[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2011-5063":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-05T02:55:30.529Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":660,"aliases":661,"duplicate_of":9,"upstream":663,"downstream":664,"duplicates":679,"related":680,"reserved_at":9,"published_at":681,"modified_at":682,"state":683,"summary":684,"references_raw":693,"kevs":846,"epss":847,"epss_history":850,"metrics":1098,"affected":1103},"CVE-2011-5063","The HTTP Digest Access Authentication implementation in Apache Tomcat 5.5.x before 5.5.34, 6.x before 6.0.33, and 7.x before 7.0.12 does not check realm values, which might allow remote attackers to bypass intended access restrictions by leveraging the availability of a protection space with weaker authentication or authorization requirements, a different vulnerability than CVE-2011-1184.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":18,"capec":19},"CWE-287","Improper Authentication","When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct.","weakness","Draft","Class","High",[20,182,261,265,269,273,292,481,543,627],{"id":21,"name":22,"techniques":23},"CAPEC-114","Authentication Abuse",[24],{"id":25,"name":26,"tactics":27,"countermeasures":34},"T1548","Abuse Elevation Control Mechanism",[28,31],{"id":29,"name":30},"TA0030","Defense Evasion",{"id":32,"name":33},"TA0111","Privilege Escalation",[35,40,44,48,52,57,61,65,69,73,77,81,85,89,94,98,103,108,112,116,120,125,129,133,137,141,146,150,154,158,162,166,170,174,178],{"id":36,"name":37,"tactic":38},"D3-CI","Configuration Inventory",{"name":39},"Model",{"id":41,"name":42,"tactic":43},"D3-AM","Access Modeling",{"name":39},{"id":45,"name":46,"tactic":47},"D3-DI","Data Inventory",{"name":39},{"id":49,"name":50,"tactic":51},"D3-NTPM","Network Traffic Policy Mapping",{"name":39},{"id":53,"name":54,"tactic":55},"D3-AEM","Application Exception Monitoring",{"name":56},"Detect",{"id":58,"name":59,"tactic":60},"D3-SCA","System Call Analysis",{"name":56},{"id":62,"name":63,"tactic":64},"D3-SFA","System File Analysis",{"name":56},{"id":66,"name":67,"tactic":68},"D3-FA","File Analysis",{"name":56},{"id":70,"name":71,"tactic":72},"D3-FIM","File Integrity Monitoring",{"name":56},{"id":74,"name":75,"tactic":76},"D3-OPM","Operational Process Monitoring",{"name":56},{"id":78,"name":79,"tactic":80},"D3-DA","Dynamic Analysis",{"name":56},{"id":82,"name":83,"tactic":84},"D3-EFA","Emulated File Analysis",{"name":56},{"id":86,"name":87,"tactic":88},"D3-PSA","Process Spawn Analysis",{"name":56},{"id":90,"name":91,"tactic":92},"D3-FEV","File Eviction",{"name":93},"Evict",{"id":95,"name":96,"tactic":97},"D3-AL","Account Locking",{"name":93},{"id":99,"name":100,"tactic":101},"D3-DF","Decoy File",{"name":102},"Deceive",{"id":104,"name":105,"tactic":106},"D3-FE","File Encryption",{"name":107},"Harden",{"id":109,"name":110,"tactic":111},"D3-AA","Agent Authentication",{"name":107},{"id":113,"name":114,"tactic":115},"D3-CDP","Change Default Password",{"name":107},{"id":117,"name":118,"tactic":119},"D3-SCP","System Configuration Permissions",{"name":107},{"id":121,"name":122,"tactic":123},"D3-RC","Restore Configuration",{"name":124},"Restore",{"id":126,"name":127,"tactic":128},"D3-RF","Restore File",{"name":124},{"id":130,"name":131,"tactic":132},"D3-ULA","Unlock Account",{"name":124},{"id":134,"name":135,"tactic":136},"D3-RUAA","Restore User Account Access",{"name":124},{"id":138,"name":139,"tactic":140},"D3-RD","Restore Database",{"name":124},{"id":142,"name":143,"tactic":144},"D3-SCF","System Call Filtering",{"name":145},"Isolate",{"id":147,"name":148,"tactic":149},"D3-CF","Content Filtering",{"name":145},{"id":151,"name":152,"tactic":153},"D3-LFP","Local File Permissions",{"name":145},{"id":155,"name":156,"tactic":157},"D3-RFAM","Remote File Access Mediation",{"name":145},{"id":159,"name":160,"tactic":161},"D3-CQ","Content Quarantine",{"name":145},{"id":163,"name":164,"tactic":165},"D3-CM","Content Modification",{"name":145},{"id":167,"name":168,"tactic":169},"D3-UAP","User Account Permissions",{"name":145},{"id":171,"name":172,"tactic":173},"D3-EAL","Executable Allowlisting",{"name":145},{"id":175,"name":176,"tactic":177},"D3-EDL","Executable Denylisting",{"name":145},{"id":179,"name":180,"tactic":181},"D3-HBPI","Hardware-based Process Isolation",{"name":145},{"id":183,"name":184,"techniques":185},"CAPEC-115","Authentication Bypass",[186],{"id":25,"name":26,"tactics":187,"countermeasures":190},[188,189],{"id":29,"name":30},{"id":32,"name":33},[191,193,195,197,199,201,203,205,207,209,211,213,215,217,219,221,223,225,227,229,231,233,235,237,239,241,243,245,247,249,251,253,255,257,259],{"id":36,"name":37,"tactic":192},{"name":39},{"id":41,"name":42,"tactic":194},{"name":39},{"id":45,"name":46,"tactic":196},{"name":39},{"id":49,"name":50,"tactic":198},{"name":39},{"id":53,"name":54,"tactic":200},{"name":56},{"id":58,"name":59,"tactic":202},{"name":56},{"id":62,"name":63,"tactic":204},{"name":56},{"id":66,"name":67,"tactic":206},{"name":56},{"id":70,"name":71,"tactic":208},{"name":56},{"id":74,"name":75,"tactic":210},{"name":56},{"id":78,"name":79,"tactic":212},{"name":56},{"id":82,"name":83,"tactic":214},{"name":56},{"id":86,"name":87,"tactic":216},{"name":56},{"id":90,"name":91,"tactic":218},{"name":93},{"id":95,"name":96,"tactic":220},{"name":93},{"id":99,"name":100,"tactic":222},{"name":102},{"id":104,"name":105,"tactic":224},{"name":107},{"id":109,"name":110,"tactic":226},{"name":107},{"id":113,"name":114,"tactic":228},{"name":107},{"id":117,"name":118,"tactic":230},{"name":107},{"id":121,"name":122,"tactic":232},{"name":124},{"id":126,"name":127,"tactic":234},{"name":124},{"id":130,"name":131,"tactic":236},{"name":124},{"id":134,"name":135,"tactic":238},{"name":124},{"id":138,"name":139,"tactic":240},{"name":124},{"id":142,"name":143,"tactic":242},{"name":145},{"id":147,"name":148,"tactic":244},{"name":145},{"id":151,"name":152,"tactic":246},{"name":145},{"id":155,"name":156,"tactic":248},{"name":145},{"id":159,"name":160,"tactic":250},{"name":145},{"id":163,"name":164,"tactic":252},{"name":145},{"id":167,"name":168,"tactic":254},{"name":145},{"id":171,"name":172,"tactic":256},{"name":145},{"id":175,"name":176,"tactic":258},{"name":145},{"id":179,"name":180,"tactic":260},{"name":145},{"id":262,"name":263,"techniques":264},"CAPEC-151","Identity Spoofing",[],{"id":266,"name":267,"techniques":268},"CAPEC-194","Fake the Source of Data",[],{"id":270,"name":271,"techniques":272},"CAPEC-22","Exploiting Trust in Client",[],{"id":274,"name":275,"techniques":276},"CAPEC-57","Utilizing REST's Trust in the System Resource to Obtain Sensitive Data",[277],{"id":278,"name":279,"tactics":280,"countermeasures":287},"T1040","Network Sniffing",[281,284],{"id":282,"name":283},"TA0031","Credential Access",{"id":285,"name":286},"TA0102","Discovery",[288],{"id":289,"name":290,"tactic":291},"D3-DNSTA","DNS Traffic Analysis",{"name":56},{"id":293,"name":294,"techniques":295},"CAPEC-593","Session Hijacking",[296,340,453],{"id":297,"name":298,"tactics":299,"countermeasures":303},"T1185","Browser Session Hijacking",[300],{"id":301,"name":302},"TA0100","Collection",[304,308,312,316,320,324,328,332,336],{"id":305,"name":306,"tactic":307},"D3-UGLPA","User Geolocation Logon Pattern Analysis",{"name":56},{"id":309,"name":310,"tactic":311},"D3-PMAD","Protocol Metadata Anomaly Detection",{"name":56},{"id":313,"name":314,"tactic":315},"D3-CSPP","Client-server Payload Profiling",{"name":56},{"id":317,"name":318,"tactic":319},"D3-PHDURA","Per Host Download-Upload Ratio Analysis",{"name":56},{"id":321,"name":322,"tactic":323},"D3-NTSA","Network Traffic Signature Analysis",{"name":56},{"id":325,"name":326,"tactic":327},"D3-APCA","Application Protocol Command Analysis",{"name":56},{"id":329,"name":330,"tactic":331},"D3-NTCD","Network Traffic Community Deviation",{"name":56},{"id":333,"name":334,"tactic":335},"D3-RTSD","Remote Terminal Session Detection",{"name":56},{"id":337,"name":338,"tactic":339},"D3-NTF","Network Traffic Filtering",{"name":145},{"id":341,"name":342,"tactics":343,"countermeasures":348},"T1550.001","Application Access Token",[344,345],{"id":29,"name":30},{"id":346,"name":347},"TA0109","Lateral Movement",[349,353,357,359,363,365,367,369,371,373,375,377,379,383,387,391,395,399,403,407,411,415,419,423,427,431,435,437,439,443,447,451],{"id":350,"name":351,"tactic":352},"D3-PLA","Process Lineage Analysis",{"name":56},{"id":354,"name":355,"tactic":356},"D3-PSMD","Process Self-Modification Detection",{"name":56},{"id":86,"name":87,"tactic":358},{"name":56},{"id":360,"name":361,"tactic":362},"D3-CCSA","Credential Compromise Scope Analysis",{"name":56},{"id":305,"name":306,"tactic":364},{"name":56},{"id":309,"name":310,"tactic":366},{"name":56},{"id":313,"name":314,"tactic":368},{"name":56},{"id":317,"name":318,"tactic":370},{"name":56},{"id":321,"name":322,"tactic":372},{"name":56},{"id":325,"name":326,"tactic":374},{"name":56},{"id":329,"name":330,"tactic":376},{"name":56},{"id":333,"name":334,"tactic":378},{"name":56},{"id":380,"name":381,"tactic":382},"D3-PT","Process Termination",{"name":93},{"id":384,"name":385,"tactic":386},"D3-PS","Process Suspension",{"name":93},{"id":388,"name":389,"tactic":390},"D3-HR","Host Reboot",{"name":93},{"id":392,"name":393,"tactic":394},"D3-HS","Host Shutdown",{"name":93},{"id":396,"name":397,"tactic":398},"D3-CR","Credential Revocation",{"name":93},{"id":400,"name":401,"tactic":402},"D3-ANCI","Authentication Cache Invalidation",{"name":93},{"id":404,"name":405,"tactic":406},"D3-DUC","Decoy User Credential",{"name":102},{"id":408,"name":409,"tactic":410},"D3-CH","Credential Hardening",{"name":107},{"id":412,"name":413,"tactic":414},"D3-MFA","Multi-factor Authentication",{"name":107},{"id":416,"name":417,"tactic":418},"D3-CRO","Credential Rotation",{"name":107},{"id":420,"name":421,"tactic":422},"D3-TB","Token Binding",{"name":107},{"id":424,"name":425,"tactic":426},"D3-TBA","Token-based Authentication",{"name":107},{"id":428,"name":429,"tactic":430},"D3-RIC","Reissue Credential",{"name":124},{"id":432,"name":433,"tactic":434},"D3-KBPI","Kernel-based Process Isolation",{"name":145},{"id":142,"name":143,"tactic":436},{"name":145},{"id":179,"name":180,"tactic":438},{"name":145},{"id":440,"name":441,"tactic":442},"D3-ABPI","Application-based Process Isolation",{"name":145},{"id":444,"name":445,"tactic":446},"D3-WSAM","Web Session Access Mediation",{"name":145},{"id":448,"name":449,"tactic":450},"D3-CTS","Credential Transmission Scoping",{"name":145},{"id":337,"name":338,"tactic":452},{"name":145},{"id":454,"name":455,"tactics":456,"countermeasures":458},"T1563","Remote Service Session Hijacking",[457],{"id":346,"name":347},[459,461,463,465,467,469,471,473,475,479],{"id":305,"name":306,"tactic":460},{"name":56},{"id":309,"name":310,"tactic":462},{"name":56},{"id":313,"name":314,"tactic":464},{"name":56},{"id":317,"name":318,"tactic":466},{"name":56},{"id":321,"name":322,"tactic":468},{"name":56},{"id":325,"name":326,"tactic":470},{"name":56},{"id":329,"name":330,"tactic":472},{"name":56},{"id":333,"name":334,"tactic":474},{"name":56},{"id":476,"name":477,"tactic":478},"D3-ST","Session Termination",{"name":93},{"id":337,"name":338,"tactic":480},{"name":145},{"id":482,"name":483,"techniques":484},"CAPEC-633","Token Impersonation",[485],{"id":486,"name":487,"tactics":488,"countermeasures":494},"T1134","Access Token Manipulation",[489,490,493],{"id":29,"name":30},{"id":491,"name":492},"TA0005","Stealth",{"id":32,"name":33},[495,497,499,501,503,505,507,509,511,513,515,517,519,521,523,525,527,529,531,533,535,537,539,541],{"id":36,"name":37,"tactic":496},{"name":39},{"id":49,"name":50,"tactic":498},{"name":39},{"id":41,"name":42,"tactic":500},{"name":39},{"id":53,"name":54,"tactic":502},{"name":56},{"id":58,"name":59,"tactic":504},{"name":56},{"id":360,"name":361,"tactic":506},{"name":56},{"id":74,"name":75,"tactic":508},{"name":56},{"id":86,"name":87,"tactic":510},{"name":56},{"id":476,"name":477,"tactic":512},{"name":93},{"id":396,"name":397,"tactic":514},{"name":93},{"id":400,"name":401,"tactic":516},{"name":93},{"id":404,"name":405,"tactic":518},{"name":102},{"id":408,"name":409,"tactic":520},{"name":107},{"id":412,"name":413,"tactic":522},{"name":107},{"id":416,"name":417,"tactic":524},{"name":107},{"id":420,"name":421,"tactic":526},{"name":107},{"id":424,"name":425,"tactic":528},{"name":107},{"id":121,"name":122,"tactic":530},{"name":124},{"id":428,"name":429,"tactic":532},{"name":124},{"id":142,"name":143,"tactic":534},{"name":145},{"id":448,"name":449,"tactic":536},{"name":145},{"id":171,"name":172,"tactic":538},{"name":145},{"id":175,"name":176,"tactic":540},{"name":145},{"id":179,"name":180,"tactic":542},{"name":145},{"id":544,"name":545,"techniques":546},"CAPEC-650","Upload a Web Shell to a Web Server",[547],{"id":548,"name":549,"tactics":550,"countermeasures":554},"T1505.003","Web Shell",[551],{"id":552,"name":553},"TA0110","Persistence",[555,559,563,567,571,573,575,577,579,581,583,585,587,589,591,593,595,597,599,603,605,607,609,611,613,615,617,619,621,623,625],{"id":556,"name":557,"tactic":558},"D3-NNI","Network Node Inventory",{"name":39},{"id":560,"name":561,"tactic":562},"D3-PLM","Physical Link Mapping",{"name":39},{"id":564,"name":565,"tactic":566},"D3-LLM","Logical Link Mapping",{"name":39},{"id":568,"name":569,"tactic":570},"D3-EHB","Endpoint Health Beacon",{"name":56},{"id":66,"name":67,"tactic":572},{"name":56},{"id":70,"name":71,"tactic":574},{"name":56},{"id":78,"name":79,"tactic":576},{"name":56},{"id":82,"name":83,"tactic":578},{"name":56},{"id":350,"name":351,"tactic":580},{"name":56},{"id":354,"name":355,"tactic":582},{"name":56},{"id":86,"name":87,"tactic":584},{"name":56},{"id":90,"name":91,"tactic":586},{"name":93},{"id":380,"name":381,"tactic":588},{"name":93},{"id":384,"name":385,"tactic":590},{"name":93},{"id":388,"name":389,"tactic":592},{"name":93},{"id":392,"name":393,"tactic":594},{"name":93},{"id":99,"name":100,"tactic":596},{"name":102},{"id":104,"name":105,"tactic":598},{"name":107},{"id":600,"name":601,"tactic":602},"D3-RNA","Restore Network Access",{"name":124},{"id":126,"name":127,"tactic":604},{"name":124},{"id":147,"name":148,"tactic":606},{"name":145},{"id":151,"name":152,"tactic":608},{"name":145},{"id":155,"name":156,"tactic":610},{"name":145},{"id":159,"name":160,"tactic":612},{"name":145},{"id":163,"name":164,"tactic":614},{"name":145},{"id":171,"name":172,"tactic":616},{"name":145},{"id":175,"name":176,"tactic":618},{"name":145},{"id":432,"name":433,"tactic":620},{"name":145},{"id":142,"name":143,"tactic":622},{"name":145},{"id":179,"name":180,"tactic":624},{"name":145},{"id":440,"name":441,"tactic":626},{"name":145},{"id":628,"name":629,"techniques":630},"CAPEC-94","Adversary in the Middle (AiTM)",[631],{"id":632,"name":633,"tactics":634,"countermeasures":637},"T1557","Adversary-in-the-Middle",[635,636],{"id":282,"name":283},{"id":301,"name":302},[638,640,642,644,646,648,650,652,654,658],{"id":305,"name":306,"tactic":639},{"name":56},{"id":309,"name":310,"tactic":641},{"name":56},{"id":313,"name":314,"tactic":643},{"name":56},{"id":317,"name":318,"tactic":645},{"name":56},{"id":321,"name":322,"tactic":647},{"name":56},{"id":325,"name":326,"tactic":649},{"name":56},{"id":329,"name":330,"tactic":651},{"name":56},{"id":333,"name":334,"tactic":653},{"name":56},{"id":655,"name":656,"tactic":657},"D3-CAA","Connection Attempt Analysis",{"name":56},{"id":337,"name":338,"tactic":659},{"name":145},[],[662],"GHSA-hffm-fqv4-w27r",[],[665,667,669,671,673,675,677],{"_key":666},"RHSA-2011:1780",{"_key":668},"RHSA-2011:1845",{"_key":670},"RHSA-2012:0074",{"_key":672},"RHSA-2012:0076",{"_key":674},"RHSA-2012:0680",{"_key":676},"RHSA-2012:0682",{"_key":678},"DSA-2401-1",[],[],"2012-01-14T21:00:00.000Z","2024-08-07T00:23:39.939Z","Modified",{"cisa_kev":685,"cisa_ransomware":685,"cisa_vendor":9,"epss_severity":686,"epss_score":687,"severity":688,"severity_score":689,"severity_version":690,"severity_source":691,"severity_vector":692,"severity_status":683},false,"low",0.01962,"medium",4.3,"v2.0","nvd","AV:N/AC:M/Au:N/C:P/I:N/A:N",[694,703,708,713,719,723,727,731,735,739,743,747,751,757,761,765,769,774,778,784,788,792,796,801,805,809,813,817,821,826,830,834,838,842],{"url":695,"sources":696,"tags":699},"http://www.debian.org/security/2012/dsa-2401",[697,691,698],"cve.org","osv_maven",[700,701,702],"Vendor Advisory","X Refsource DEBIAN","WEB",{"url":704,"sources":705,"tags":706},"http://lists.opensuse.org/opensuse-security-announce/2012-02/msg00002.html",[697,691,698],[700,707,702],"X Refsource SUSE",{"url":709,"sources":710,"tags":711},"http://rhn.redhat.com/errata/RHSA-2012-0325.html",[697,691],[700,712],"X Refsource REDHAT",{"url":714,"sources":715,"tags":716},"http://svn.apache.org/viewvc?view=rev&rev=1159309",[697,691,698],[717,718,702],"X Refsource CONFIRM","Patch",{"url":720,"sources":721,"tags":722},"http://rhn.redhat.com/errata/RHSA-2012-0078.html",[697,691],[700,712],{"url":724,"sources":725,"tags":726},"http://www.redhat.com/support/errata/RHSA-2011-1845.html",[697,691],[700,712],{"url":728,"sources":729,"tags":730},"http://svn.apache.org/viewvc?view=rev&rev=1158180",[697,691,698],[717,718,702],{"url":732,"sources":733,"tags":734},"http://rhn.redhat.com/errata/RHSA-2012-0075.html",[697,691],[700,712],{"url":736,"sources":737,"tags":738},"http://rhn.redhat.com/errata/RHSA-2012-0074.html",[697,691],[700,712],{"url":740,"sources":741,"tags":742},"http://tomcat.apache.org/security-7.html",[697,691,698],[717,700,702],{"url":744,"sources":745,"tags":746},"http://svn.apache.org/viewvc?view=rev&rev=1087655",[697,691,698],[717,718,702],{"url":748,"sources":749,"tags":750},"http://tomcat.apache.org/security-6.html",[697,691,698],[717,700,702],{"url":752,"sources":753,"tags":754},"http://secunia.com/advisories/57126",[697,691],[755,756],"Third Party Advisory","X Refsource SECUNIA",{"url":758,"sources":759,"tags":760},"http://tomcat.apache.org/security-5.html",[697,691,698],[717,700,702],{"url":762,"sources":763,"tags":764},"http://lists.opensuse.org/opensuse-security-announce/2012-02/msg00006.html",[697,691,698],[700,707,702],{"url":766,"sources":767,"tags":768},"http://rhn.redhat.com/errata/RHSA-2012-0076.html",[697,691],[700,712],{"url":770,"sources":771,"tags":772},"http://marc.info/?l=bugtraq&m=139344343412337&w=2",[697,691,698],[700,773,702],"X Refsource HP",{"url":775,"sources":776,"tags":777},"http://rhn.redhat.com/errata/RHSA-2012-0077.html",[697,691],[700,712],{"url":779,"sources":780,"tags":781},"https://lists.apache.org/thread.html/06cfb634bc7bf37af7d8f760f118018746ad8efbd519c4b789ac9c2e%40%3Cdev.tomcat.apache.org%3E",[697,691],[782,783],"Mailing List","X Refsource MLIST",{"url":785,"sources":786,"tags":787},"https://lists.apache.org/thread.html/8dcaf7c3894d66cb717646ea1504ea6e300021c85bb4e677dc16b1aa%40%3Cdev.tomcat.apache.org%3E",[697,691],[782,783],{"url":789,"sources":790,"tags":791},"https://lists.apache.org/thread.html/r584a714f141eff7b1c358d4679288177bd4ca4558e9999d15867d4b5%40%3Cdev.tomcat.apache.org%3E",[697,691],[782,783],{"url":793,"sources":794,"tags":795},"https://lists.apache.org/thread.html/r3aacc40356defc3f248aa504b1e48e819dd0471a0a83349080c6bcbf%40%3Cdev.tomcat.apache.org%3E",[697,691],[782,783],{"url":797,"sources":798,"tags":799},"https://nvd.nist.gov/vuln/detail/CVE-2011-5063",[698],[800],"Advisory",{"url":802,"sources":803,"tags":804},"https://github.com/apache/tomcat/commit/639e20992a66d7a42fb59c974db91c8a0f730a1e",[698],[702],{"url":806,"sources":807,"tags":808},"https://github.com/apache/tomcat55/commit/644dfdf96cf82fcd2a2046d93f2b5495f7e94584",[698],[702],{"url":810,"sources":811,"tags":812},"https://access.redhat.com/errata/RHSA-2012:0074",[698],[702],{"url":814,"sources":815,"tags":816},"https://access.redhat.com/errata/RHSA-2012:0075",[698],[702],{"url":818,"sources":819,"tags":820},"https://access.redhat.com/errata/RHSA-2012:0076",[698],[702],{"url":822,"sources":823,"tags":824},"https://github.com/apache/tomcat",[698],[825],"PACKAGE",{"url":827,"sources":828,"tags":829},"https://lists.apache.org/thread.html/06cfb634bc7bf37af7d8f760f118018746ad8efbd519c4b789ac9c2e@%3Cdev.tomcat.apache.org%3E",[698],[702],{"url":831,"sources":832,"tags":833},"https://lists.apache.org/thread.html/8dcaf7c3894d66cb717646ea1504ea6e300021c85bb4e677dc16b1aa@%3Cdev.tomcat.apache.org%3E",[698],[702],{"url":835,"sources":836,"tags":837},"https://lists.apache.org/thread.html/r3aacc40356defc3f248aa504b1e48e819dd0471a0a83349080c6bcbf@%3Cdev.tomcat.apache.org%3E",[698],[702],{"url":839,"sources":840,"tags":841},"https://lists.apache.org/thread.html/r584a714f141eff7b1c358d4679288177bd4ca4558e9999d15867d4b5@%3Cdev.tomcat.apache.org%3E",[698],[702],{"url":843,"sources":844,"tags":845},"https://web.archive.org/web/20151017023138/http://secunia.com/advisories/57126",[698],[702],[],{"date":848,"score":687,"percentile":849},"2026-06-04",0.83838,[851,854,857,860,863,866,869,872,875,878,881,884,887,890,892,895,897,900,903,906,909,912,915,917,919,921,923,926,929,932,935,937,939,941,943,945,948,951,954,957,960,963,966,969,972,975,978,981,984,986,988,991,994,997,1000,1003,1006,1009,1012,1015,1018,1021,1024,1026,1029,1032,1035,1037,1040,1042,1044,1046,1049,1052,1055,1058,1061,1064,1066,1068,1071,1074,1077,1080,1083,1085,1087,1090,1092,1095],{"date":852,"score":687,"percentile":853},"2025-11-04",0.82911,{"date":855,"score":687,"percentile":856},"2025-11-05",0.82914,{"date":858,"score":687,"percentile":859},"2025-11-06",0.82918,{"date":861,"score":687,"percentile":862},"2025-11-07",0.82928,{"date":864,"score":687,"percentile":865},"2025-11-08",0.82934,{"date":867,"score":687,"percentile":868},"2025-11-09",0.82929,{"date":870,"score":687,"percentile":871},"2025-11-10",0.82924,{"date":873,"score":687,"percentile":874},"2025-11-11",0.82932,{"date":876,"score":687,"percentile":877},"2025-11-12",0.82942,{"date":879,"score":687,"percentile":880},"2025-11-13",0.82947,{"date":882,"score":687,"percentile":883},"2025-11-14",0.82951,{"date":885,"score":687,"percentile":886},"2025-11-15",0.82943,{"date":888,"score":687,"percentile":889},"2025-11-16",0.82945,{"date":891,"score":687,"percentile":877},"2025-11-17",{"date":893,"score":687,"percentile":894},"2025-11-18",0.82051,{"date":896,"score":687,"percentile":894},"2025-11-19",{"date":898,"score":687,"percentile":899},"2025-11-20",0.82056,{"date":901,"score":687,"percentile":902},"2025-11-21",0.82957,{"date":904,"score":687,"percentile":905},"2025-11-22",0.82959,{"date":907,"score":687,"percentile":908},"2025-11-23",0.82953,{"date":910,"score":687,"percentile":911},"2025-11-24",0.82952,{"date":913,"score":687,"percentile":914},"2025-11-25",0.82956,{"date":916,"score":687,"percentile":902},"2025-11-26",{"date":918,"score":687,"percentile":914},"2025-11-27",{"date":920,"score":687,"percentile":889},"2025-11-28",{"date":922,"score":687,"percentile":883},"2025-11-29",{"date":924,"score":687,"percentile":925},"2025-11-30",0.82954,{"date":927,"score":687,"percentile":928},"2025-12-01",0.83026,{"date":930,"score":687,"percentile":931},"2025-12-02",0.8303,{"date":933,"score":687,"percentile":934},"2025-12-03",0.83031,{"date":936,"score":687,"percentile":911},"2025-12-04",{"date":938,"score":687,"percentile":905},"2025-12-05",{"date":940,"score":687,"percentile":914},"2025-12-06",{"date":942,"score":687,"percentile":908},"2025-12-07",{"date":944,"score":687,"percentile":914},"2025-12-08",{"date":946,"score":687,"percentile":947},"2025-12-09",0.82971,{"date":949,"score":687,"percentile":950},"2025-12-10",0.82995,{"date":952,"score":687,"percentile":953},"2025-12-11",0.83011,{"date":955,"score":687,"percentile":956},"2025-12-12",0.83019,{"date":958,"score":687,"percentile":959},"2025-12-13",0.83017,{"date":961,"score":687,"percentile":962},"2025-12-14",0.83014,{"date":964,"score":687,"percentile":965},"2025-12-15",0.83015,{"date":967,"score":687,"percentile":968},"2025-12-16",0.83025,{"date":970,"score":687,"percentile":971},"2025-12-17",0.83034,{"date":973,"score":687,"percentile":974},"2025-12-18",0.8304,{"date":976,"score":687,"percentile":977},"2025-12-19",0.83044,{"date":979,"score":687,"percentile":980},"2025-12-20",0.83038,{"date":982,"score":687,"percentile":983},"2025-12-21",0.83035,{"date":985,"score":687,"percentile":980},"2025-12-22",{"date":987,"score":687,"percentile":977},"2025-12-23",{"date":989,"score":687,"percentile":990},"2025-12-24",0.83051,{"date":992,"score":687,"percentile":993},"2025-12-25",0.83067,{"date":995,"score":687,"percentile":996},"2025-12-26",0.83072,{"date":998,"score":687,"percentile":999},"2025-12-27",0.83116,{"date":1001,"score":687,"percentile":1002},"2025-12-28",0.83061,{"date":1004,"score":687,"percentile":1005},"2025-12-29",0.83052,{"date":1007,"score":687,"percentile":1008},"2025-12-30",0.8306,{"date":1010,"score":687,"percentile":1011},"2025-12-31",0.83074,{"date":1013,"score":687,"percentile":1014},"2026-01-01",0.83147,{"date":1016,"score":687,"percentile":1017},"2026-01-02",0.83144,{"date":1019,"score":687,"percentile":1020},"2026-01-03",0.83138,{"date":1022,"score":687,"percentile":1023},"2026-01-04",0.83055,{"date":1025,"score":687,"percentile":990},"2026-01-05",{"date":1027,"score":687,"percentile":1028},"2026-01-06",0.83056,{"date":1030,"score":687,"percentile":1031},"2026-01-07",0.83058,{"date":1033,"score":687,"percentile":1034},"2026-01-08",0.83066,{"date":1036,"score":687,"percentile":1034},"2026-01-09",{"date":1038,"score":687,"percentile":1039},"2026-01-10",0.83065,{"date":1041,"score":687,"percentile":1002},"2026-01-11",{"date":1043,"score":687,"percentile":1031},"2026-01-12",{"date":1045,"score":687,"percentile":1005},"2026-01-13",{"date":1047,"score":687,"percentile":1048},"2026-01-14",0.83071,{"date":1050,"score":687,"percentile":1051},"2026-01-15",0.8307,{"date":1053,"score":687,"percentile":1054},"2026-01-16",0.83077,{"date":1056,"score":687,"percentile":1057},"2026-01-17",0.8308,{"date":1059,"score":687,"percentile":1060},"2026-01-18",0.83078,{"date":1062,"score":687,"percentile":1063},"2026-01-19",0.83073,{"date":1065,"score":687,"percentile":1063},"2026-01-20",{"date":1067,"score":687,"percentile":1060},"2026-01-21",{"date":1069,"score":687,"percentile":1070},"2026-01-22",0.83086,{"date":1072,"score":687,"percentile":1073},"2026-01-23",0.83105,{"date":1075,"score":687,"percentile":1076},"2026-01-24",0.83113,{"date":1078,"score":687,"percentile":1079},"2026-01-25",0.83107,{"date":1081,"score":687,"percentile":1082},"2026-01-26",0.83108,{"date":1084,"score":687,"percentile":1073},"2026-01-27",{"date":1086,"score":687,"percentile":1082},"2026-01-28",{"date":1088,"score":687,"percentile":1089},"2026-01-29",0.8311,{"date":1091,"score":687,"percentile":999},"2026-01-30",{"date":1093,"score":687,"percentile":1094},"2026-01-31",0.83123,{"date":1096,"score":687,"percentile":1097},"2026-02-01",0.83198,[1099],{"source":691,"cvss_v2_0":1100,"cvss_v3_0":9,"cvss_v3_1":9,"cvss_v4_0":9},{"baseScore":689,"baseSeverity":9,"vectorString":692,"impactScore":1101,"exploitabilityScore":1102},2.9,8.6,[1104,1262],{"ecosystem":9,"name":1105,"vendor":9,"product":1105,"cpe_part":9,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":1106},"Tomcat",[1107,1110,1112,1114,1116,1118,1120,1122,1124,1126,1128,1130,1132,1134,1136,1138,1140,1142,1144,1146,1148,1150,1152,1154,1156,1158,1160,1162,1164,1166,1168,1170,1172,1174,1176,1178,1180,1182,1184,1186,1188,1190,1192,1194,1196,1198,1200,1202,1204,1206,1208,1210,1212,1214,1216,1218,1220,1222,1224,1226,1228,1230,1232,1234,1236,1238,1240,1242,1244,1246,1248,1250,1252,1254,1256,1258,1260],{"version":1108,"is_range":685,"range_type":1109,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.5.0","cpe",{"version":1111,"is_range":685,"range_type":1109,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.5.1",{"version":1113,"is_range":685,"range_type":1109,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.5.2",{"version":1115,"is_range":685,"range_type":1109,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.5.3",{"version":1117,"is_range":685,"range_type":1109,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.5.4",{"version":1119,"is_range":685,"range_type":1109,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.5.5",{"version":1121,"is_range":685,"range_type":1109,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.5.6",{"version":1123,"is_range":685,"range_type":1109,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.5.7",{"version":1125,"is_range":685,"range_type":1109,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.5.8",{"version":1127,"is_range":685,"range_type":1109,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.5.9",{"version":1129,"is_range":685,"range_type":1109,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.5.10",{"version":1131,"is_range":685,"range_type":1109,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.5.11",{"version":1133,"is_range":685,"range_type":1109,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.5.12",{"version":1135,"is_range":685,"range_type":1109,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.5.13",{"version":1137,"is_range":685,"range_type":1109,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.5.14",{"version":1139,"is_range":685,"range_type":1109,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.5.15",{"version":1141,"is_range":685,"range_type":1109,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.5.16",{"version":1143,"is_range":685,"range_type":1109,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.5.17",{"version":1145,"is_range":685,"range_type":1109,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.5.18",{"version":1147,"is_range":685,"range_type":1109,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.5.19",{"version":1149,"is_range":685,"range_type":1109,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.5.20",{"version":1151,"is_range":685,"range_type":1109,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.5.21",{"version":1153,"is_range":685,"range_type":1109,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.5.22",{"version":1155,"is_range":685,"range_type":1109,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.5.23",{"version":1157,"is_range":685,"range_type":1109,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.5.24",{"version":1159,"is_range":685,"range_type":1109,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.5.25",{"version":1161,"is_range":685,"range_type":1109,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.5.26",{"version":1163,"is_range":685,"range_type":1109,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.5.27",{"version":1165,"is_range":685,"range_type":1109,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.5.28",{"version":1167,"is_range":685,"range_type":1109,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.5.29",{"version":1169,"is_range":685,"range_type":1109,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.5.30",{"version":1171,"is_range":685,"range_type":1109,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.5.31",{"version":1173,"is_range":685,"range_type":1109,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.5.32",{"version":1175,"is_range":685,"range_type":1109,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.5.33",{"version":1177,"is_range":685,"range_type":1109,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"6.0",{"version":1179,"is_range":685,"range_type":1109,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"6.0.0",{"version":1181,"is_range":685,"range_type":1109,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"6.0.1",{"version":1183,"is_range":685,"range_type":1109,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"6.0.2",{"version":1185,"is_range":685,"range_type":1109,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"6.0.3",{"version":1187,"is_range":685,"range_type":1109,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"6.0.4",{"version":1189,"is_range":685,"range_type":1109,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"6.0.5",{"version":1191,"is_range":685,"range_type":1109,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"6.0.6",{"version":1193,"is_range":685,"range_type":1109,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"6.0.7",{"version":1195,"is_range":685,"range_type":1109,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"6.0.8",{"version":1197,"is_range":685,"range_type":1109,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"6.0.9",{"version":1199,"is_range":685,"range_type":1109,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"6.0.10",{"version":1201,"is_range":685,"range_type":1109,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"6.0.11",{"version":1203,"is_range":685,"range_type":1109,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"6.0.12",{"version":1205,"is_range":685,"range_type":1109,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"6.0.13",{"version":1207,"is_range":685,"range_type":1109,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"6.0.14",{"version":1209,"is_range":685,"range_type":1109,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"6.0.15",{"version":1211,"is_range":685,"range_type":1109,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"6.0.16",{"version":1213,"is_range":685,"range_type":1109,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"6.0.17",{"version":1215,"is_range":685,"range_type":1109,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"6.0.18",{"version":1217,"is_range":685,"range_type":1109,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"6.0.19",{"version":1219,"is_range":685,"range_type":1109,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"6.0.20",{"version":1221,"is_range":685,"range_type":1109,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"6.0.24",{"version":1223,"is_range":685,"range_type":1109,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"6.0.26",{"version":1225,"is_range":685,"range_type":1109,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"6.0.27",{"version":1227,"is_range":685,"range_type":1109,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"6.0.28",{"version":1229,"is_range":685,"range_type":1109,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"6.0.29",{"version":1231,"is_range":685,"range_type":1109,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"6.0.30",{"version":1233,"is_range":685,"range_type":1109,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"6.0.31",{"version":1235,"is_range":685,"range_type":1109,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"6.0.32",{"version":1237,"is_range":685,"range_type":1109,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"7.0.0",{"version":1239,"is_range":685,"range_type":1109,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"7.0.0:beta",{"version":1241,"is_range":685,"range_type":1109,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"7.0.1",{"version":1243,"is_range":685,"range_type":1109,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"7.0.2",{"version":1245,"is_range":685,"range_type":1109,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"7.0.3",{"version":1247,"is_range":685,"range_type":1109,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"7.0.4",{"version":1249,"is_range":685,"range_type":1109,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"7.0.5",{"version":1251,"is_range":685,"range_type":1109,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"7.0.6",{"version":1253,"is_range":685,"range_type":1109,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"7.0.7",{"version":1255,"is_range":685,"range_type":1109,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"7.0.8",{"version":1257,"is_range":685,"range_type":1109,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"7.0.9",{"version":1259,"is_range":685,"range_type":1109,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"7.0.10",{"version":1261,"is_range":685,"range_type":1109,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"7.0.11",{"ecosystem":1263,"name":1264,"vendor":1265,"product":1266,"cpe_part":9,"purl_type":1267,"purl_namespace":1265,"purl_name":1266,"source":9,"versions":1268},"Maven","org.apache.tomcat:tomcat","org.apache.tomcat","tomcat","maven",[1269,1276,1279],{"version":1270,"is_range":1271,"range_type":1272,"version_start":1108,"version_start_type":1273,"version_end":1274,"version_end_type":1275,"fixed_in":9},"gte5_5_0_lt5_5_34",true,"ecosystem","including","5.5.34","excluding",{"version":1277,"is_range":1271,"range_type":1272,"version_start":1179,"version_start_type":1273,"version_end":1278,"version_end_type":1275,"fixed_in":9},"gte6_0_0_lt6_0_33","6.0.33",{"version":1280,"is_range":1271,"range_type":1272,"version_start":1237,"version_start_type":1273,"version_end":1281,"version_end_type":1275,"fixed_in":9},"gte7_0_0_lt7_0_12","7.0.12"]