0-M1 through 10.0.12, from 9.0.0-M1 through 9.0.79 and from 8.5.0 through 8.5.92. The vulnerability is limited to the ROOT (default) web application.	9.0.80 Affected by 9 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 10.1.13 Affected by 8 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 11.0.0-M11 Affected by 8 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 11.0.1 Affected by 2 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-f68z-z5n7-aaae Aliases: CVE-2023-42795 GHSA-g8pj-r55q-5c2v	Incomplete Cleanup vulnerability in Apache Tomcat.When recycling various internal objects in Apache Tomcat from 11.0.0-M1 through 11.0.0-M11, from 10.1.0-M1 through 10.1.13, from 9.0.0-M1 through 9.0.80 and from 8.5.0 through 8.5.93, an error could cause Tomcat to skip some parts of the recycling process leading to information leaking from the current request/response to the next. Users are recommended to upgrade to version 11.0.0-M12 onwards, 10.1.14 onwards, 9.0.81 onwards or 8.5.94 onwards, which fixes the issue.	9.0.81 Affected by 7 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 9.0.82 Affected by 5 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 10.1.14 Affected by 7 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 10.1.15 Affected by 5 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 11.0.0-M12 Affected by 5 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 11.0.1 Affected by 2 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-h3d2-7evg-aaac Aliases: CVE-2018-8037 GHSA-6v52-mj5r-7j2m	Moderate severity vulnerability that affects org.apache.tomcat.embed:tomcat-embed-core	9.0.10 Affected by 33 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-pcvp-wv2z-aaas Aliases: CVE-2023-46589 GHSA-fccv-jmmp-qg76	Improper Input Validation vulnerability in Apache Tomcat.Tomcat from 11.0.0-M1 through 11.0.0-M10, from 10.1.0-M1 through 10.1.15, from 9.0.0-M1 through 9.0.82 and from 8.5.0 through 8.5.95 did not correctly parse HTTP trailer headers. A trailer header that exceeded the header size limit could cause Tomcat to treat a single request as multiple requests leading to the possibility of request smuggling when behind a reverse proxy. Users are recommended to upgrade to version 11.0.0-M11 onwards, 10.1.16 onwards, 9.0.83 onwards or 8.5.96 onwards, which fix the issue.	9.0.83 Affected by 4 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 10.1.16 Affected by 4 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 11.0.0-M11 Affected by 8 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 11.0.1 Affected by 2 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-r78u-gre6-aaaj Aliases: CVE-2023-45648 GHSA-r6j3-px5g-cq3x	Improper Input Validation vulnerability in Apache Tomcat.Tomcat from 11.0.0-M1 through 11.0.0-M11, from 10.1.0-M1 through 10.1.13, from 9.0.0-M1 through 9.0.81 and from 8.5.0 through 8.5.93 did not correctly parse HTTP trailer headers. A specially crafted, invalid trailer header could cause Tomcat to treat a single request as multiple requests leading to the possibility of request smuggling when behind a reverse proxy. Users are recommended to upgrade to version 11.0.0-M12 onwards, 10.1.14 onwards, 9.0.81 onwards or 8.5.94 onwards, which fix the issue.	9.0.81 Affected by 7 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 9.0.82 Affected by 5 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 10.1.14 Affected by 7 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 10.1.15 Affected by 5 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 11.0.0-M12 Affected by 5 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 11.0.1 Affected by 2 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-yktk-48uz-aaac Aliases: CVE-2024-34750 GHSA-wm9w-rjj3-j356	Improper Handling of Exceptional Conditions, Uncontrolled Resource Consumption vulnerability in Apache Tomcat. When processing an HTTP/2 stream, Tomcat did not handle some cases of excessive HTTP headers correctly. This led to a miscounting of active HTTP/2 streams which in turn led to the use of an incorrect infinite timeout which allowed connections to remain open which should have been closed. This issue affects Apache Tomcat: from 11.0.0-M1 through 11.0.0-M20, from 10.1.0-M1 through 10.1.24, from 9.0.0-M1 through 9.0.89. Users are recommended to upgrade to version 11.0.0-M21, 10.1.25 or 9.0.90, which fixes the issue.	9.0.90 Affected by 2 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 10.1.25 Affected by 2 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 11.0.0-M21 Affected by 3 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}

Vulnerabilities fixed by this package (0)

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2025-06-20T16:55:11.002538+00:00	GitLab Importer	Affected by	VCID-7uaw-6w3w-aaar	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2024-24549.yml	36.1.3
2025-06-20T16:40:53.694827+00:00	GitLab Importer	Affected by	VCID-e318-2aad-aaag	None	36.1.3
2025-06-20T16:25:29.768434+00:00	GitLab Importer	Affected by	VCID-7sta-sz5f-aaap	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2023-28708.yml	36.1.3
2025-06-20T16:25:27.285876+00:00	GitLab Importer	Affected by	VCID-7sta-sz5f-aaap	None	36.1.3
2025-06-20T14:28:12.248904+00:00	GitLab Importer	Affected by	VCID-983g-2nuz-aaaa	None	36.1.3
2025-06-20T14:28:11.726225+00:00	GitLab Importer	Affected by	VCID-983g-2nuz-aaaa	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2019-10072.yml	36.1.3
2025-06-03T23:32:02.295830+00:00	GitLab Importer	Affected by	VCID-7uaw-6w3w-aaar	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2024-24549.yml	36.1.0
2025-06-03T23:19:31.354540+00:00	GitLab Importer	Affected by	VCID-e318-2aad-aaag	None	36.1.0
2025-06-03T23:04:52.007832+00:00	GitLab Importer	Affected by	VCID-7sta-sz5f-aaap	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2023-28708.yml	36.1.0
2025-06-03T23:04:49.823451+00:00	GitLab Importer	Affected by	VCID-7sta-sz5f-aaap	None	36.1.0
2025-06-03T21:12:08.190086+00:00	GitLab Importer	Affected by	VCID-983g-2nuz-aaaa	None	36.1.0
2025-06-03T21:12:07.735565+00:00	GitLab Importer	Affected by	VCID-983g-2nuz-aaaa	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2019-10072.yml	36.1.0
2025-06-02T23:29:53.121094+00:00	GitLab Importer	Affected by	VCID-7uaw-6w3w-aaar	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2024-24549.yml	36.1.2
2025-06-02T23:16:35.926922+00:00	GitLab Importer	Affected by	VCID-e318-2aad-aaag	None	36.1.2
2025-06-02T23:01:29.684874+00:00	GitLab Importer	Affected by	VCID-7sta-sz5f-aaap	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2023-28708.yml	36.1.2
2025-06-02T23:01:27.335894+00:00	GitLab Importer	Affected by	VCID-7sta-sz5f-aaap	None	36.1.2
2025-06-02T20:52:45.871482+00:00	GitLab Importer	Affected by	VCID-983g-2nuz-aaaa	None	36.1.2
2025-06-02T20:52:45.342844+00:00	GitLab Importer	Affected by	VCID-983g-2nuz-aaaa	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2019-10072.yml	36.1.2
2025-04-03T21:59:43.453733+00:00	GitLab Importer	Affected by	VCID-7uaw-6w3w-aaar	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2024-24549.yml	36.0.0
2025-04-03T21:31:07.801275+00:00	GitLab Importer	Affected by	VCID-e318-2aad-aaag	None	36.0.0
2025-04-03T20:59:10.651051+00:00	GitLab Importer	Affected by	VCID-7sta-sz5f-aaap	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2023-28708.yml	36.0.0
2025-04-03T20:59:05.067889+00:00	GitLab Importer	Affected by	VCID-7sta-sz5f-aaap	None	36.0.0
2025-04-03T17:19:17.571771+00:00	GitLab Importer	Affected by	VCID-983g-2nuz-aaaa	None	36.0.0
2025-04-03T17:19:16.466812+00:00	GitLab Importer	Affected by	VCID-983g-2nuz-aaaa	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2019-10072.yml	36.0.0
2025-02-18T07:08:50.211833+00:00	GitLab Importer	Affected by	VCID-983g-2nuz-aaaa	None	35.1.0
2025-02-18T07:08:49.672979+00:00	GitLab Importer	Affected by	VCID-983g-2nuz-aaaa	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2019-10072.yml	35.1.0
2025-02-18T03:48:10.315649+00:00	GitLab Importer	Affected by	VCID-7uaw-6w3w-aaar	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2024-24549.yml	35.1.0
2025-02-18T03:36:19.532274+00:00	GitLab Importer	Affected by	VCID-e318-2aad-aaag	None	35.1.0
2025-02-18T03:15:37.916595+00:00	GitLab Importer	Affected by	VCID-7sta-sz5f-aaap	None	35.1.0
2025-02-18T03:15:33.558355+00:00	GitLab Importer	Affected by	VCID-7sta-sz5f-aaap	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2023-28708.yml	35.1.0
2024-11-21T02:53:22.645575+00:00	GitLab Importer	Affected by	VCID-983g-2nuz-aaaa	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2019-10072.yml	35.0.0
2024-11-21T01:03:02.442728+00:00	GitLab Importer	Affected by	VCID-7uaw-6w3w-aaar	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2024-24549.yml	35.0.0
2024-11-21T00:44:40.857740+00:00	GitLab Importer	Affected by	VCID-7sta-sz5f-aaap	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2023-28708.yml	35.0.0
2024-11-19T02:43:19.507377+00:00	GitLab Importer	Affected by	VCID-983g-2nuz-aaaa	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2019-10072.yml	34.3.2
2024-11-19T00:52:00.080375+00:00	GitLab Importer	Affected by	VCID-7uaw-6w3w-aaar	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2024-24549.yml	34.3.2
2024-11-19T00:30:35.857886+00:00	GitLab Importer	Affected by	VCID-7sta-sz5f-aaap	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2023-28708.yml	34.3.2
2024-10-08T03:11:42.060482+00:00	GitLab Importer	Affected by	VCID-983g-2nuz-aaaa	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2019-10072.yml	34.0.2
2024-10-08T01:23:06.514585+00:00	GitLab Importer	Affected by	VCID-7uaw-6w3w-aaar	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2024-24549.yml	34.0.2
2024-10-08T01:12:43.572845+00:00	GitLab Importer	Affected by	VCID-7sta-sz5f-aaap	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2023-28708.yml	34.0.2
2024-10-07T22:14:43.933657+00:00	GHSA Importer	Affected by	VCID-yktk-48uz-aaac	https://github.com/advisories/GHSA-wm9w-rjj3-j356	34.0.2
2024-10-07T22:05:11.007479+00:00	GHSA Importer	Affected by	VCID-7uaw-6w3w-aaar	https://github.com/advisories/GHSA-7w75-32cg-r6g2	34.0.2
2024-10-07T21:46:05.778971+00:00	GHSA Importer	Affected by	VCID-pcvp-wv2z-aaas	https://github.com/advisories/GHSA-fccv-jmmp-qg76	34.0.2
2024-10-07T21:45:06.357012+00:00	GHSA Importer	Affected by	VCID-r78u-gre6-aaaj	https://github.com/advisories/GHSA-r6j3-px5g-cq3x	34.0.2
2024-10-07T21:43:46.032441+00:00	GHSA Importer	Affected by	VCID-f68z-z5n7-aaae	https://github.com/advisories/GHSA-g8pj-r55q-5c2v	34.0.2
2024-10-07T21:42:32.349732+00:00	GHSA Importer	Affected by	VCID-e318-2aad-aaag	https://github.com/advisories/GHSA-q3mw-pvr8-9ggc	34.0.2
2024-10-07T21:09:52.784692+00:00	GHSA Importer	Affected by	VCID-2c6h-srga-aaap	https://github.com/advisories/GHSA-hfrx-6qgj-fp6c	34.0.2
2024-10-07T20:56:02.116184+00:00	GHSA Importer	Affected by	VCID-7tp8-ektn-aaan	https://github.com/advisories/GHSA-p22x-g9px-3945	34.0.2
2024-10-07T17:55:22.659832+00:00	GHSA Importer	Affected by	VCID-983g-2nuz-aaaa	https://github.com/advisories/GHSA-q4hg-rmq2-52q9	34.0.2
2024-10-07T17:47:12.095965+00:00	GHSA Importer	Affected by	VCID-2vk8-jkgn-aaap	https://github.com/advisories/GHSA-8vmx-qmch-mpqg	34.0.2
2024-10-07T17:45:39.520737+00:00	GHSA Importer	Affected by	VCID-h3d2-7evg-aaac	https://github.com/advisories/GHSA-6v52-mj5r-7j2m	34.0.2
2024-10-07T17:45:31.544829+00:00	GHSA Importer	Affected by	VCID-cp4z-y57s-aaah	https://github.com/advisories/GHSA-r4x2-3cq5-hqvp	34.0.2
2024-10-07T17:40:23.524142+00:00	GHSA Importer	Affected by	VCID-b2z1-15m4-aaac	https://github.com/advisories/GHSA-m59c-jpc8-m2x4	34.0.2
2024-10-07T17:40:12.426705+00:00	GHSA Importer	Affected by	VCID-9pu2-we8w-aaar	https://github.com/advisories/GHSA-jx6h-3fjx-cgv5	34.0.2
2024-10-07T16:28:28.163355+00:00	GHSA Importer	Affected by	VCID-417x-h7g6-aaar	https://github.com/advisories/GHSA-r53m-pfr5-7v87	34.0.2
2024-09-23T03:08:08.915693+00:00	GitLab Importer	Affected by	VCID-983g-2nuz-aaaa	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2019-10072.yml	34.0.1
2024-09-23T01:28:09.232951+00:00	GitLab Importer	Affected by	VCID-7uaw-6w3w-aaar	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2024-24549.yml	34.0.1
2024-09-23T01:19:35.338006+00:00	GitLab Importer	Affected by	VCID-7sta-sz5f-aaap	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2023-28708.yml	34.0.1
2024-09-22T22:41:26.452440+00:00	GHSA Importer	Affected by	VCID-yktk-48uz-aaac	https://github.com/advisories/GHSA-wm9w-rjj3-j356	34.0.1
2024-09-22T22:27:07.171599+00:00	GHSA Importer	Affected by	VCID-7uaw-6w3w-aaar	https://github.com/advisories/GHSA-7w75-32cg-r6g2	34.0.1
2024-09-22T22:15:32.814509+00:00	GHSA Importer	Affected by	VCID-pcvp-wv2z-aaas	https://github.com/advisories/GHSA-fccv-jmmp-qg76	34.0.1
2024-09-22T22:14:34.138127+00:00	GHSA Importer	Affected by	VCID-r78u-gre6-aaaj	https://github.com/advisories/GHSA-r6j3-px5g-cq3x	34.0.1
2024-09-22T22:13:17.262255+00:00	GHSA Importer	Affected by	VCID-f68z-z5n7-aaae	https://github.com/advisories/GHSA-g8pj-r55q-5c2v	34.0.1
2024-09-22T22:06:35.025026+00:00	GHSA Importer	Affected by	VCID-e318-2aad-aaag	https://github.com/advisories/GHSA-q3mw-pvr8-9ggc	34.0.1
2024-09-22T21:45:12.761734+00:00	GHSA Importer	Affected by	VCID-2c6h-srga-aaap	https://github.com/advisories/GHSA-hfrx-6qgj-fp6c	34.0.1
2024-09-22T21:33:11.897571+00:00	GHSA Importer	Affected by	VCID-7tp8-ektn-aaan	https://github.com/advisories/GHSA-p22x-g9px-3945	34.0.1
2024-09-22T18:32:14.301359+00:00	GHSA Importer	Affected by	VCID-983g-2nuz-aaaa	https://github.com/advisories/GHSA-q4hg-rmq2-52q9	34.0.1
2024-09-22T18:19:10.675522+00:00	GHSA Importer	Affected by	VCID-2vk8-jkgn-aaap	https://github.com/advisories/GHSA-8vmx-qmch-mpqg	34.0.1
2024-09-22T18:17:41.798888+00:00	GHSA Importer	Affected by	VCID-h3d2-7evg-aaac	https://github.com/advisories/GHSA-6v52-mj5r-7j2m	34.0.1
2024-09-22T18:17:33.315484+00:00	GHSA Importer	Affected by	VCID-cp4z-y57s-aaah	https://github.com/advisories/GHSA-r4x2-3cq5-hqvp	34.0.1
2024-09-22T18:12:09.646058+00:00	GHSA Importer	Affected by	VCID-b2z1-15m4-aaac	https://github.com/advisories/GHSA-m59c-jpc8-m2x4	34.0.1
2024-09-22T18:11:59.064490+00:00	GHSA Importer	Affected by	VCID-9pu2-we8w-aaar	https://github.com/advisories/GHSA-jx6h-3fjx-cgv5	34.0.1
2024-09-22T16:51:39.061769+00:00	GHSA Importer	Affected by	VCID-417x-h7g6-aaar	https://github.com/advisories/GHSA-r53m-pfr5-7v87	34.0.1
2024-05-17T21:14:35.172034+00:00	GHSA Importer	Affected by	VCID-7uaw-6w3w-aaar	https://github.com/advisories/GHSA-7w75-32cg-r6g2	34.0.0rc4
2024-05-17T20:54:42.100302+00:00	GHSA Importer	Affected by	VCID-pcvp-wv2z-aaas	https://github.com/advisories/GHSA-fccv-jmmp-qg76	34.0.0rc4
2024-05-17T20:52:04.268139+00:00	GHSA Importer	Affected by	VCID-r78u-gre6-aaaj	https://github.com/advisories/GHSA-r6j3-px5g-cq3x	34.0.0rc4
2024-05-17T19:42:10.951797+00:00	GHSA Importer	Affected by	VCID-7tp8-ektn-aaan	https://github.com/advisories/GHSA-p22x-g9px-3945	34.0.0rc4
2024-04-24T05:47:02.963853+00:00	GitLab Importer	Affected by	VCID-983g-2nuz-aaaa	None	34.0.0rc4
2024-04-24T05:47:02.401515+00:00	GitLab Importer	Affected by	VCID-983g-2nuz-aaaa	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2019-10072.yml	34.0.0rc4
2024-04-24T03:59:55.634369+00:00	GitLab Importer	Affected by	VCID-7uaw-6w3w-aaar	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2024-24549.yml	34.0.0rc4
2024-04-24T03:51:53.063464+00:00	GitLab Importer	Affected by	VCID-e318-2aad-aaag	None	34.0.0rc4
2024-04-24T03:42:53.558551+00:00	GitLab Importer	Affected by	VCID-7sta-sz5f-aaap	None	34.0.0rc4
2024-04-24T03:42:51.301681+00:00	GitLab Importer	Affected by	VCID-7sta-sz5f-aaap	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2023-28708.yml	34.0.0rc4
2024-04-24T00:49:28.913077+00:00	GHSA Importer	Affected by	VCID-f68z-z5n7-aaae	https://github.com/advisories/GHSA-g8pj-r55q-5c2v	34.0.0rc4
2024-04-24T00:47:08.262761+00:00	GHSA Importer	Affected by	VCID-e318-2aad-aaag	https://github.com/advisories/GHSA-q3mw-pvr8-9ggc	34.0.0rc4
2024-04-24T00:47:03.422701+00:00	GHSA Importer	Affected by	VCID-e318-2aad-aaag	None	34.0.0rc4
2024-04-24T00:04:19.221117+00:00	GHSA Importer	Affected by	VCID-2c6h-srga-aaap	https://github.com/advisories/GHSA-hfrx-6qgj-fp6c	34.0.0rc4
2024-04-23T19:21:02.164738+00:00	GHSA Importer	Affected by	VCID-983g-2nuz-aaaa	None	34.0.0rc4
2024-04-23T19:21:01.831006+00:00	GHSA Importer	Affected by	VCID-983g-2nuz-aaaa	https://github.com/advisories/GHSA-q4hg-rmq2-52q9	34.0.0rc4
2024-04-23T19:18:42.624060+00:00	GHSA Importer	Affected by	VCID-2vk8-jkgn-aaap	https://github.com/advisories/GHSA-8vmx-qmch-mpqg	34.0.0rc4
2024-04-23T19:14:56.761289+00:00	GHSA Importer	Affected by	VCID-h3d2-7evg-aaac	https://github.com/advisories/GHSA-6v52-mj5r-7j2m	34.0.0rc4
2024-04-23T19:14:26.371894+00:00	GHSA Importer	Affected by	VCID-cp4z-y57s-aaah	https://github.com/advisories/GHSA-r4x2-3cq5-hqvp	34.0.0rc4
2024-04-23T19:02:13.991107+00:00	GHSA Importer	Affected by	VCID-b2z1-15m4-aaac	https://github.com/advisories/GHSA-m59c-jpc8-m2x4	34.0.0rc4
2024-04-23T19:01:38.747530+00:00	GHSA Importer	Affected by	VCID-9pu2-we8w-aaar	https://github.com/advisories/GHSA-jx6h-3fjx-cgv5	34.0.0rc4
2024-04-23T17:35:15.060058+00:00	GHSA Importer	Affected by	VCID-417x-h7g6-aaar	https://github.com/advisories/GHSA-r53m-pfr5-7v87	34.0.0rc4
2024-04-23T17:35:14.518698+00:00	GHSA Importer	Affected by	VCID-417x-h7g6-aaar	None	34.0.0rc4
2024-01-10T08:18:03.984631+00:00	GitLab Importer	Affected by	VCID-983g-2nuz-aaaa	None	34.0.0rc2
2024-01-10T08:18:03.428213+00:00	GitLab Importer	Affected by	VCID-983g-2nuz-aaaa	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2019-10072.yml	34.0.0rc2
2024-01-10T06:33:47.387399+00:00	GitLab Importer	Affected by	VCID-e318-2aad-aaag	None	34.0.0rc2
2024-01-10T06:24:19.050228+00:00	GitLab Importer	Affected by	VCID-7sta-sz5f-aaap	None	34.0.0rc2
2024-01-10T06:24:16.858310+00:00	GitLab Importer	Affected by	VCID-7sta-sz5f-aaap	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2023-28708.yml	34.0.0rc2
2024-01-10T03:02:26.017510+00:00	GHSA Importer	Affected by	VCID-pcvp-wv2z-aaas	https://github.com/advisories/GHSA-fccv-jmmp-qg76	34.0.0rc2
2024-01-10T02:59:10.095880+00:00	GHSA Importer	Affected by	VCID-r78u-gre6-aaaj	https://github.com/advisories/GHSA-r6j3-px5g-cq3x	34.0.0rc2
2024-01-10T02:56:05.091006+00:00	GHSA Importer	Affected by	VCID-f68z-z5n7-aaae	https://github.com/advisories/GHSA-g8pj-r55q-5c2v	34.0.0rc2
2024-01-10T02:53:51.487483+00:00	GHSA Importer	Affected by	VCID-e318-2aad-aaag	https://github.com/advisories/GHSA-q3mw-pvr8-9ggc	34.0.0rc2
2024-01-10T02:53:46.929637+00:00	GHSA Importer	Affected by	VCID-e318-2aad-aaag	None	34.0.0rc2
2024-01-09T21:12:28.185940+00:00	GHSA Importer	Affected by	VCID-983g-2nuz-aaaa	None	34.0.0rc2
2024-01-09T21:12:27.809370+00:00	GHSA Importer	Affected by	VCID-983g-2nuz-aaaa	https://github.com/advisories/GHSA-q4hg-rmq2-52q9	34.0.0rc2
2024-01-09T21:09:59.100896+00:00	GHSA Importer	Affected by	VCID-2vk8-jkgn-aaap	https://github.com/advisories/GHSA-8vmx-qmch-mpqg	34.0.0rc2
2024-01-09T21:05:27.687380+00:00	GHSA Importer	Affected by	VCID-h3d2-7evg-aaac	https://github.com/advisories/GHSA-6v52-mj5r-7j2m	34.0.0rc2
2024-01-09T21:04:56.563703+00:00	GHSA Importer	Affected by	VCID-cp4z-y57s-aaah	https://github.com/advisories/GHSA-r4x2-3cq5-hqvp	34.0.0rc2
2024-01-09T20:54:11.006980+00:00	GHSA Importer	Affected by	VCID-b2z1-15m4-aaac	https://github.com/advisories/GHSA-m59c-jpc8-m2x4	34.0.0rc2
2024-01-09T20:53:42.300461+00:00	GHSA Importer	Affected by	VCID-9pu2-we8w-aaar	https://github.com/advisories/GHSA-jx6h-3fjx-cgv5	34.0.0rc2
2024-01-09T19:34:28.685687+00:00	GHSA Importer	Affected by	VCID-417x-h7g6-aaar	https://github.com/advisories/GHSA-r53m-pfr5-7v87	34.0.0rc2
2024-01-09T19:34:28.138302+00:00	GHSA Importer	Affected by	VCID-417x-h7g6-aaar	None	34.0.0rc2
2024-01-04T01:03:24.383442+00:00	GitLab Importer	Affected by	VCID-983g-2nuz-aaaa	None	34.0.0rc1
2024-01-04T01:03:23.834774+00:00	GitLab Importer	Affected by	VCID-983g-2nuz-aaaa	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2019-10072.yml	34.0.0rc1
2024-01-03T23:20:05.780432+00:00	GitLab Importer	Affected by	VCID-e318-2aad-aaag	None	34.0.0rc1
2024-01-03T23:10:49.719822+00:00	GitLab Importer	Affected by	VCID-7sta-sz5f-aaap	None	34.0.0rc1
2024-01-03T23:10:47.517972+00:00	GitLab Importer	Affected by	VCID-7sta-sz5f-aaap	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2023-28708.yml	34.0.0rc1
2024-01-03T16:14:34.338435+00:00	GHSA Importer	Affected by	VCID-983g-2nuz-aaaa	None	34.0.0rc1
2024-01-03T15:11:32.559192+00:00	GHSA Importer	Affected by	VCID-417x-h7g6-aaar	None	34.0.0rc1