VulnerableCode Package Details - pkg:maven/org.apache.tomcat/tomcat-coyote@10.1.0-M16

Search for packages

Package details: pkg:maven/org.apache.tomcat/tomcat-coyote@10.1.0-M16

Essentials
History (1)

purl	pkg:maven/org.apache.tomcat/tomcat-coyote@10.1.0-M16

Next non-vulnerable version	10.1.40
Latest non-vulnerable version	11.0.10
Risk	10.0

Vulnerabilities affecting this package (1)

Vulnerability	Summary	Fixed by
VCID-w5uu-nj7c-wka6 Aliases: CVE-2023-44487 GHSA-qppj-fm5r-hxr3 VSV00013	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.	10.1.14 Affected by 2 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 11.0.0-M12 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}

Vulnerability

Summary

Fixed by

VCID-w5uu-nj7c-wka6
Aliases:
CVE-2023-44487
GHSA-qppj-fm5r-hxr3
VSV00013

The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.

10.1.14
Affected by 2 other vulnerabilities.

11.0.0-M12
Affected by 1 other vulnerability.

Vulnerabilities fixed by this package (0)

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2025-08-01T09:31:03.433500+00:00	GHSA Importer	Affected by	VCID-w5uu-nj7c-wka6	https://github.com/advisories/GHSA-qppj-fm5r-hxr3	37.0.0