Search for packages
| purl | pkg:maven/org.apache.tomcat/tomcat@8.0.0-RC2 |
| Tags | Ghost |
| Next non-vulnerable version | None. |
| Latest non-vulnerable version | None. |
| Risk | 4.0 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-74gj-w1me-aaaj
Aliases: CVE-2014-0095 GHSA-wf5v-jhxj-q632 |
java/org/apache/coyote/ajp/AbstractAjpProcessor.java in Apache Tomcat 8.x before 8.0.4 allows remote attackers to cause a denial of service (thread consumption) by using a "Content-Length: 0" AJP request to trigger a hang in request processing. |
Affected by 39 other vulnerabilities. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| This package is not known to fix vulnerabilities. | ||
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2025-03-28T13:19:27.306642+00:00 | Apache Tomcat Importer | Affected by | VCID-74gj-w1me-aaaj | https://tomcat.apache.org/security-8.html | 36.0.0 |
| 2024-09-18T08:17:37.563101+00:00 | Apache Tomcat Importer | Affected by | VCID-74gj-w1me-aaaj | https://tomcat.apache.org/security-8.html | 34.0.1 |
| 2024-01-04T02:15:40.908680+00:00 | Apache Tomcat Importer | Affected by | VCID-74gj-w1me-aaaj | https://tomcat.apache.org/security-8.html | 34.0.0rc1 |