VulnerableCode Package Details - pkg:maven/org.apache.tomcat/tomcat@9.0.9

Search for packages

Package details: pkg:maven/org.apache.tomcat/tomcat@9.0.9

Essentials
History (13)

purl	pkg:maven/org.apache.tomcat/tomcat@9.0.9
Tags	Ghost

Next non-vulnerable version	None.
Latest non-vulnerable version	None.
Risk	4.1

Vulnerabilities affecting this package (2)

Vulnerability	Summary	Fixed by
VCID-7c2n-n9ga-aaar Aliases: CVE-2018-8034 GHSA-46j3-r4pj-4835	The host name verification missing in Apache Tomcat	9.0.10 Affected by 44 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-h3d2-7evg-aaac Aliases: CVE-2018-8037 GHSA-6v52-mj5r-7j2m	Moderate severity vulnerability that affects org.apache.tomcat.embed:tomcat-embed-core	9.0.10 Affected by 44 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}

Vulnerabilities fixed by this package (0)

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2025-03-28T13:19:19.197838+00:00	Apache Tomcat Importer	Fixing	VCID-cp4z-y57s-aaah	https://tomcat.apache.org/security-9.html	36.0.0
2025-03-28T13:19:19.133323+00:00	Apache Tomcat Importer	Affected by	VCID-h3d2-7evg-aaac	https://tomcat.apache.org/security-9.html	36.0.0
2025-03-28T13:19:19.036460+00:00	Apache Tomcat Importer	Affected by	VCID-7c2n-n9ga-aaar	https://tomcat.apache.org/security-9.html	36.0.0
2024-09-18T08:17:29.985754+00:00	Apache Tomcat Importer	Fixing	VCID-cp4z-y57s-aaah	https://tomcat.apache.org/security-9.html	34.0.1
2024-09-18T08:17:29.926526+00:00	Apache Tomcat Importer	Affected by	VCID-h3d2-7evg-aaac	https://tomcat.apache.org/security-9.html	34.0.1
2024-09-18T08:17:29.848550+00:00	Apache Tomcat Importer	Affected by	VCID-7c2n-n9ga-aaar	https://tomcat.apache.org/security-9.html	34.0.1
2024-09-17T22:36:48.844638+00:00	GitLab Importer	Affected by	VCID-7c2n-n9ga-aaar	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat/tomcat/CVE-2018-8034.yml	34.0.1
2024-09-17T22:36:43.413997+00:00	GitLab Importer	Affected by	VCID-h3d2-7evg-aaac	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat/tomcat/CVE-2018-8037.yml	34.0.1
2024-01-04T02:15:34.173342+00:00	Apache Tomcat Importer	Fixing	VCID-cp4z-y57s-aaah	https://tomcat.apache.org/security-9.html	34.0.0rc1
2024-01-04T02:15:34.120992+00:00	Apache Tomcat Importer	Affected by	VCID-h3d2-7evg-aaac	https://tomcat.apache.org/security-9.html	34.0.0rc1
2024-01-04T02:15:34.058856+00:00	Apache Tomcat Importer	Affected by	VCID-7c2n-n9ga-aaar	https://tomcat.apache.org/security-9.html	34.0.0rc1
2024-01-03T17:59:52.741330+00:00	GitLab Importer	Affected by	VCID-7c2n-n9ga-aaar	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat/tomcat/CVE-2018-8034.yml	34.0.0rc1
2024-01-03T17:59:47.201854+00:00	GitLab Importer	Affected by	VCID-h3d2-7evg-aaac	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat/tomcat/CVE-2018-8037.yml	34.0.0rc1