Search for vulnerabilities
Vulnerability details: VCID-7etq-15ab-rfe5
Vulnerability ID VCID-7etq-15ab-rfe5
Aliases CVE-2010-1157
GHSA-w6q7-ww2x-7gm3
Summary
Status Published
Exploitability 2.0
Weighted Severity 6.2
Risk 10.0
Affected and Fixed Packages Package Details
Weaknesses (3)
CWE-200 Exposure of Sensitive Information to an Unauthorized Actor
CWE-1035 OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities
CWE-937 OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities
System Score Found at
epss 0.13817 https://api.first.org/data/v1/epss?cve=CVE-2010-1157
epss 0.13817 https://api.first.org/data/v1/epss?cve=CVE-2010-1157
epss 0.13817 https://api.first.org/data/v1/epss?cve=CVE-2010-1157
epss 0.13817 https://api.first.org/data/v1/epss?cve=CVE-2010-1157
epss 0.13817 https://api.first.org/data/v1/epss?cve=CVE-2010-1157
epss 0.13817 https://api.first.org/data/v1/epss?cve=CVE-2010-1157
epss 0.13817 https://api.first.org/data/v1/epss?cve=CVE-2010-1157
epss 0.13817 https://api.first.org/data/v1/epss?cve=CVE-2010-1157
epss 0.13817 https://api.first.org/data/v1/epss?cve=CVE-2010-1157
epss 0.13817 https://api.first.org/data/v1/epss?cve=CVE-2010-1157
epss 0.17005 https://api.first.org/data/v1/epss?cve=CVE-2010-1157
epss 0.17005 https://api.first.org/data/v1/epss?cve=CVE-2010-1157
epss 0.17005 https://api.first.org/data/v1/epss?cve=CVE-2010-1157
epss 0.17005 https://api.first.org/data/v1/epss?cve=CVE-2010-1157
epss 0.17005 https://api.first.org/data/v1/epss?cve=CVE-2010-1157
epss 0.17005 https://api.first.org/data/v1/epss?cve=CVE-2010-1157
epss 0.17005 https://api.first.org/data/v1/epss?cve=CVE-2010-1157
epss 0.18099 https://api.first.org/data/v1/epss?cve=CVE-2010-1157
epss 0.18099 https://api.first.org/data/v1/epss?cve=CVE-2010-1157
epss 0.18099 https://api.first.org/data/v1/epss?cve=CVE-2010-1157
apache_tomcat Low https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1157
cvssv3.1_qr MODERATE https://github.com/advisories/GHSA-w6q7-ww2x-7gm3
generic_textual MODERATE https://lists.apache.org/thread.html/06cfb634bc7bf37af7d8f760f118018746ad8efbd519c4b789ac9c2e@%3Cdev.tomcat.apache.org%3E
generic_textual MODERATE https://lists.apache.org/thread.html/06cfb634bc7bf37af7d8f760f118018746ad8efbd519c4b789ac9c2e%40%3Cdev.tomcat.apache.org%3E
generic_textual MODERATE https://lists.apache.org/thread.html/8dcaf7c3894d66cb717646ea1504ea6e300021c85bb4e677dc16b1aa@%3Cdev.tomcat.apache.org%3E
generic_textual MODERATE https://lists.apache.org/thread.html/8dcaf7c3894d66cb717646ea1504ea6e300021c85bb4e677dc16b1aa%40%3Cdev.tomcat.apache.org%3E
generic_textual MODERATE https://lists.apache.org/thread.html/r3aacc40356defc3f248aa504b1e48e819dd0471a0a83349080c6bcbf@%3Cdev.tomcat.apache.org%3E
generic_textual MODERATE https://lists.apache.org/thread.html/r3aacc40356defc3f248aa504b1e48e819dd0471a0a83349080c6bcbf%40%3Cdev.tomcat.apache.org%3E
generic_textual MODERATE https://lists.apache.org/thread.html/r584a714f141eff7b1c358d4679288177bd4ca4558e9999d15867d4b5@%3Cdev.tomcat.apache.org%3E
generic_textual MODERATE https://lists.apache.org/thread.html/r584a714f141eff7b1c358d4679288177bd4ca4558e9999d15867d4b5%40%3Cdev.tomcat.apache.org%3E
generic_textual MODERATE https://lists.apple.com/archives/Security-announce/2011//Oct/msg00003.html
generic_textual MODERATE https://lists.opensuse.org/opensuse-security-announce/2010-09/msg00006.html
generic_textual MODERATE https://marc.info/?l=bugtraq&m=129070310906557&w=2
generic_textual MODERATE https://marc.info/?l=bugtraq&m=133469267822771&w=2
generic_textual MODERATE https://marc.info/?l=bugtraq&m=136485229118404&w=2
generic_textual MODERATE https://marc.info/?l=bugtraq&m=139344343412337&w=2
generic_textual MODERATE https://nvd.nist.gov/vuln/detail/CVE-2010-1157
generic_textual MODERATE https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19492
generic_textual MODERATE https://support.apple.com/kb/HT5002
generic_textual MODERATE https://svn.apache.org/viewvc?view=revision&revision=936540
generic_textual MODERATE https://svn.apache.org/viewvc?view=revision&revision=936541
generic_textual MODERATE https://tomcat.apache.org/security-5.html
generic_textual MODERATE https://tomcat.apache.org/security-6.html
generic_textual MODERATE https://www.debian.org/security/2011/dsa-2207
Reference id Reference type URL
http://lists.opensuse.org/opensuse-security-announce/2010-09/msg00006.html
http://marc.info/?l=bugtraq&m=129070310906557&w=2
http://marc.info/?l=bugtraq&m=133469267822771&w=2
http://marc.info/?l=bugtraq&m=136485229118404&w=2
http://marc.info/?l=bugtraq&m=139344343412337&w=2
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-1157.json
https://api.first.org/data/v1/epss?cve=CVE-2010-1157
https://lists.apache.org/thread.html/06cfb634bc7bf37af7d8f760f118018746ad8efbd519c4b789ac9c2e@%3Cdev.tomcat.apache.org%3E
https://lists.apache.org/thread.html/06cfb634bc7bf37af7d8f760f118018746ad8efbd519c4b789ac9c2e%40%3Cdev.tomcat.apache.org%3E
https://lists.apache.org/thread.html/8dcaf7c3894d66cb717646ea1504ea6e300021c85bb4e677dc16b1aa@%3Cdev.tomcat.apache.org%3E
https://lists.apache.org/thread.html/8dcaf7c3894d66cb717646ea1504ea6e300021c85bb4e677dc16b1aa%40%3Cdev.tomcat.apache.org%3E
https://lists.apache.org/thread.html/r3aacc40356defc3f248aa504b1e48e819dd0471a0a83349080c6bcbf@%3Cdev.tomcat.apache.org%3E
https://lists.apache.org/thread.html/r3aacc40356defc3f248aa504b1e48e819dd0471a0a83349080c6bcbf%40%3Cdev.tomcat.apache.org%3E
https://lists.apache.org/thread.html/r584a714f141eff7b1c358d4679288177bd4ca4558e9999d15867d4b5@%3Cdev.tomcat.apache.org%3E
https://lists.apache.org/thread.html/r584a714f141eff7b1c358d4679288177bd4ca4558e9999d15867d4b5%40%3Cdev.tomcat.apache.org%3E
https://lists.apple.com/archives/Security-announce/2011//Oct/msg00003.html
https://lists.opensuse.org/opensuse-security-announce/2010-09/msg00006.html
https://marc.info/?l=bugtraq&m=129070310906557&w=2
https://marc.info/?l=bugtraq&m=133469267822771&w=2
https://marc.info/?l=bugtraq&m=136485229118404&w=2
https://marc.info/?l=bugtraq&m=139344343412337&w=2
https://nvd.nist.gov/vuln/detail/CVE-2010-1157
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19492
https://support.apple.com/kb/HT5002
https://svn.apache.org/viewvc?view=revision&revision=936540
https://svn.apache.org/viewvc?view=revision&revision=936541
https://svn.apache.org/viewvc?view=rev&rev=936540
https://svn.apache.org/viewvc?view=rev&rev=936541
https://tomcat.apache.org/security-5.html
https://tomcat.apache.org/security-6.html
http://support.apple.com/kb/HT5002
http://svn.apache.org/viewvc?view=revision&revision=936540
http://svn.apache.org/viewvc?view=revision&revision=936541
https://www.debian.org/security/2011/dsa-2207
http://tomcat.apache.org/security-5.html
http://tomcat.apache.org/security-6.html
http://www.debian.org/security/2011/dsa-2207
http://www.vmware.com/security/advisories/VMSA-2011-0003.html
http://www.vmware.com/support/vsphere4/doc/vsp_vc41_u1_rel_notes.html
585331 https://bugzilla.redhat.com/show_bug.cgi?id=585331
CVE-2010-1157 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1157
CVE-2010-1157 Exploit https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/remote/12343.txt
GHSA-w6q7-ww2x-7gm3 https://github.com/advisories/GHSA-w6q7-ww2x-7gm3
RHSA-2010:0584 https://access.redhat.com/errata/RHSA-2010:0584
Data source Exploit-DB
Date added April 21, 2010
Description Apache Tomcat 5.5.0 < 5.5.29 / 6.0.0 < 6.0.26 - Information Disclosure
Ransomware campaign use Known
Source publication date April 22, 2010
Exploit type remote
Platform multiple
Exploit Prediction Scoring System (EPSS)
Percentile 0.94002
EPSS Score 0.13817
Published At July 30, 2025, 12:55 p.m.
Date Actor Action Source VulnerableCode Version
2025-07-31T08:03:28.155527+00:00 Apache Tomcat Importer Import https://tomcat.apache.org/security-6.html 37.0.0