[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2007-5461":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-05T08:55:32.481Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":40,"aliases":74,"duplicate_of":9,"upstream":76,"downstream":77,"duplicates":102,"related":103,"reserved_at":9,"published_at":104,"modified_at":105,"state":106,"summary":107,"references_raw":114,"kevs":480,"epss":481,"epss_history":484,"metrics":736,"affected":741},"CVE-2007-5461","Absolute path traversal vulnerability in Apache Tomcat 4.0.0 through 4.0.6, 4.1.0, 5.0.0, 5.5.0 through 5.5.25, and 6.0.0 through 6.0.14, under certain configurations, allows remote authenticated users to read arbitrary files via a WebDAV write request that specifies an entity with a SYSTEM tag.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":18,"capec":19},"CWE-22","Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')","The product uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the product does not properly neutralize special elements within the pathname that can cause the pathname to resolve to a location that is outside of the restricted directory.","weakness","Stable","Base","High",[20,24,28,32,36],{"id":21,"name":22,"techniques":23},"CAPEC-126","Path Traversal",[],{"id":25,"name":26,"techniques":27},"CAPEC-64","Using Slashes and URL Encoding Combined to Bypass Validation Logic",[],{"id":29,"name":30,"techniques":31},"CAPEC-76","Manipulating Web Input to File System Calls",[],{"id":33,"name":34,"techniques":35},"CAPEC-78","Using Escaped Slashes in Alternate Encoding",[],{"id":37,"name":38,"techniques":39},"CAPEC-79","Using Slashes in Alternate Encoding",[],[41,50,64],{"_key":42,"name":43,"source":44,"url":45,"maturity":46,"reliability_score":47,"verified":48,"type":9,"platforms":49,"requires_auth":9,"exploitdb":9,"metasploit":9},"REF_983052AFC1B5541A","Exploit Reference (marc.info)","reference","http://marc.info/?l=full-disclosure&m=119239530508382","unknown",0.2,false,[],{"_key":51,"name":52,"source":53,"url":54,"maturity":55,"reliability_score":56,"verified":57,"type":58,"platforms":59,"requires_auth":9,"exploitdb":61,"metasploit":9},"4552","Apache Tomcat - WebDAV SSL Remote File Disclosure","exploit-database","https://www.exploit-db.com/exploits/4552","weaponized",0.8,true,"remote",[60],"linux",{"verified":57,"type":58,"platform":60,"file":62,"codes":63},"exploits/linux/remote/4552.pl",[7],{"_key":65,"name":66,"source":53,"url":67,"maturity":55,"reliability_score":56,"verified":57,"type":58,"platforms":68,"requires_auth":9,"exploitdb":70,"metasploit":9},"4530","Apache Tomcat - 'WebDAV' Remote File Disclosure","https://www.exploit-db.com/exploits/4530",[69],"multiple",{"verified":57,"type":58,"platform":69,"file":71,"codes":72},"exploits/multiple/remote/4530.pl",[73,7],"OSVDB-38187",[75],"GHSA-v5p2-vg3c-pmrr",[],[78,80,82,84,86,88,90,92,94,96,98,100],{"_key":79},"RHSA-2008:0042",{"_key":81},"RHSA-2008:0151",{"_key":83},"RHSA-2008:0158",{"_key":85},"RHSA-2008:0195",{"_key":87},"RHSA-2008:0213",{"_key":89},"RHSA-2008:0261",{"_key":91},"RHSA-2008:0524",{"_key":93},"RHSA-2008:0630",{"_key":95},"RHSA-2008:0862",{"_key":97},"RHSA-2010:0602",{"_key":99},"DSA-1447-1",{"_key":101},"DSA-1453-1",[],[],"2007-10-15T18:00:00.000Z","2024-08-07T15:31:58.669Z","Modified",{"cisa_kev":48,"cisa_ransomware":48,"cisa_vendor":9,"epss_severity":108,"epss_score":109,"severity":108,"severity_score":110,"severity_version":111,"severity_source":112,"severity_vector":113,"severity_status":106},"low",0.06505,3.5,"v2.0","nvd","AV:N/AC:M/Au:S/C:P/I:N/A:N",[115,124,129,135,139,145,151,155,160,164,169,174,179,185,189,194,198,203,207,211,215,219,223,227,231,235,239,243,247,251,256,261,265,269,274,278,282,287,291,295,299,303,307,311,316,320,324,328,332,336,340,344,348,352,356,361,365,369,374,378,382,386,390,395,399,403,407,411,415,419,423,427,431,436,440,444,448,452,456,460,464,468,472,476],{"url":116,"sources":117,"tags":120},"http://www.debian.org/security/2008/dsa-1453",[118,112,119],"cve.org","osv_maven",[121,122,123],"Vendor Advisory","X Refsource DEBIAN","WEB",{"url":125,"sources":126,"tags":127},"http://tomcat.apache.org/security-4.html",[118,112,119],[128,123],"X Refsource CONFIRM",{"url":130,"sources":131,"tags":132},"http://secunia.com/advisories/30908",[118,112],[133,134],"Third Party Advisory","X Refsource SECUNIA",{"url":136,"sources":137,"tags":138},"http://support.apple.com/kb/HT2163",[118,112,119],[128,123],{"url":140,"sources":141,"tags":142},"http://mail-archives.apache.org/mod_mbox/tomcat-users/200710.mbox/%3C47135C2D.1000705%40apache.org%3E",[118,112],[143,144],"Mailing List","X Refsource MLIST",{"url":146,"sources":147,"tags":148},"http://www.securityfocus.com/bid/26070",[118,112],[149,150],"VDB Entry","X Refsource BID",{"url":152,"sources":153,"tags":154},"http://secunia.com/advisories/27446",[118,112],[133,134],{"url":45,"sources":156,"tags":157},[118,112,119],[143,158,159,123],"X Refsource FULLDISC","Exploit",{"url":161,"sources":162,"tags":163},"http://secunia.com/advisories/30676",[118,112],[133,134],{"url":165,"sources":166,"tags":167},"http://rhn.redhat.com/errata/RHSA-2008-0630.html",[118,112,119],[121,168,123],"X Refsource REDHAT",{"url":170,"sources":171,"tags":172},"http://sunsolve.sun.com/search/document.do?assetkey=1-26-239312-1",[118,112],[121,173],"X Refsource SUNALERT",{"url":175,"sources":176,"tags":177},"https://exchange.xforce.ibmcloud.com/vulnerabilities/37243",[118,112,119],[149,178,123],"X Refsource XF",{"url":180,"sources":181,"tags":182},"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9202",[118,112],[149,183,184],"Signature","X Refsource OVAL",{"url":186,"sources":187,"tags":188},"http://www.redhat.com/support/errata/RHSA-2008-0862.html",[118,112,119],[121,168,123],{"url":190,"sources":191,"tags":192},"http://www.vupen.com/english/advisories/2008/1981/references",[118,112],[149,193],"X Refsource VUPEN",{"url":195,"sources":196,"tags":197},"http://secunia.com/advisories/30899",[118,112],[133,134],{"url":199,"sources":200,"tags":201},"https://www.redhat.com/archives/fedora-package-announce/2007-November/msg00525.html",[118,112,119],[121,202,123],"X Refsource FEDORA",{"url":204,"sources":205,"tags":206},"http://secunia.com/advisories/31493",[118,112],[133,134],{"url":208,"sources":209,"tags":210},"http://secunia.com/advisories/29242",[118,112],[133,134],{"url":212,"sources":213,"tags":214},"http://www.vupen.com/english/advisories/2008/2823",[118,112],[149,193],{"url":216,"sources":217,"tags":218},"http://secunia.com/advisories/37460",[118,112],[133,134],{"url":220,"sources":221,"tags":222},"http://www.vupen.com/english/advisories/2008/1979/references",[118,112],[149,193],{"url":224,"sources":225,"tags":226},"http://secunia.com/advisories/29313",[118,112],[133,134],{"url":228,"sources":229,"tags":230},"http://www.securityfocus.com/bid/31681",[118,112],[149,150],{"url":232,"sources":233,"tags":234},"http://secunia.com/advisories/32120",[118,112],[133,134],{"url":236,"sources":237,"tags":238},"http://www.vupen.com/english/advisories/2007/3671",[118,112],[149,193],{"url":240,"sources":241,"tags":242},"http://www.vmware.com/security/advisories/VMSA-2009-0016.html",[118,112],[128],{"url":244,"sources":245,"tags":246},"http://secunia.com/advisories/27398",[118,112],[133,134],{"url":248,"sources":249,"tags":250},"http://www.redhat.com/support/errata/RHSA-2008-0042.html",[118,112,119],[121,168,123],{"url":252,"sources":253,"tags":254},"http://lists.opensuse.org/opensuse-security-announce/2008-03/msg00001.html",[118,112,119],[121,255,123],"X Refsource SUSE",{"url":257,"sources":258,"tags":259},"http://www.securitytracker.com/id?1018864",[118,112],[149,260],"X Refsource SECTRACK",{"url":262,"sources":263,"tags":264},"http://secunia.com/advisories/28361",[118,112],[133,134],{"url":266,"sources":267,"tags":268},"http://secunia.com/advisories/28317",[118,112],[133,134],{"url":270,"sources":271,"tags":272},"http://lists.apple.com/archives/security-announce/2008//Jun/msg00002.html",[118,112,119],[121,273,123],"X Refsource APPLE",{"url":275,"sources":276,"tags":277},"http://support.avaya.com/elmodocs2/security/ASA-2008-401.htm",[118,112],[128],{"url":279,"sources":280,"tags":281},"http://www.vupen.com/english/advisories/2007/3674",[118,112],[149,193],{"url":283,"sources":284,"tags":285},"http://www.securityfocus.com/archive/1/507985/100/0/threaded",[118,112],[143,286],"X Refsource BUGTRAQ",{"url":288,"sources":289,"tags":290},"http://lists.opensuse.org/opensuse-security-announce/2009-02/msg00002.html",[118,112,119],[121,255,123],{"url":292,"sources":293,"tags":294},"http://tomcat.apache.org/security-6.html",[118,112,119],[128,123],{"url":296,"sources":297,"tags":298},"http://secunia.com/advisories/57126",[118,112],[133,134],{"url":300,"sources":301,"tags":302},"http://secunia.com/advisories/32222",[118,112],[133,134],{"url":304,"sources":305,"tags":306},"http://secunia.com/advisories/30802",[118,112],[133,134],{"url":308,"sources":309,"tags":310},"http://www.redhat.com/support/errata/RHSA-2008-0195.html",[118,112,119],[121,168,123],{"url":312,"sources":313,"tags":314},"http://security.gentoo.org/glsa/glsa-200804-10.xml",[118,112,119],[121,315,123],"X Refsource GENTOO",{"url":317,"sources":318,"tags":319},"http://geronimo.apache.org/2007/10/18/potential-vulnerability-in-apache-tomcat-webdav-servlet.html",[118,112,119],[128,123],{"url":321,"sources":322,"tags":323},"http://www.vupen.com/english/advisories/2007/3622",[118,112],[149,193],{"url":325,"sources":326,"tags":327},"http://www-1.ibm.com/support/docview.wss?uid=swg21286112",[118,112],[128],{"url":329,"sources":330,"tags":331},"http://secunia.com/advisories/27727",[118,112],[133,134],{"url":333,"sources":334,"tags":335},"http://www.vupen.com/english/advisories/2008/1856/references",[118,112],[149,193],{"url":337,"sources":338,"tags":339},"http://www.vmware.com/security/advisories/VMSA-2008-0010.html",[118,112],[128],{"url":341,"sources":342,"tags":343},"http://tomcat.apache.org/security-5.html",[118,112,119],[128,123],{"url":345,"sources":346,"tags":347},"http://www.vupen.com/english/advisories/2008/2780",[118,112],[149,193],{"url":349,"sources":350,"tags":351},"http://www.redhat.com/support/errata/RHSA-2008-0261.html",[118,112,119],[121,168,123],{"url":67,"sources":353,"tags":354},[118,112],[159,355],"X Refsource EXPLOIT DB",{"url":357,"sources":358,"tags":359},"http://www.mandriva.com/security/advisories?name=MDVSA-2009:136",[118,112],[121,360],"X Refsource MANDRIVA",{"url":362,"sources":363,"tags":364},"http://www.debian.org/security/2008/dsa-1447",[118,112,119],[121,122,123],{"url":366,"sources":367,"tags":368},"http://secunia.com/advisories/27481",[118,112],[133,134],{"url":370,"sources":371,"tags":372},"http://marc.info/?l=bugtraq&m=139344343412337&w=2",[118,112,119],[121,373,123],"X Refsource HP",{"url":375,"sources":376,"tags":377},"http://lists.apple.com/archives/security-announce/2008/Oct/msg00001.html",[118,112,119],[121,273,123],{"url":379,"sources":380,"tags":381},"http://support.apple.com/kb/HT3216",[118,112,119],[128,123],{"url":383,"sources":384,"tags":385},"http://www.mandriva.com/security/advisories?name=MDKSA-2007:241",[118,112],[121,360],{"url":387,"sources":388,"tags":389},"http://secunia.com/advisories/29711",[118,112],[133,134],{"url":391,"sources":392,"tags":393},"http://issues.apache.org/jira/browse/GERONIMO-3549",[118,112,119],[394,123],"X Refsource MISC",{"url":396,"sources":397,"tags":398},"http://www.vupen.com/english/advisories/2009/3316",[118,112],[149,193],{"url":400,"sources":401,"tags":402},"http://secunia.com/advisories/32266",[118,112],[133,134],{"url":404,"sources":405,"tags":406},"https://lists.apache.org/thread.html/29dc6c2b625789e70a9c4756b5a327e6547273ff8bde7e0327af48c5%40%3Cdev.tomcat.apache.org%3E",[118,112],[143,144],{"url":408,"sources":409,"tags":410},"https://lists.apache.org/thread.html/06cfb634bc7bf37af7d8f760f118018746ad8efbd519c4b789ac9c2e%40%3Cdev.tomcat.apache.org%3E",[118,112],[143,144],{"url":412,"sources":413,"tags":414},"https://lists.apache.org/thread.html/c62b0e3a7bf23342352a5810c640a94b6db69957c5c19db507004d74%40%3Cdev.tomcat.apache.org%3E",[118,112],[143,144],{"url":416,"sources":417,"tags":418},"https://lists.apache.org/thread.html/8dcaf7c3894d66cb717646ea1504ea6e300021c85bb4e677dc16b1aa%40%3Cdev.tomcat.apache.org%3E",[118,112],[143,144],{"url":420,"sources":421,"tags":422},"https://lists.apache.org/thread.html/r584a714f141eff7b1c358d4679288177bd4ca4558e9999d15867d4b5%40%3Cdev.tomcat.apache.org%3E",[118,112],[143,144],{"url":424,"sources":425,"tags":426},"https://lists.apache.org/thread.html/rb71997f506c6cc8b530dd845c084995a9878098846c7b4eacfae8db3%40%3Cdev.tomcat.apache.org%3E",[118,112],[143,144],{"url":428,"sources":429,"tags":430},"https://lists.apache.org/thread.html/r3aacc40356defc3f248aa504b1e48e819dd0471a0a83349080c6bcbf%40%3Cdev.tomcat.apache.org%3E",[118,112],[143,144],{"url":432,"sources":433,"tags":434},"https://nvd.nist.gov/vuln/detail/CVE-2007-5461",[119],[435],"Advisory",{"url":437,"sources":438,"tags":439},"https://github.com/apache/tomcat/commit/1e7b31e24801777f4de45d565f6a20a5377dd22c",[119],[123],{"url":441,"sources":442,"tags":443},"https://github.com/apache/tomcat/commit/901292cf9d7d8225f8a3b96c7583e2bd8b41772d",[119],[123],{"url":445,"sources":446,"tags":447},"https://github.com/apache/tomcat",[119],[123],{"url":449,"sources":450,"tags":451},"https://lists.apache.org/thread.html/06cfb634bc7bf37af7d8f760f118018746ad8efbd519c4b789ac9c2e@%3Cdev.tomcat.apache.org%3E",[119],[123],{"url":453,"sources":454,"tags":455},"https://lists.apache.org/thread.html/29dc6c2b625789e70a9c4756b5a327e6547273ff8bde7e0327af48c5@%3Cdev.tomcat.apache.org%3E",[119],[123],{"url":457,"sources":458,"tags":459},"https://lists.apache.org/thread.html/8dcaf7c3894d66cb717646ea1504ea6e300021c85bb4e677dc16b1aa@%3Cdev.tomcat.apache.org%3E",[119],[123],{"url":461,"sources":462,"tags":463},"https://lists.apache.org/thread.html/c62b0e3a7bf23342352a5810c640a94b6db69957c5c19db507004d74@%3Cdev.tomcat.apache.org%3E",[119],[123],{"url":465,"sources":466,"tags":467},"https://lists.apache.org/thread.html/r3aacc40356defc3f248aa504b1e48e819dd0471a0a83349080c6bcbf@%3Cdev.tomcat.apache.org%3E",[119],[123],{"url":469,"sources":470,"tags":471},"https://lists.apache.org/thread.html/r584a714f141eff7b1c358d4679288177bd4ca4558e9999d15867d4b5@%3Cdev.tomcat.apache.org%3E",[119],[123],{"url":473,"sources":474,"tags":475},"https://lists.apache.org/thread.html/rb71997f506c6cc8b530dd845c084995a9878098846c7b4eacfae8db3@%3Cdev.tomcat.apache.org%3E",[119],[123],{"url":477,"sources":478,"tags":479},"http://mail-archives.apache.org/mod_mbox/tomcat-users/200710.mbox/%3C47135C2D.1000705@apache.org%3E",[119],[123],[],{"date":482,"score":109,"percentile":483},"2026-06-04",0.91271,[485,489,492,495,498,501,504,507,509,512,515,518,521,524,526,529,532,535,538,541,544,546,549,551,553,555,558,561,565,568,570,573,576,578,581,583,586,589,592,595,598,601,603,606,608,611,614,616,619,622,625,628,631,633,636,639,642,644,647,649,652,655,658,661,663,666,669,672,675,678,680,683,686,688,691,693,696,698,701,704,707,710,713,716,719,722,724,727,730,733],{"date":486,"score":487,"percentile":488},"2025-11-04",0.07173,0.9117,{"date":490,"score":487,"percentile":491},"2025-11-05",0.91168,{"date":493,"score":487,"percentile":494},"2025-11-06",0.91171,{"date":496,"score":487,"percentile":497},"2025-11-07",0.91177,{"date":499,"score":487,"percentile":500},"2025-11-08",0.91175,{"date":502,"score":487,"percentile":503},"2025-11-09",0.91172,{"date":505,"score":487,"percentile":506},"2025-11-10",0.91173,{"date":508,"score":487,"percentile":497},"2025-11-11",{"date":510,"score":487,"percentile":511},"2025-11-12",0.91181,{"date":513,"score":487,"percentile":514},"2025-11-13",0.91184,{"date":516,"score":487,"percentile":517},"2025-11-14",0.91186,{"date":519,"score":487,"percentile":520},"2025-11-15",0.91183,{"date":522,"score":487,"percentile":523},"2025-11-16",0.9119,{"date":525,"score":487,"percentile":523},"2025-11-17",{"date":527,"score":487,"percentile":528},"2025-11-18",0.90679,{"date":530,"score":487,"percentile":531},"2025-11-19",0.90683,{"date":533,"score":487,"percentile":534},"2025-11-20",0.90687,{"date":536,"score":487,"percentile":537},"2025-11-21",0.912,{"date":539,"score":487,"percentile":540},"2025-11-22",0.91201,{"date":542,"score":487,"percentile":543},"2025-11-23",0.91205,{"date":545,"score":487,"percentile":543},"2025-11-24",{"date":547,"score":487,"percentile":548},"2025-11-25",0.91206,{"date":550,"score":487,"percentile":543},"2025-11-26",{"date":552,"score":487,"percentile":548},"2025-11-27",{"date":554,"score":487,"percentile":537},"2025-11-28",{"date":556,"score":487,"percentile":557},"2025-11-29",0.91229,{"date":559,"score":487,"percentile":560},"2025-11-30",0.91227,{"date":562,"score":563,"percentile":564},"2025-12-01",0.06267,0.90604,{"date":566,"score":563,"percentile":567},"2025-12-02",0.90603,{"date":569,"score":563,"percentile":564},"2025-12-03",{"date":571,"score":563,"percentile":572},"2025-12-04",0.90542,{"date":574,"score":563,"percentile":575},"2025-12-05",0.9055,{"date":577,"score":563,"percentile":575},"2025-12-06",{"date":579,"score":563,"percentile":580},"2025-12-07",0.90545,{"date":582,"score":563,"percentile":580},"2025-12-08",{"date":584,"score":563,"percentile":585},"2025-12-09",0.90548,{"date":587,"score":563,"percentile":588},"2025-12-10",0.90557,{"date":590,"score":563,"percentile":591},"2025-12-11",0.90563,{"date":593,"score":563,"percentile":594},"2025-12-12",0.90568,{"date":596,"score":563,"percentile":597},"2025-12-13",0.9056,{"date":599,"score":563,"percentile":600},"2025-12-14",0.90559,{"date":602,"score":563,"percentile":600},"2025-12-15",{"date":604,"score":563,"percentile":605},"2025-12-16",0.90561,{"date":607,"score":563,"percentile":594},"2025-12-17",{"date":609,"score":563,"percentile":610},"2025-12-18",0.90575,{"date":612,"score":563,"percentile":613},"2025-12-19",0.90574,{"date":615,"score":563,"percentile":613},"2025-12-20",{"date":617,"score":563,"percentile":618},"2025-12-21",0.90585,{"date":620,"score":563,"percentile":621},"2025-12-22",0.90579,{"date":623,"score":563,"percentile":624},"2025-12-23",0.90588,{"date":626,"score":563,"percentile":627},"2025-12-24",0.90597,{"date":629,"score":563,"percentile":630},"2025-12-25",0.906,{"date":632,"score":563,"percentile":627},"2025-12-26",{"date":634,"score":563,"percentile":635},"2025-12-27",0.90648,{"date":637,"score":563,"percentile":638},"2025-12-28",0.90595,{"date":640,"score":563,"percentile":641},"2025-12-29",0.90592,{"date":643,"score":563,"percentile":627},"2025-12-30",{"date":645,"score":563,"percentile":646},"2025-12-31",0.90607,{"date":648,"score":563,"percentile":528},"2026-01-01",{"date":650,"score":563,"percentile":651},"2026-01-02",0.90673,{"date":653,"score":563,"percentile":654},"2026-01-03",0.90672,{"date":656,"score":563,"percentile":657},"2026-01-04",0.90619,{"date":659,"score":563,"percentile":660},"2026-01-05",0.90616,{"date":662,"score":563,"percentile":657},"2026-01-06",{"date":664,"score":563,"percentile":665},"2026-01-07",0.90623,{"date":667,"score":563,"percentile":668},"2026-01-08",0.90624,{"date":670,"score":563,"percentile":671},"2026-01-09",0.90626,{"date":673,"score":563,"percentile":674},"2026-01-10",0.90628,{"date":676,"score":563,"percentile":677},"2026-01-11",0.9062,{"date":679,"score":563,"percentile":657},"2026-01-12",{"date":681,"score":563,"percentile":682},"2026-01-13",0.90617,{"date":684,"score":563,"percentile":685},"2026-01-14",0.90631,{"date":687,"score":563,"percentile":685},"2026-01-15",{"date":689,"score":563,"percentile":690},"2026-01-16",0.90635,{"date":692,"score":563,"percentile":690},"2026-01-17",{"date":694,"score":563,"percentile":695},"2026-01-18",0.90636,{"date":697,"score":563,"percentile":690},"2026-01-19",{"date":699,"score":563,"percentile":700},"2026-01-20",0.90638,{"date":702,"score":563,"percentile":703},"2026-01-21",0.90641,{"date":705,"score":563,"percentile":706},"2026-01-22",0.90645,{"date":708,"score":563,"percentile":709},"2026-01-23",0.90653,{"date":711,"score":563,"percentile":712},"2026-01-24",0.90661,{"date":714,"score":563,"percentile":715},"2026-01-25",0.90662,{"date":717,"score":563,"percentile":718},"2026-01-26",0.90664,{"date":720,"score":563,"percentile":721},"2026-01-27",0.90667,{"date":723,"score":563,"percentile":654},"2026-01-28",{"date":725,"score":563,"percentile":726},"2026-01-29",0.90671,{"date":728,"score":563,"percentile":729},"2026-01-30",0.9067,{"date":731,"score":563,"percentile":732},"2026-01-31",0.90674,{"date":734,"score":563,"percentile":735},"2026-02-01",0.90732,[737],{"source":112,"cvss_v2_0":738,"cvss_v3_0":9,"cvss_v3_1":9,"cvss_v4_0":9},{"baseScore":110,"baseSeverity":9,"vectorString":113,"impactScore":739,"exploitabilityScore":740},2.9,6.8,[742,834],{"ecosystem":9,"name":743,"vendor":9,"product":743,"cpe_part":9,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":744},"Tomcat",[745,748,750,752,754,756,758,760,762,764,766,768,770,772,774,776,778,780,782,784,786,788,790,792,794,796,798,800,802,804,806,808,810,812,814,816,818,820,822,824,826,828,830,832],{"version":746,"is_range":48,"range_type":747,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"4.0.0","cpe",{"version":749,"is_range":48,"range_type":747,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"4.0.1",{"version":751,"is_range":48,"range_type":747,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"4.0.2",{"version":753,"is_range":48,"range_type":747,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"4.0.3",{"version":755,"is_range":48,"range_type":747,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"4.0.4",{"version":757,"is_range":48,"range_type":747,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"4.0.5",{"version":759,"is_range":48,"range_type":747,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"4.0.6",{"version":761,"is_range":48,"range_type":747,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"4.1.0",{"version":763,"is_range":48,"range_type":747,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"4.1.1",{"version":765,"is_range":48,"range_type":747,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"4.1.2",{"version":767,"is_range":48,"range_type":747,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"4.1.3",{"version":769,"is_range":48,"range_type":747,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"4.1.4",{"version":771,"is_range":48,"range_type":747,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"4.1.5",{"version":773,"is_range":48,"range_type":747,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"4.1.6",{"version":775,"is_range":48,"range_type":747,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"4.1.7",{"version":777,"is_range":48,"range_type":747,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"4.1.8",{"version":779,"is_range":48,"range_type":747,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"4.1.9",{"version":781,"is_range":48,"range_type":747,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"4.1.10",{"version":783,"is_range":48,"range_type":747,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"4.1.11",{"version":785,"is_range":48,"range_type":747,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"4.1.12",{"version":787,"is_range":48,"range_type":747,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"4.1.13",{"version":789,"is_range":48,"range_type":747,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"4.1.14",{"version":791,"is_range":48,"range_type":747,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"4.1.15",{"version":793,"is_range":48,"range_type":747,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"4.1.16",{"version":795,"is_range":48,"range_type":747,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"4.1.17",{"version":797,"is_range":48,"range_type":747,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"4.1.18",{"version":799,"is_range":48,"range_type":747,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"4.1.19",{"version":801,"is_range":48,"range_type":747,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"4.1.20",{"version":803,"is_range":48,"range_type":747,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"4.1.21",{"version":805,"is_range":48,"range_type":747,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"4.1.22",{"version":807,"is_range":48,"range_type":747,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"4.1.23",{"version":809,"is_range":48,"range_type":747,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"4.1.24",{"version":811,"is_range":48,"range_type":747,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"4.1.25",{"version":813,"is_range":48,"range_type":747,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"4.1.26",{"version":815,"is_range":48,"range_type":747,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"4.1.27",{"version":817,"is_range":48,"range_type":747,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"4.1.28",{"version":819,"is_range":48,"range_type":747,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"4.1.29",{"version":821,"is_range":48,"range_type":747,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"4.1.30",{"version":823,"is_range":48,"range_type":747,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"4.1.31",{"version":825,"is_range":48,"range_type":747,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"4.1.32",{"version":827,"is_range":48,"range_type":747,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"4.1.33",{"version":829,"is_range":48,"range_type":747,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"4.1.34",{"version":831,"is_range":48,"range_type":747,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"4.1.35",{"version":833,"is_range":48,"range_type":747,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"4.1.36",{"ecosystem":835,"name":836,"vendor":837,"product":838,"cpe_part":9,"purl_type":839,"purl_namespace":837,"purl_name":838,"source":9,"versions":840},"Maven","org.apache.tomcat:tomcat","org.apache.tomcat","tomcat","maven",[841,845,849],{"version":842,"is_range":57,"range_type":843,"version_start":746,"version_start_type":844,"version_end":759,"version_end_type":844,"fixed_in":9},"gte4_0_0_lte4_0_6","ecosystem","including",{"version":846,"is_range":57,"range_type":843,"version_start":847,"version_start_type":844,"version_end":848,"version_end_type":844,"fixed_in":9},"gte5_5_0_lte5_5_25","5.5.0","5.5.25",{"version":850,"is_range":57,"range_type":843,"version_start":851,"version_start_type":844,"version_end":852,"version_end_type":844,"fixed_in":9},"gte6_0_0_lte6_0_14","6.0.0","6.0.14"]