VulnerableCode Package Details - pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@9.0.0.M25

Search for packages

Package details: pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@9.0.0.M25

Essentials
History (121)

purl	pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@9.0.0.M25

Next non-vulnerable version	9.0.104
Latest non-vulnerable version	11.0.8
Risk	10.0

Vulnerabilities affecting this package (16)

Vulnerability	Summary	Fixed by
VCID-2c6h-srga-aaap Aliases: CVE-2023-24998 GHSA-hfrx-6qgj-fp6c	Apache Commons FileUpload denial of service vulnerability	9.0.71 Affected by 10 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 10.1.5 Affected by 9 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 11.0.0-M5 Affected by 11 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-2vk8-jkgn-aaap Aliases: CVE-2019-0232 GHSA-8vmx-qmch-mpqg	High severity vulnerability that affects org.apache.tomcat.embed:tomcat-embed-core	9.0.17 Affected by 29 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-417x-h7g6-aaar Aliases: GHSA-r53m-pfr5-7v87	Moderate severity vulnerability that affects org.apache.tomcat.embed:tomcat-embed-core	9.0.16 Affected by 31 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-7sta-sz5f-aaap Aliases: CVE-2023-28708 GHSA-2c9m-w27f-53rm	Apache Tomcat vulnerable to Unprotected Transport of Credentials	9.0.72 Affected by 9 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 10.1.6 Affected by 8 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 11.0.0 Affected by 8 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-7tp8-ektn-aaan Aliases: CVE-2022-42252 GHSA-p22x-g9px-3945	Apache Tomcat may reject request containing invalid Content-Length header	9.0.68 Affected by 10 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 10.0.27 Affected by 2 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 10.1.1 Affected by 10 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-7uaw-6w3w-aaar Aliases: CVE-2024-24549 GHSA-7w75-32cg-r6g2	Denial of Service due to improper input validation vulnerability for HTTP/2 requests in Apache Tomcat. When processing an HTTP/2 request, if the request exceeded any of the configured limits for headers, the associated HTTP/2 stream was not reset until after all of the headers had been processed.This issue affects Apache Tomcat: from 11.0.0-M1 through 11.0.0-M16, from 10.1.0-M1 through 10.1.18, from 9.0.0-M1 through 9.0.85, from 8.5.0 through 8.5.98. Users are recommended to upgrade to version 11.0.0-M17, 10.1.19, 9.0.86 or 8.5.99 which fix the issue.	9.0.86 Affected by 3 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 10.1.19 Affected by 3 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 11.0.0-M17 Affected by 4 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-983g-2nuz-aaaa Aliases: CVE-2019-10072 GHSA-q4hg-rmq2-52q9	Improper Locking in Apache Tomcat	9.0.20 Affected by 27 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-9pu2-we8w-aaar Aliases: CVE-2018-1305 GHSA-jx6h-3fjx-cgv5	Moderate severity vulnerability that affects org.apache.tomcat.embed:tomcat-embed-core	9.0.5 Affected by 37 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-b2z1-15m4-aaac Aliases: CVE-2018-1336 GHSA-m59c-jpc8-m2x4	In Apache Tomcat there is an improper handing of overflow in the UTF-8 decoder	9.0.8 Affected by 36 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-cp4z-y57s-aaah Aliases: CVE-2018-8014 GHSA-r4x2-3cq5-hqvp	The defaults settings for the CORS filter provided in Apache Tomcat are insecure and enable 'supportsCredentials' for all origins	9.0.9 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} 9.0.10 Affected by 33 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-e318-2aad-aaag Aliases: CVE-2023-41080 GHSA-q3mw-pvr8-9ggc	URL Redirection to Untrusted Site ('Open Redirect') vulnerability in FORM authentication feature Apache Tomcat.This issue affects Apache Tomcat: from 11.0.0-M1 through 11.0.0-M10, from 10.1.0-M1 through 10.0.12, from 9.0.0-M1 through 9.0.79 and from 8.5.0 through 8.5.92. The vulnerability is limited to the ROOT (default) web application.	9.0.80 Affected by 9 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 10.1.13 Affected by 8 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 11.0.0-M11 Affected by 8 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 11.0.1 Affected by 2 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-f68z-z5n7-aaae Aliases: CVE-2023-42795 GHSA-g8pj-r55q-5c2v	Incomplete Cleanup vulnerability in Apache Tomcat.When recycling various internal objects in Apache Tomcat from 11.0.0-M1 through 11.0.0-M11, from 10.1.0-M1 through 10.1.13, from 9.0.0-M1 through 9.0.80 and from 8.5.0 through 8.5.93, an error could cause Tomcat to skip some parts of the recycling process leading to information leaking from the current request/response to the next. Users are recommended to upgrade to version 11.0.0-M12 onwards, 10.1.14 onwards, 9.0.81 onwards or 8.5.94 onwards, which fixes the issue.	9.0.81 Affected by 7 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 9.0.82 Affected by 5 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 10.1.14 Affected by 7 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 10.1.15 Affected by 5 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 11.0.0-M12 Affected by 5 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 11.0.1 Affected by 2 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-h3d2-7evg-aaac Aliases: CVE-2018-8037 GHSA-6v52-mj5r-7j2m	Moderate severity vulnerability that affects org.apache.tomcat.embed:tomcat-embed-core	9.0.10 Affected by 33 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-pcvp-wv2z-aaas Aliases: CVE-2023-46589 GHSA-fccv-jmmp-qg76	Improper Input Validation vulnerability in Apache Tomcat.Tomcat from 11.0.0-M1 through 11.0.0-M10, from 10.1.0-M1 through 10.1.15, from 9.0.0-M1 through 9.0.82 and from 8.5.0 through 8.5.95 did not correctly parse HTTP trailer headers. A trailer header that exceeded the header size limit could cause Tomcat to treat a single request as multiple requests leading to the possibility of request smuggling when behind a reverse proxy. Users are recommended to upgrade to version 11.0.0-M11 onwards, 10.1.16 onwards, 9.0.83 onwards or 8.5.96 onwards, which fix the issue.	9.0.83 Affected by 4 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 10.1.16 Affected by 4 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 11.0.0-M11 Affected by 8 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 11.0.1 Affected by 2 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-r78u-gre6-aaaj Aliases: CVE-2023-45648 GHSA-r6j3-px5g-cq3x	Improper Input Validation vulnerability in Apache Tomcat.Tomcat from 11.0.0-M1 through 11.0.0-M11, from 10.1.0-M1 through 10.1.13, from 9.0.0-M1 through 9.0.81 and from 8.5.0 through 8.5.93 did not correctly parse HTTP trailer headers. A specially crafted, invalid trailer header could cause Tomcat to treat a single request as multiple requests leading to the possibility of request smuggling when behind a reverse proxy. Users are recommended to upgrade to version 11.0.0-M12 onwards, 10.1.14 onwards, 9.0.81 onwards or 8.5.94 onwards, which fix the issue.	9.0.81 Affected by 7 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 9.0.82 Affected by 5 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 10.1.14 Affected by 7 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 10.1.15 Affected by 5 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 11.0.0-M12 Affected by 5 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 11.0.1 Affected by 2 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-yktk-48uz-aaac Aliases: CVE-2024-34750 GHSA-wm9w-rjj3-j356	Improper Handling of Exceptional Conditions, Uncontrolled Resource Consumption vulnerability in Apache Tomcat. When processing an HTTP/2 stream, Tomcat did not handle some cases of excessive HTTP headers correctly. This led to a miscounting of active HTTP/2 streams which in turn led to the use of an incorrect infinite timeout which allowed connections to remain open which should have been closed. This issue affects Apache Tomcat: from 11.0.0-M1 through 11.0.0-M20, from 10.1.0-M1 through 10.1.24, from 9.0.0-M1 through 9.0.89. Users are recommended to upgrade to version 11.0.0-M21, 10.1.25 or 9.0.90, which fixes the issue.	9.0.90 Affected by 2 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 10.1.25 Affected by 2 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 11.0.0-M21 Affected by 3 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}

Vulnerabilities fixed by this package (0)

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2025-06-20T16:55:11.006461+00:00	GitLab Importer	Affected by	VCID-7uaw-6w3w-aaar	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2024-24549.yml	36.1.3
2025-06-20T16:40:53.698118+00:00	GitLab Importer	Affected by	VCID-e318-2aad-aaag	None	36.1.3
2025-06-20T16:25:29.772134+00:00	GitLab Importer	Affected by	VCID-7sta-sz5f-aaap	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2023-28708.yml	36.1.3
2025-06-20T16:25:27.289141+00:00	GitLab Importer	Affected by	VCID-7sta-sz5f-aaap	None	36.1.3
2025-06-20T14:28:12.252567+00:00	GitLab Importer	Affected by	VCID-983g-2nuz-aaaa	None	36.1.3
2025-06-20T14:28:11.729944+00:00	GitLab Importer	Affected by	VCID-983g-2nuz-aaaa	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2019-10072.yml	36.1.3
2025-06-03T23:32:02.298921+00:00	GitLab Importer	Affected by	VCID-7uaw-6w3w-aaar	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2024-24549.yml	36.1.0
2025-06-03T23:19:31.357553+00:00	GitLab Importer	Affected by	VCID-e318-2aad-aaag	None	36.1.0
2025-06-03T23:04:52.010856+00:00	GitLab Importer	Affected by	VCID-7sta-sz5f-aaap	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2023-28708.yml	36.1.0
2025-06-03T23:04:49.827050+00:00	GitLab Importer	Affected by	VCID-7sta-sz5f-aaap	None	36.1.0
2025-06-03T21:12:08.193069+00:00	GitLab Importer	Affected by	VCID-983g-2nuz-aaaa	None	36.1.0
2025-06-03T21:12:07.738640+00:00	GitLab Importer	Affected by	VCID-983g-2nuz-aaaa	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2019-10072.yml	36.1.0
2025-06-02T23:29:53.125328+00:00	GitLab Importer	Affected by	VCID-7uaw-6w3w-aaar	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2024-24549.yml	36.1.2
2025-06-02T23:16:35.930599+00:00	GitLab Importer	Affected by	VCID-e318-2aad-aaag	None	36.1.2
2025-06-02T23:01:29.688647+00:00	GitLab Importer	Affected by	VCID-7sta-sz5f-aaap	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2023-28708.yml	36.1.2
2025-06-02T23:01:27.339613+00:00	GitLab Importer	Affected by	VCID-7sta-sz5f-aaap	None	36.1.2
2025-06-02T20:52:45.875505+00:00	GitLab Importer	Affected by	VCID-983g-2nuz-aaaa	None	36.1.2
2025-06-02T20:52:45.346886+00:00	GitLab Importer	Affected by	VCID-983g-2nuz-aaaa	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2019-10072.yml	36.1.2
2025-04-03T21:59:43.463714+00:00	GitLab Importer	Affected by	VCID-7uaw-6w3w-aaar	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2024-24549.yml	36.0.0
2025-04-03T21:31:07.811236+00:00	GitLab Importer	Affected by	VCID-e318-2aad-aaag	None	36.0.0
2025-04-03T20:59:10.660975+00:00	GitLab Importer	Affected by	VCID-7sta-sz5f-aaap	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2023-28708.yml	36.0.0
2025-04-03T20:59:05.077976+00:00	GitLab Importer	Affected by	VCID-7sta-sz5f-aaap	None	36.0.0
2025-04-03T17:19:17.581640+00:00	GitLab Importer	Affected by	VCID-983g-2nuz-aaaa	None	36.0.0
2025-04-03T17:19:16.476589+00:00	GitLab Importer	Affected by	VCID-983g-2nuz-aaaa	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2019-10072.yml	36.0.0
2025-02-18T07:08:50.221638+00:00	GitLab Importer	Affected by	VCID-983g-2nuz-aaaa	None	35.1.0
2025-02-18T07:08:49.682860+00:00	GitLab Importer	Affected by	VCID-983g-2nuz-aaaa	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2019-10072.yml	35.1.0
2025-02-18T03:48:10.325538+00:00	GitLab Importer	Affected by	VCID-7uaw-6w3w-aaar	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2024-24549.yml	35.1.0
2025-02-18T03:36:19.542041+00:00	GitLab Importer	Affected by	VCID-e318-2aad-aaag	None	35.1.0
2025-02-18T03:15:37.926399+00:00	GitLab Importer	Affected by	VCID-7sta-sz5f-aaap	None	35.1.0
2025-02-18T03:15:33.568232+00:00	GitLab Importer	Affected by	VCID-7sta-sz5f-aaap	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2023-28708.yml	35.1.0
2024-11-21T02:53:22.655410+00:00	GitLab Importer	Affected by	VCID-983g-2nuz-aaaa	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2019-10072.yml	35.0.0
2024-11-21T01:03:02.452813+00:00	GitLab Importer	Affected by	VCID-7uaw-6w3w-aaar	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2024-24549.yml	35.0.0
2024-11-21T00:44:40.867658+00:00	GitLab Importer	Affected by	VCID-7sta-sz5f-aaap	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2023-28708.yml	35.0.0
2024-11-19T02:43:19.517400+00:00	GitLab Importer	Affected by	VCID-983g-2nuz-aaaa	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2019-10072.yml	34.3.2
2024-11-19T00:52:00.090293+00:00	GitLab Importer	Affected by	VCID-7uaw-6w3w-aaar	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2024-24549.yml	34.3.2
2024-11-19T00:30:35.867800+00:00	GitLab Importer	Affected by	VCID-7sta-sz5f-aaap	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2023-28708.yml	34.3.2
2024-10-08T03:11:42.070132+00:00	GitLab Importer	Affected by	VCID-983g-2nuz-aaaa	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2019-10072.yml	34.0.2
2024-10-08T01:23:06.524559+00:00	GitLab Importer	Affected by	VCID-7uaw-6w3w-aaar	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2024-24549.yml	34.0.2
2024-10-08T01:12:43.582981+00:00	GitLab Importer	Affected by	VCID-7sta-sz5f-aaap	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2023-28708.yml	34.0.2
2024-10-07T22:14:43.943662+00:00	GHSA Importer	Affected by	VCID-yktk-48uz-aaac	https://github.com/advisories/GHSA-wm9w-rjj3-j356	34.0.2
2024-10-07T22:05:11.018338+00:00	GHSA Importer	Affected by	VCID-7uaw-6w3w-aaar	https://github.com/advisories/GHSA-7w75-32cg-r6g2	34.0.2
2024-10-07T21:46:05.788653+00:00	GHSA Importer	Affected by	VCID-pcvp-wv2z-aaas	https://github.com/advisories/GHSA-fccv-jmmp-qg76	34.0.2
2024-10-07T21:45:06.367035+00:00	GHSA Importer	Affected by	VCID-r78u-gre6-aaaj	https://github.com/advisories/GHSA-r6j3-px5g-cq3x	34.0.2
2024-10-07T21:43:46.042318+00:00	GHSA Importer	Affected by	VCID-f68z-z5n7-aaae	https://github.com/advisories/GHSA-g8pj-r55q-5c2v	34.0.2
2024-10-07T21:42:32.361027+00:00	GHSA Importer	Affected by	VCID-e318-2aad-aaag	https://github.com/advisories/GHSA-q3mw-pvr8-9ggc	34.0.2
2024-10-07T21:09:52.794861+00:00	GHSA Importer	Affected by	VCID-2c6h-srga-aaap	https://github.com/advisories/GHSA-hfrx-6qgj-fp6c	34.0.2
2024-10-07T20:56:02.125751+00:00	GHSA Importer	Affected by	VCID-7tp8-ektn-aaan	https://github.com/advisories/GHSA-p22x-g9px-3945	34.0.2
2024-10-07T17:55:22.669580+00:00	GHSA Importer	Affected by	VCID-983g-2nuz-aaaa	https://github.com/advisories/GHSA-q4hg-rmq2-52q9	34.0.2
2024-10-07T17:47:12.105674+00:00	GHSA Importer	Affected by	VCID-2vk8-jkgn-aaap	https://github.com/advisories/GHSA-8vmx-qmch-mpqg	34.0.2
2024-10-07T17:45:39.530348+00:00	GHSA Importer	Affected by	VCID-h3d2-7evg-aaac	https://github.com/advisories/GHSA-6v52-mj5r-7j2m	34.0.2
2024-10-07T17:45:31.554499+00:00	GHSA Importer	Affected by	VCID-cp4z-y57s-aaah	https://github.com/advisories/GHSA-r4x2-3cq5-hqvp	34.0.2
2024-10-07T17:40:23.534275+00:00	GHSA Importer	Affected by	VCID-b2z1-15m4-aaac	https://github.com/advisories/GHSA-m59c-jpc8-m2x4	34.0.2
2024-10-07T17:40:12.437331+00:00	GHSA Importer	Affected by	VCID-9pu2-we8w-aaar	https://github.com/advisories/GHSA-jx6h-3fjx-cgv5	34.0.2
2024-10-07T16:28:28.175246+00:00	GHSA Importer	Affected by	VCID-417x-h7g6-aaar	https://github.com/advisories/GHSA-r53m-pfr5-7v87	34.0.2
2024-09-23T03:08:08.925418+00:00	GitLab Importer	Affected by	VCID-983g-2nuz-aaaa	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2019-10072.yml	34.0.1
2024-09-23T01:28:09.242548+00:00	GitLab Importer	Affected by	VCID-7uaw-6w3w-aaar	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2024-24549.yml	34.0.1
2024-09-23T01:19:35.347624+00:00	GitLab Importer	Affected by	VCID-7sta-sz5f-aaap	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2023-28708.yml	34.0.1
2024-09-22T22:41:26.463412+00:00	GHSA Importer	Affected by	VCID-yktk-48uz-aaac	https://github.com/advisories/GHSA-wm9w-rjj3-j356	34.0.1
2024-09-22T22:27:07.181687+00:00	GHSA Importer	Affected by	VCID-7uaw-6w3w-aaar	https://github.com/advisories/GHSA-7w75-32cg-r6g2	34.0.1
2024-09-22T22:15:32.824137+00:00	GHSA Importer	Affected by	VCID-pcvp-wv2z-aaas	https://github.com/advisories/GHSA-fccv-jmmp-qg76	34.0.1
2024-09-22T22:14:34.148567+00:00	GHSA Importer	Affected by	VCID-r78u-gre6-aaaj	https://github.com/advisories/GHSA-r6j3-px5g-cq3x	34.0.1
2024-09-22T22:13:17.272664+00:00	GHSA Importer	Affected by	VCID-f68z-z5n7-aaae	https://github.com/advisories/GHSA-g8pj-r55q-5c2v	34.0.1
2024-09-22T22:06:35.035257+00:00	GHSA Importer	Affected by	VCID-e318-2aad-aaag	https://github.com/advisories/GHSA-q3mw-pvr8-9ggc	34.0.1
2024-09-22T21:45:12.772423+00:00	GHSA Importer	Affected by	VCID-2c6h-srga-aaap	https://github.com/advisories/GHSA-hfrx-6qgj-fp6c	34.0.1
2024-09-22T21:33:11.907584+00:00	GHSA Importer	Affected by	VCID-7tp8-ektn-aaan	https://github.com/advisories/GHSA-p22x-g9px-3945	34.0.1
2024-09-22T18:32:14.312872+00:00	GHSA Importer	Affected by	VCID-983g-2nuz-aaaa	https://github.com/advisories/GHSA-q4hg-rmq2-52q9	34.0.1
2024-09-22T18:19:10.685410+00:00	GHSA Importer	Affected by	VCID-2vk8-jkgn-aaap	https://github.com/advisories/GHSA-8vmx-qmch-mpqg	34.0.1
2024-09-22T18:17:41.808877+00:00	GHSA Importer	Affected by	VCID-h3d2-7evg-aaac	https://github.com/advisories/GHSA-6v52-mj5r-7j2m	34.0.1
2024-09-22T18:17:33.325320+00:00	GHSA Importer	Affected by	VCID-cp4z-y57s-aaah	https://github.com/advisories/GHSA-r4x2-3cq5-hqvp	34.0.1
2024-09-22T18:12:09.655642+00:00	GHSA Importer	Affected by	VCID-b2z1-15m4-aaac	https://github.com/advisories/GHSA-m59c-jpc8-m2x4	34.0.1
2024-09-22T18:11:59.074118+00:00	GHSA Importer	Affected by	VCID-9pu2-we8w-aaar	https://github.com/advisories/GHSA-jx6h-3fjx-cgv5	34.0.1
2024-09-22T16:51:39.072240+00:00	GHSA Importer	Affected by	VCID-417x-h7g6-aaar	https://github.com/advisories/GHSA-r53m-pfr5-7v87	34.0.1
2024-05-17T21:14:35.181549+00:00	GHSA Importer	Affected by	VCID-7uaw-6w3w-aaar	https://github.com/advisories/GHSA-7w75-32cg-r6g2	34.0.0rc4
2024-05-17T20:54:42.109686+00:00	GHSA Importer	Affected by	VCID-pcvp-wv2z-aaas	https://github.com/advisories/GHSA-fccv-jmmp-qg76	34.0.0rc4
2024-05-17T20:52:04.277717+00:00	GHSA Importer	Affected by	VCID-r78u-gre6-aaaj	https://github.com/advisories/GHSA-r6j3-px5g-cq3x	34.0.0rc4
2024-05-17T19:42:10.962268+00:00	GHSA Importer	Affected by	VCID-7tp8-ektn-aaan	https://github.com/advisories/GHSA-p22x-g9px-3945	34.0.0rc4
2024-04-24T05:47:02.973295+00:00	GitLab Importer	Affected by	VCID-983g-2nuz-aaaa	None	34.0.0rc4
2024-04-24T05:47:02.412348+00:00	GitLab Importer	Affected by	VCID-983g-2nuz-aaaa	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2019-10072.yml	34.0.0rc4
2024-04-24T03:59:55.645120+00:00	GitLab Importer	Affected by	VCID-7uaw-6w3w-aaar	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2024-24549.yml	34.0.0rc4
2024-04-24T03:51:53.072742+00:00	GitLab Importer	Affected by	VCID-e318-2aad-aaag	None	34.0.0rc4
2024-04-24T03:42:53.567895+00:00	GitLab Importer	Affected by	VCID-7sta-sz5f-aaap	None	34.0.0rc4
2024-04-24T03:42:51.311278+00:00	GitLab Importer	Affected by	VCID-7sta-sz5f-aaap	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2023-28708.yml	34.0.0rc4
2024-04-24T00:49:28.922332+00:00	GHSA Importer	Affected by	VCID-f68z-z5n7-aaae	https://github.com/advisories/GHSA-g8pj-r55q-5c2v	34.0.0rc4
2024-04-24T00:47:08.272002+00:00	GHSA Importer	Affected by	VCID-e318-2aad-aaag	https://github.com/advisories/GHSA-q3mw-pvr8-9ggc	34.0.0rc4
2024-04-24T00:47:03.432135+00:00	GHSA Importer	Affected by	VCID-e318-2aad-aaag	None	34.0.0rc4
2024-04-24T00:04:19.231738+00:00	GHSA Importer	Affected by	VCID-2c6h-srga-aaap	https://github.com/advisories/GHSA-hfrx-6qgj-fp6c	34.0.0rc4
2024-04-23T19:21:02.173950+00:00	GHSA Importer	Affected by	VCID-983g-2nuz-aaaa	None	34.0.0rc4
2024-04-23T19:21:01.840574+00:00	GHSA Importer	Affected by	VCID-983g-2nuz-aaaa	https://github.com/advisories/GHSA-q4hg-rmq2-52q9	34.0.0rc4
2024-04-23T19:18:42.633443+00:00	GHSA Importer	Affected by	VCID-2vk8-jkgn-aaap	https://github.com/advisories/GHSA-8vmx-qmch-mpqg	34.0.0rc4
2024-04-23T19:14:56.770789+00:00	GHSA Importer	Affected by	VCID-h3d2-7evg-aaac	https://github.com/advisories/GHSA-6v52-mj5r-7j2m	34.0.0rc4
2024-04-23T19:14:26.380532+00:00	GHSA Importer	Affected by	VCID-cp4z-y57s-aaah	https://github.com/advisories/GHSA-r4x2-3cq5-hqvp	34.0.0rc4
2024-04-23T19:02:14.000564+00:00	GHSA Importer	Affected by	VCID-b2z1-15m4-aaac	https://github.com/advisories/GHSA-m59c-jpc8-m2x4	34.0.0rc4
2024-04-23T19:01:38.756072+00:00	GHSA Importer	Affected by	VCID-9pu2-we8w-aaar	https://github.com/advisories/GHSA-jx6h-3fjx-cgv5	34.0.0rc4
2024-04-23T17:35:15.069388+00:00	GHSA Importer	Affected by	VCID-417x-h7g6-aaar	https://github.com/advisories/GHSA-r53m-pfr5-7v87	34.0.0rc4
2024-04-23T17:35:14.528071+00:00	GHSA Importer	Affected by	VCID-417x-h7g6-aaar	None	34.0.0rc4
2024-01-10T08:18:03.993951+00:00	GitLab Importer	Affected by	VCID-983g-2nuz-aaaa	None	34.0.0rc2
2024-01-10T08:18:03.437504+00:00	GitLab Importer	Affected by	VCID-983g-2nuz-aaaa	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2019-10072.yml	34.0.0rc2
2024-01-10T06:33:47.396630+00:00	GitLab Importer	Affected by	VCID-e318-2aad-aaag	None	34.0.0rc2
2024-01-10T06:24:19.059447+00:00	GitLab Importer	Affected by	VCID-7sta-sz5f-aaap	None	34.0.0rc2
2024-01-10T06:24:16.867884+00:00	GitLab Importer	Affected by	VCID-7sta-sz5f-aaap	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2023-28708.yml	34.0.0rc2
2024-01-10T03:02:26.027620+00:00	GHSA Importer	Affected by	VCID-pcvp-wv2z-aaas	https://github.com/advisories/GHSA-fccv-jmmp-qg76	34.0.0rc2
2024-01-10T02:59:10.106187+00:00	GHSA Importer	Affected by	VCID-r78u-gre6-aaaj	https://github.com/advisories/GHSA-r6j3-px5g-cq3x	34.0.0rc2
2024-01-10T02:56:05.101466+00:00	GHSA Importer	Affected by	VCID-f68z-z5n7-aaae	https://github.com/advisories/GHSA-g8pj-r55q-5c2v	34.0.0rc2
2024-01-10T02:53:51.495998+00:00	GHSA Importer	Affected by	VCID-e318-2aad-aaag	https://github.com/advisories/GHSA-q3mw-pvr8-9ggc	34.0.0rc2
2024-01-10T02:53:46.938817+00:00	GHSA Importer	Affected by	VCID-e318-2aad-aaag	None	34.0.0rc2
2024-01-09T21:12:28.195112+00:00	GHSA Importer	Affected by	VCID-983g-2nuz-aaaa	None	34.0.0rc2
2024-01-09T21:12:27.820303+00:00	GHSA Importer	Affected by	VCID-983g-2nuz-aaaa	https://github.com/advisories/GHSA-q4hg-rmq2-52q9	34.0.0rc2
2024-01-09T21:09:59.113238+00:00	GHSA Importer	Affected by	VCID-2vk8-jkgn-aaap	https://github.com/advisories/GHSA-8vmx-qmch-mpqg	34.0.0rc2
2024-01-09T21:05:27.703387+00:00	GHSA Importer	Affected by	VCID-h3d2-7evg-aaac	https://github.com/advisories/GHSA-6v52-mj5r-7j2m	34.0.0rc2
2024-01-09T21:04:56.574739+00:00	GHSA Importer	Affected by	VCID-cp4z-y57s-aaah	https://github.com/advisories/GHSA-r4x2-3cq5-hqvp	34.0.0rc2
2024-01-09T20:54:11.017407+00:00	GHSA Importer	Affected by	VCID-b2z1-15m4-aaac	https://github.com/advisories/GHSA-m59c-jpc8-m2x4	34.0.0rc2
2024-01-09T20:53:42.310763+00:00	GHSA Importer	Affected by	VCID-9pu2-we8w-aaar	https://github.com/advisories/GHSA-jx6h-3fjx-cgv5	34.0.0rc2
2024-01-09T19:34:28.694919+00:00	GHSA Importer	Affected by	VCID-417x-h7g6-aaar	https://github.com/advisories/GHSA-r53m-pfr5-7v87	34.0.0rc2
2024-01-09T19:34:28.147505+00:00	GHSA Importer	Affected by	VCID-417x-h7g6-aaar	None	34.0.0rc2
2024-01-04T01:03:24.392748+00:00	GitLab Importer	Affected by	VCID-983g-2nuz-aaaa	None	34.0.0rc1
2024-01-04T01:03:23.844100+00:00	GitLab Importer	Affected by	VCID-983g-2nuz-aaaa	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2019-10072.yml	34.0.0rc1
2024-01-03T23:20:05.789632+00:00	GitLab Importer	Affected by	VCID-e318-2aad-aaag	None	34.0.0rc1
2024-01-03T23:10:49.729010+00:00	GitLab Importer	Affected by	VCID-7sta-sz5f-aaap	None	34.0.0rc1
2024-01-03T23:10:47.527290+00:00	GitLab Importer	Affected by	VCID-7sta-sz5f-aaap	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat.embed/tomcat-embed-core/CVE-2023-28708.yml	34.0.0rc1
2024-01-03T16:14:34.347684+00:00	GHSA Importer	Affected by	VCID-983g-2nuz-aaaa	None	34.0.0rc1
2024-01-03T15:11:32.568522+00:00	GHSA Importer	Affected by	VCID-417x-h7g6-aaar	None	34.0.0rc1