VulnerableCode Package Details - pkg:maven/org.apache.tomcat/tomcat-coyote@9.0.96

Search for packages

Vulnerability	Summary	Fixed by
VCID-bfxu-nwcp-1kd6 Aliases: CVE-2025-31650 GHSA-3p2h-wqq4-wf4h	multiple issues	9.0.104 Affected by 0 other vulnerabilities. 10.1.40 Affected by 0 other vulnerabilities. 11.0.6 Affected by 0 other vulnerabilities.

Vulnerability

Summary

Fixed by

VCID-bfxu-nwcp-1kd6
Aliases:
CVE-2025-31650
GHSA-3p2h-wqq4-wf4h

multiple issues

9.0.104
Affected by 0 other vulnerabilities.

10.1.40
Affected by 0 other vulnerabilities.

11.0.6
Affected by 0 other vulnerabilities.

Vulnerability	Summary	Aliases
VCID-rcr4-rbsk-myej	Apache Tomcat Request and/or response mix-up Incorrect object re-cycling and re-use vulnerability in Apache Tomcat. Incorrect recycling of the request and response used by HTTP/2 requests could lead to request and/or response mix-up between users. This issue affects Apache Tomcat: from 11.0.0-M23 through 11.0.0-M26, from 10.1.27 through 10.1.30, from 9.0.92 through 9.0.95. Users are recommended to upgrade to version 11.0.0, 10.1.31 or 9.0.96, which fixes the issue.	CVE-2024-52317 GHSA-qvf5-hvjx-wm27

Vulnerability

Summary

Aliases

VCID-rcr4-rbsk-myej

Apache Tomcat Request and/or response mix-up Incorrect object re-cycling and re-use vulnerability in Apache Tomcat. Incorrect recycling of the request and response used by HTTP/2 requests could lead to request and/or response mix-up between users. This issue affects Apache Tomcat: from 11.0.0-M23 through 11.0.0-M26, from 10.1.27 through 10.1.30, from 9.0.92 through 9.0.95. Users are recommended to upgrade to version 11.0.0, 10.1.31 or 9.0.96, which fixes the issue.

CVE-2024-52317
GHSA-qvf5-hvjx-wm27

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2025-07-03T19:26:18.896129+00:00	GitLab Importer	Affected by	VCID-bfxu-nwcp-1kd6	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat/tomcat-coyote/CVE-2025-31650.yml	37.0.0
2025-07-03T19:15:56.413327+00:00	GitLab Importer	Fixing	VCID-rcr4-rbsk-myej	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat/tomcat-coyote/CVE-2024-52317.yml	37.0.0
2025-07-03T13:57:26.698112+00:00	GitLab Importer	Fixing	VCID-rcr4-rbsk-myej	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat/tomcat-coyote/CVE-2024-52317.yml	36.1.3
2025-07-01T14:35:51.318279+00:00	GHSA Importer	Fixing	VCID-rcr4-rbsk-myej	https://github.com/advisories/GHSA-qvf5-hvjx-wm27	36.1.3
2025-07-01T12:10:38.450760+00:00	GithubOSV Importer	Fixing	VCID-rcr4-rbsk-myej	https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2024/11/GHSA-qvf5-hvjx-wm27/GHSA-qvf5-hvjx-wm27.json	36.1.3