Search for packages
Package details: pkg:maven/org.apache.tomcat/tomcat@7.0.80
purl pkg:maven/org.apache.tomcat/tomcat@7.0.80
Tags Ghost
Next non-vulnerable version None.
Latest non-vulnerable version None.
Risk 10.0
Vulnerabilities affecting this package (1)
Vulnerability Summary Fixed by
VCID-m8ve-za8b-aaap
Aliases:
CVE-2017-12616
GHSA-8qq4-8jvq-mfw4
Information Exposure When using a `VirtualDirContext` with Apache Tomcat it is possible to bypass security constraints and/or view the source code of JSPs for resources served by the `VirtualDirContext` using a specially crafted request.
7.0.81
Affected by 24 other vulnerabilities.
Vulnerabilities fixed by this package (0)
Vulnerability Summary Aliases
This package is not known to fix vulnerabilities.

Date Actor Action Vulnerability Source VulnerableCode Version
2025-03-28T13:19:28.937422+00:00 Apache Tomcat Importer Affected by VCID-m8ve-za8b-aaap https://tomcat.apache.org/security-7.html 36.0.0
2024-09-18T08:17:39.010044+00:00 Apache Tomcat Importer Affected by VCID-m8ve-za8b-aaap https://tomcat.apache.org/security-7.html 34.0.1
2024-01-04T02:15:42.338778+00:00 Apache Tomcat Importer Affected by VCID-m8ve-za8b-aaap https://tomcat.apache.org/security-7.html 34.0.0rc1