[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2016-8735":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-05T14:55:33.319Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":18,"aliases":19,"duplicate_of":9,"upstream":21,"downstream":22,"duplicates":53,"related":54,"reserved_at":9,"published_at":60,"modified_at":61,"state":62,"summary":63,"references_raw":73,"kevs":345,"epss":356,"epss_history":359,"metrics":557,"affected":571},"CVE-2016-8735","Remote code execution is possible with Apache Tomcat before 6.0.48, 7.x before 7.0.73, 8.x before 8.0.39, 8.5.x before 8.5.7, and 9.x before 9.0.0.M12 if JmxRemoteLifecycleListener is used and an attacker can reach JMX ports. The issue exists because this listener wasn't updated for consistency with the CVE-2016-3427 Oracle patch that affected credential types.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":9,"likelihood_of_exploit":9,"capec":17},"NVD-CWE-NOINFO","Insufficient Information","NVD uses this CWE ID when there is insufficient information to assign a specific CWE.","placeholder","NVD-Reserved",[],[],[20],"GHSA-cw54-59pw-4g8c",[],[23,25,27,29,31,33,35,37,39,41,43,45,47,49,51],{"_key":24},"SUSE-SU-2016:3081-1",{"_key":26},"SUSE-SU-2016:3079-1",{"_key":28},"SUSE-SU-2017:1632-1",{"_key":30},"SUSE-SU-2017:1660-1",{"_key":32},"UBUNTU-CVE-2016-8735",{"_key":34},"USN-7242-1",{"_key":36},"DLA-728-1",{"_key":38},"DLA-729-1",{"_key":40},"DSA-3738-1",{"_key":42},"DSA-3739-1",{"_key":44},"MGASA-2016-0417",{"_key":46},"USN-3177-1",{"_key":48},"USN-4557-1",{"_key":50},"RHSA-2017:0455",{"_key":52},"RHSA-2017:0456",[],[55,56,57,58,59],{"_key":24},{"_key":26},{"_key":28},{"_key":30},{"_key":44},"2017-04-06T21:00:00.000Z","2025-10-21T23:55:42.758Z","Analyzed",{"cisa_kev":64,"cisa_ransomware":65,"cisa_vendor":66,"epss_severity":67,"epss_score":68,"severity":67,"severity_score":69,"severity_version":70,"severity_source":71,"severity_vector":72,"severity_status":62},true,false,"Apache","critical",0.93809,9.8,"v3.1","cve.org","CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",[74,84,88,93,99,105,110,116,120,124,128,132,136,140,144,149,153,157,161,166,171,175,179,183,187,191,195,199,203,207,211,216,220,224,228,232,237,243,248,252,256,260,264,268,272,276,280,284,288,292,296,300,304,309,313,317,321,325,329,333,337,341],{"url":75,"sources":76,"tags":79},"http://www.oracle.com/technetwork/security-advisory/cpujul2018-4258247.html",[71,77,78],"nvd","osv_maven",[80,81,82,83],"X Refsource CONFIRM","Patch","Third Party Advisory","WEB",{"url":85,"sources":86,"tags":87},"http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html",[71,77,78],[80,81,82,83],{"url":89,"sources":90,"tags":91},"http://svn.apache.org/viewvc?view=revision&revision=1767676",[71,77,78],[80,92,81,83],"Broken Link",{"url":94,"sources":95,"tags":96},"http://tomcat.apache.org/security-9.html",[71,77,78],[80,97,98,83],"Release Notes","Vendor Advisory",{"url":100,"sources":101,"tags":102},"http://www.securitytracker.com/id/1037331",[71,77,78],[103,104,92,82,83],"VDB Entry","X Refsource SECTRACK",{"url":106,"sources":107,"tags":108},"http://www.securityfocus.com/bid/94463",[71,77,78],[103,109,92,82,83],"X Refsource BID",{"url":111,"sources":112,"tags":113},"http://www.debian.org/security/2016/dsa-3738",[71,77,78],[98,114,115,82,83],"X Refsource DEBIAN","Mailing List",{"url":117,"sources":118,"tags":119},"http://tomcat.apache.org/security-7.html",[71,77,78],[80,97,98,83],{"url":121,"sources":122,"tags":123},"http://svn.apache.org/viewvc?view=revision&revision=1767644",[71,77,78],[80,92,81,83],{"url":125,"sources":126,"tags":127},"http://tomcat.apache.org/security-8.html",[71,77,78],[80,97,98,83],{"url":129,"sources":130,"tags":131},"http://svn.apache.org/viewvc?view=revision&revision=1767656",[71,77,78],[80,92,81,83],{"url":133,"sources":134,"tags":135},"http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html",[71,77,78],[80,81,82,83],{"url":137,"sources":138,"tags":139},"https://security.netapp.com/advisory/ntap-20180607-0001/",[71,77],[80,82],{"url":141,"sources":142,"tags":143},"http://tomcat.apache.org/security-6.html",[71,77,78],[80,97,98,83],{"url":145,"sources":146,"tags":147},"http://rhn.redhat.com/errata/RHSA-2017-0457.html",[71,77,78],[98,148,82,83],"X Refsource REDHAT",{"url":150,"sources":151,"tags":152},"https://access.redhat.com/errata/RHSA-2017:0455",[71,77,78],[98,148,82,83],{"url":154,"sources":155,"tags":156},"http://svn.apache.org/viewvc?view=revision&revision=1767684",[71,77,78],[80,92,81,83],{"url":158,"sources":159,"tags":160},"https://access.redhat.com/errata/RHSA-2017:0456",[71,77,78],[98,148,82,83],{"url":162,"sources":163,"tags":164},"http://seclists.org/oss-sec/2016/q4/502",[71,77,78],[80,115,165,82,83],"Mitigation",{"url":167,"sources":168,"tags":169},"https://lists.apache.org/thread.html/343558d982879bf88ec20dbf707f8c11255f8e219e81d45c4f8d0551%40%3Cdev.tomcat.apache.org%3E",[71,77,78],[115,170,81,83],"X Refsource MLIST",{"url":172,"sources":173,"tags":174},"https://lists.apache.org/thread.html/b8a1bf18155b552dcf9a928ba808cbadad84c236d85eab3033662cfb%40%3Cdev.tomcat.apache.org%3E",[71,77,78],[115,170,81,83],{"url":176,"sources":177,"tags":178},"https://lists.apache.org/thread.html/388a323769f1dff84c9ec905455aa73fbcb20338e3c7eb131457f708%40%3Cdev.tomcat.apache.org%3E",[71,77,78],[115,170,81,83],{"url":180,"sources":181,"tags":182},"https://lists.apache.org/thread.html/b5e3f51d28cd5d9b1809f56594f2cf63dcd6a90429e16ea9f83bbedc%40%3Cdev.tomcat.apache.org%3E",[71,77,78],[115,170,81,83],{"url":184,"sources":185,"tags":186},"https://lists.apache.org/thread.html/39ae1f0bd5867c15755a6f959b271ade1aea04ccdc3b2e639dcd903b%40%3Cdev.tomcat.apache.org%3E",[71,77,78],[115,170,81,83],{"url":188,"sources":189,"tags":190},"https://lists.apache.org/thread.html/88855876c33f2f9c532ffb75bfee570ccf0b17ffa77493745af9a17a%40%3Cdev.tomcat.apache.org%3E",[71,77,78],[115,170,81,83],{"url":192,"sources":193,"tags":194},"https://lists.apache.org/thread.html/845312a10aabbe2c499fca94003881d2c79fc993d85f34c1f5c77424%40%3Cdev.tomcat.apache.org%3E",[71,77,78],[115,170,81,83],{"url":196,"sources":197,"tags":198},"https://lists.apache.org/thread.html/37220405a377c0182d2afdbc36461c4783b2930fbeae3a17f1333113%40%3Cdev.tomcat.apache.org%3E",[71,77,78],[115,170,81,83],{"url":200,"sources":201,"tags":202},"https://lists.apache.org/thread.html/3d19773b4cf0377db62d1e9328bf9160bf1819f04f988315086931d7%40%3Cdev.tomcat.apache.org%3E",[71,77,78],[115,170,81,83],{"url":204,"sources":205,"tags":206},"https://lists.apache.org/thread.html/6af47120905aa7d8fe12f42e8ff2284fb338ba141d3b77b8c7cb61b3%40%3Cdev.tomcat.apache.org%3E",[71,77,78],[115,170,81,83],{"url":208,"sources":209,"tags":210},"https://lists.apache.org/thread.html/b84ad1258a89de5c9c853c7f2d3ad77e5b8b2930be9e132d5cef6b95%40%3Cdev.tomcat.apache.org%3E",[71,77,78],[115,170,81,83],{"url":212,"sources":213,"tags":214},"https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html",[71,77,78],[215,81,82,83],"X Refsource MISC",{"url":217,"sources":218,"tags":219},"https://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html",[71,77,78],[215,81,82,83],{"url":221,"sources":222,"tags":223},"https://lists.apache.org/thread.html/r03c597a64de790ba42c167efacfa23300c3d6c9fe589ab87fe02859c%40%3Cdev.tomcat.apache.org%3E",[71,77,78],[115,170,81,83],{"url":225,"sources":226,"tags":227},"https://lists.apache.org/thread.html/r9136ff5b13e4f1941360b5a309efee2c114a14855578c3a2cbe5d19c%40%3Cdev.tomcat.apache.org%3E",[71,77,78],[115,170,81,83],{"url":229,"sources":230,"tags":231},"https://lists.apache.org/thread.html/r587e50b86c1a96ee301f751d50294072d142fd6dc08a8987ae9f3a9b%40%3Cdev.tomcat.apache.org%3E",[71,77,78],[115,170,81,83],{"url":233,"sources":234,"tags":235},"https://usn.ubuntu.com/4557-1/",[71,77],[98,236,82],"X Refsource UBUNTU",{"url":238,"sources":239,"tags":240},"https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2016-8735",[71,77,78],[241,83,242],"Government Resource","US Government Resource",{"url":244,"sources":245,"tags":246},"https://nvd.nist.gov/vuln/detail/CVE-2016-8735",[78],[247],"Advisory",{"url":249,"sources":250,"tags":251},"https://github.com/apache/tomcat/commit/0e83ad3e547fc9a75a258799ef581249b40a82a6",[78],[83],{"url":253,"sources":254,"tags":255},"https://github.com/apache/tomcat/commit/292d6ccdc9edbf80859929b0af070b2ea99fa688",[78],[83],{"url":257,"sources":258,"tags":259},"https://github.com/apache/tomcat/commit/7e3a037055cca4a17e90b49399fb1bab4dd7c821",[78],[83],{"url":261,"sources":262,"tags":263},"https://github.com/apache/tomcat80/commit/0f76016a4ec45635e450ada9c84ff7ee0c5f3799",[78],[83],{"url":265,"sources":266,"tags":267},"https://lists.apache.org/thread.html/b5e3f51d28cd5d9b1809f56594f2cf63dcd6a90429e16ea9f83bbedc@%3Cdev.tomcat.apache.org%3E",[78],[83],{"url":269,"sources":270,"tags":271},"https://lists.apache.org/thread.html/b84ad1258a89de5c9c853c7f2d3ad77e5b8b2930be9e132d5cef6b95@%3Cdev.tomcat.apache.org%3E",[78],[83],{"url":273,"sources":274,"tags":275},"https://lists.apache.org/thread.html/b8a1bf18155b552dcf9a928ba808cbadad84c236d85eab3033662cfb@%3Cdev.tomcat.apache.org%3E",[78],[83],{"url":277,"sources":278,"tags":279},"https://lists.apache.org/thread.html/r03c597a64de790ba42c167efacfa23300c3d6c9fe589ab87fe02859c@%3Cdev.tomcat.apache.org%3E",[78],[83],{"url":281,"sources":282,"tags":283},"https://lists.apache.org/thread.html/r587e50b86c1a96ee301f751d50294072d142fd6dc08a8987ae9f3a9b@%3Cdev.tomcat.apache.org%3E",[78],[83],{"url":285,"sources":286,"tags":287},"https://lists.apache.org/thread.html/r9136ff5b13e4f1941360b5a309efee2c114a14855578c3a2cbe5d19c@%3Cdev.tomcat.apache.org%3E",[78],[83],{"url":289,"sources":290,"tags":291},"https://security.netapp.com/advisory/ntap-20180607-0001",[78],[83],{"url":293,"sources":294,"tags":295},"https://usn.ubuntu.com/4557-1",[78],[83],{"url":297,"sources":298,"tags":299},"https://web.archive.org/web/20170423095340/http://www.securityfocus.com/bid/94463",[78],[83],{"url":301,"sources":302,"tags":303},"https://web.archive.org/web/20170928203901/http://www.securitytracker.com/id/1037331",[78],[83],{"url":305,"sources":306,"tags":307},"https://github.com/apache/tomcat",[78],[308],"PACKAGE",{"url":310,"sources":311,"tags":312},"https://github.com/search?q=repo%3Aapache%2Ftomcat+catalina.mbeans+path%3A%2F%5Eres%5C%2Fbnd%5C%2F%2F&type=code",[78],[83],{"url":314,"sources":315,"tags":316},"https://lists.apache.org/thread.html/343558d982879bf88ec20dbf707f8c11255f8e219e81d45c4f8d0551@%3Cdev.tomcat.apache.org%3E",[78],[83],{"url":318,"sources":319,"tags":320},"https://lists.apache.org/thread.html/37220405a377c0182d2afdbc36461c4783b2930fbeae3a17f1333113@%3Cdev.tomcat.apache.org%3E",[78],[83],{"url":322,"sources":323,"tags":324},"https://lists.apache.org/thread.html/388a323769f1dff84c9ec905455aa73fbcb20338e3c7eb131457f708@%3Cdev.tomcat.apache.org%3E",[78],[83],{"url":326,"sources":327,"tags":328},"https://lists.apache.org/thread.html/39ae1f0bd5867c15755a6f959b271ade1aea04ccdc3b2e639dcd903b@%3Cdev.tomcat.apache.org%3E",[78],[83],{"url":330,"sources":331,"tags":332},"https://lists.apache.org/thread.html/3d19773b4cf0377db62d1e9328bf9160bf1819f04f988315086931d7@%3Cdev.tomcat.apache.org%3E",[78],[83],{"url":334,"sources":335,"tags":336},"https://lists.apache.org/thread.html/6af47120905aa7d8fe12f42e8ff2284fb338ba141d3b77b8c7cb61b3@%3Cdev.tomcat.apache.org%3E",[78],[83],{"url":338,"sources":339,"tags":340},"https://lists.apache.org/thread.html/845312a10aabbe2c499fca94003881d2c79fc993d85f34c1f5c77424@%3Cdev.tomcat.apache.org%3E",[78],[83],{"url":342,"sources":343,"tags":344},"https://lists.apache.org/thread.html/88855876c33f2f9c532ffb75bfee570ccf0b17ffa77493745af9a17a@%3Cdev.tomcat.apache.org%3E",[78],[83],[346],{"source":347,"vendor":66,"product":348,"date_added":349,"vulnerability_name":350,"short_description":351,"required_action":352,"due_date":353,"known_ransomware_campaign_use":354,"notes":355,"exploitation_type":9},"cisa","Tomcat","2023-05-12","Apache Tomcat Remote Code Execution Vulnerability","Apache Tomcat contains an unspecified vulnerability that allows for remote code execution if JmxRemoteLifecycleListener is used and an attacker can reach Java Management Extension (JMX) ports. This CVE exists because this listener wasn't updated for consistency with the Oracle patched issues for CVE-2016-3427 which affected credential types.","Apply updates per vendor instructions.","2023-06-02","Unknown","https://tomcat.apache.org/security-9.html; https://nvd.nist.gov/vuln/detail/CVE-2016-8735",{"date":357,"score":68,"percentile":358},"2026-06-04",0.9987,[360,364,366,368,370,372,374,376,378,380,383,385,387,389,391,395,397,399,401,403,405,408,410,412,414,416,418,420,424,426,428,430,432,434,436,438,440,442,444,446,448,450,452,454,456,458,460,462,464,466,468,470,472,474,478,480,482,484,486,488,490,492,494,496,498,500,502,504,506,508,512,516,518,520,522,524,526,528,530,532,534,536,539,541,543,545,547,549,551,553],{"date":361,"score":362,"percentile":363},"2025-11-04",0.93875,0.99862,{"date":365,"score":362,"percentile":363},"2025-11-05",{"date":367,"score":362,"percentile":363},"2025-11-06",{"date":369,"score":362,"percentile":363},"2025-11-07",{"date":371,"score":362,"percentile":363},"2025-11-08",{"date":373,"score":362,"percentile":363},"2025-11-09",{"date":375,"score":362,"percentile":363},"2025-11-10",{"date":377,"score":362,"percentile":363},"2025-11-11",{"date":379,"score":362,"percentile":363},"2025-11-12",{"date":381,"score":362,"percentile":382},"2025-11-13",0.99861,{"date":384,"score":362,"percentile":382},"2025-11-14",{"date":386,"score":362,"percentile":363},"2025-11-15",{"date":388,"score":362,"percentile":363},"2025-11-16",{"date":390,"score":362,"percentile":363},"2025-11-17",{"date":392,"score":393,"percentile":394},"2025-11-18",0.93644,0.9989,{"date":396,"score":393,"percentile":394},"2025-11-19",{"date":398,"score":393,"percentile":394},"2025-11-20",{"date":400,"score":362,"percentile":363},"2025-11-21",{"date":402,"score":362,"percentile":363},"2025-11-22",{"date":404,"score":362,"percentile":363},"2025-11-23",{"date":406,"score":362,"percentile":407},"2025-11-24",0.9986,{"date":409,"score":362,"percentile":407},"2025-11-25",{"date":411,"score":362,"percentile":407},"2025-11-26",{"date":413,"score":362,"percentile":407},"2025-11-27",{"date":415,"score":362,"percentile":407},"2025-11-28",{"date":417,"score":362,"percentile":407},"2025-11-29",{"date":419,"score":362,"percentile":407},"2025-11-30",{"date":421,"score":422,"percentile":423},"2025-12-01",0.93817,0.99854,{"date":425,"score":422,"percentile":423},"2025-12-02",{"date":427,"score":422,"percentile":423},"2025-12-03",{"date":429,"score":362,"percentile":407},"2025-12-04",{"date":431,"score":362,"percentile":407},"2025-12-05",{"date":433,"score":362,"percentile":407},"2025-12-06",{"date":435,"score":362,"percentile":407},"2025-12-07",{"date":437,"score":362,"percentile":407},"2025-12-08",{"date":439,"score":362,"percentile":407},"2025-12-09",{"date":441,"score":362,"percentile":407},"2025-12-10",{"date":443,"score":362,"percentile":407},"2025-12-11",{"date":445,"score":362,"percentile":407},"2025-12-12",{"date":447,"score":362,"percentile":407},"2025-12-13",{"date":449,"score":362,"percentile":407},"2025-12-14",{"date":451,"score":362,"percentile":407},"2025-12-15",{"date":453,"score":362,"percentile":407},"2025-12-16",{"date":455,"score":362,"percentile":363},"2025-12-17",{"date":457,"score":362,"percentile":382},"2025-12-18",{"date":459,"score":362,"percentile":382},"2025-12-19",{"date":461,"score":362,"percentile":363},"2025-12-20",{"date":463,"score":362,"percentile":363},"2025-12-21",{"date":465,"score":362,"percentile":363},"2025-12-22",{"date":467,"score":362,"percentile":382},"2025-12-23",{"date":469,"score":362,"percentile":382},"2025-12-24",{"date":471,"score":362,"percentile":363},"2025-12-25",{"date":473,"score":362,"percentile":382},"2025-12-26",{"date":475,"score":476,"percentile":477},"2025-12-27",0.9398,0.99879,{"date":479,"score":362,"percentile":363},"2025-12-28",{"date":481,"score":362,"percentile":363},"2025-12-29",{"date":483,"score":362,"percentile":363},"2025-12-30",{"date":485,"score":362,"percentile":363},"2025-12-31",{"date":487,"score":422,"percentile":423},"2026-01-01",{"date":489,"score":422,"percentile":423},"2026-01-02",{"date":491,"score":422,"percentile":423},"2026-01-03",{"date":493,"score":362,"percentile":382},"2026-01-04",{"date":495,"score":362,"percentile":382},"2026-01-05",{"date":497,"score":362,"percentile":382},"2026-01-06",{"date":499,"score":362,"percentile":407},"2026-01-07",{"date":501,"score":362,"percentile":382},"2026-01-08",{"date":503,"score":362,"percentile":382},"2026-01-09",{"date":505,"score":362,"percentile":363},"2026-01-10",{"date":507,"score":362,"percentile":363},"2026-01-11",{"date":509,"score":510,"percentile":511},"2026-01-12",0.93901,0.99866,{"date":513,"score":514,"percentile":515},"2026-01-13",0.93967,0.99877,{"date":517,"score":514,"percentile":515},"2026-01-14",{"date":519,"score":514,"percentile":515},"2026-01-15",{"date":521,"score":514,"percentile":515},"2026-01-16",{"date":523,"score":514,"percentile":515},"2026-01-17",{"date":525,"score":514,"percentile":515},"2026-01-18",{"date":527,"score":514,"percentile":515},"2026-01-19",{"date":529,"score":514,"percentile":515},"2026-01-20",{"date":531,"score":514,"percentile":515},"2026-01-21",{"date":533,"score":514,"percentile":515},"2026-01-22",{"date":535,"score":514,"percentile":515},"2026-01-23",{"date":537,"score":514,"percentile":538},"2026-01-24",0.99878,{"date":540,"score":514,"percentile":538},"2026-01-25",{"date":542,"score":514,"percentile":538},"2026-01-26",{"date":544,"score":514,"percentile":477},"2026-01-27",{"date":546,"score":514,"percentile":477},"2026-01-28",{"date":548,"score":514,"percentile":477},"2026-01-29",{"date":550,"score":514,"percentile":477},"2026-01-30",{"date":552,"score":514,"percentile":477},"2026-01-31",{"date":554,"score":555,"percentile":556},"2026-02-01",0.93916,0.99874,[558,562,568],{"source":71,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":559,"cvss_v4_0":9},{"baseScore":69,"baseSeverity":560,"vectorString":72,"impactScore":69,"exploitabilityScore":561},"CRITICAL",10,{"source":77,"cvss_v2_0":563,"cvss_v3_0":9,"cvss_v3_1":567,"cvss_v4_0":9},{"baseScore":564,"baseSeverity":9,"vectorString":565,"impactScore":566,"exploitabilityScore":561},7.5,"AV:N/AC:L/Au:N/C:P/I:P/A:P",6.4,{"baseScore":69,"baseSeverity":560,"vectorString":72,"impactScore":69,"exploitabilityScore":561},{"source":78,"cvss_v2_0":9,"cvss_v3_0":569,"cvss_v3_1":9,"cvss_v4_0":9},{"baseScore":69,"baseSeverity":9,"vectorString":570,"impactScore":69,"exploitabilityScore":561},"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:H",[572,591,632,640,646,667,676,683,688,693,698,709,717,725,731,741,749,757,772,787,793,813],{"ecosystem":9,"name":573,"vendor":574,"product":575,"cpe_part":576,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":577},"Apache Tomcat","apache software foundation","apache tomcat","a",[578,582,585,587,589],{"version":579,"is_range":64,"range_type":71,"version_start":9,"version_start_type":9,"version_end":580,"version_end_type":581,"fixed_in":9},"before 6.0.48","6.0.48","excluding",{"version":583,"is_range":65,"range_type":71,"version_start":583,"version_start_type":584,"version_end":583,"version_end_type":584,"fixed_in":9},"7.x before 7.0.73","including",{"version":586,"is_range":65,"range_type":71,"version_start":586,"version_start_type":584,"version_end":586,"version_end_type":584,"fixed_in":9},"8.x before 8.0.39",{"version":588,"is_range":65,"range_type":71,"version_start":588,"version_start_type":584,"version_end":588,"version_end_type":584,"fixed_in":9},"8.5.x before 8.5.7",{"version":590,"is_range":65,"range_type":71,"version_start":590,"version_start_type":584,"version_end":590,"version_end_type":584,"fixed_in":9},"9.x before 9.0.0.M12",{"ecosystem":9,"name":348,"vendor":9,"product":348,"cpe_part":9,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":592},[593,596,600,604,608,610,612,614,616,618,620,622,624,626,628,630],{"version":594,"is_range":64,"range_type":595,"version_start":9,"version_start_type":9,"version_end":580,"version_end_type":581,"fixed_in":9},"lt6.0.48","cpe",{"version":597,"is_range":64,"range_type":595,"version_start":598,"version_start_type":584,"version_end":599,"version_end_type":581,"fixed_in":9},"gte7.0.0_lt7.0.73","7.0.0","7.0.73",{"version":601,"is_range":64,"range_type":595,"version_start":602,"version_start_type":584,"version_end":603,"version_end_type":581,"fixed_in":9},"gte8.0_lt8.0.39","8.0","8.0.39",{"version":605,"is_range":64,"range_type":595,"version_start":606,"version_start_type":584,"version_end":607,"version_end_type":581,"fixed_in":9},"gte8.5.0_lt8.5.7","8.5.0","8.5.7",{"version":609,"is_range":65,"range_type":595,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"9.0.0",{"version":611,"is_range":65,"range_type":595,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"9.0.0:milestone1",{"version":613,"is_range":65,"range_type":595,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"9.0.0:milestone10",{"version":615,"is_range":65,"range_type":595,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"9.0.0:milestone11",{"version":617,"is_range":65,"range_type":595,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"9.0.0:milestone2",{"version":619,"is_range":65,"range_type":595,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"9.0.0:milestone3",{"version":621,"is_range":65,"range_type":595,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"9.0.0:milestone4",{"version":623,"is_range":65,"range_type":595,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"9.0.0:milestone5",{"version":625,"is_range":65,"range_type":595,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"9.0.0:milestone6",{"version":627,"is_range":65,"range_type":595,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"9.0.0:milestone7",{"version":629,"is_range":65,"range_type":595,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"9.0.0:milestone8",{"version":631,"is_range":65,"range_type":595,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"9.0.0:milestone9",{"ecosystem":9,"name":633,"vendor":634,"product":635,"cpe_part":636,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":637},"ubuntu linux","canonical","ubuntu_linux","o",[638],{"version":639,"is_range":65,"range_type":595,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"16.04",{"ecosystem":9,"name":641,"vendor":642,"product":643,"cpe_part":636,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":644},"debian linux","debian","debian_linux",[645],{"version":602,"is_range":65,"range_type":595,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"ecosystem":647,"name":648,"vendor":649,"product":650,"cpe_part":9,"purl_type":651,"purl_namespace":649,"purl_name":650,"source":9,"versions":652},"Maven","org.apache.tomcat:tomcat-catalina","org.apache.tomcat","tomcat-catalina","maven",[653,656,658,661,663],{"version":654,"is_range":64,"range_type":655,"version_start":9,"version_start_type":9,"version_end":580,"version_end_type":581,"fixed_in":9},"lt6_0_48","ecosystem",{"version":657,"is_range":64,"range_type":655,"version_start":598,"version_start_type":584,"version_end":599,"version_end_type":581,"fixed_in":9},"gte7_0_0_lt7_0_73",{"version":659,"is_range":64,"range_type":655,"version_start":660,"version_start_type":584,"version_end":603,"version_end_type":581,"fixed_in":9},"gte8_0_0_lt8_0_39","8.0.0",{"version":662,"is_range":64,"range_type":655,"version_start":606,"version_start_type":584,"version_end":607,"version_end_type":581,"fixed_in":9},"gte8_5_0_lt8_5_7",{"version":664,"is_range":64,"range_type":655,"version_start":665,"version_start_type":584,"version_end":666,"version_end_type":581,"fixed_in":9},"gte9_0_0_M1_lt9_0_0_M12","9.0.0.M1","9.0.0.M12",{"ecosystem":647,"name":668,"vendor":649,"product":669,"cpe_part":9,"purl_type":651,"purl_namespace":649,"purl_name":669,"source":9,"versions":670},"org.apache.tomcat:tomcat-catalina-jmx-remote","tomcat-catalina-jmx-remote",[671,672,673,674,675],{"version":654,"is_range":64,"range_type":655,"version_start":9,"version_start_type":9,"version_end":580,"version_end_type":581,"fixed_in":9},{"version":657,"is_range":64,"range_type":655,"version_start":598,"version_start_type":584,"version_end":599,"version_end_type":581,"fixed_in":9},{"version":659,"is_range":64,"range_type":655,"version_start":660,"version_start_type":584,"version_end":603,"version_end_type":581,"fixed_in":9},{"version":662,"is_range":64,"range_type":655,"version_start":606,"version_start_type":584,"version_end":607,"version_end_type":581,"fixed_in":9},{"version":664,"is_range":64,"range_type":655,"version_start":665,"version_start_type":584,"version_end":666,"version_end_type":581,"fixed_in":9},{"ecosystem":9,"name":677,"vendor":678,"product":679,"cpe_part":576,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":680},"7-mode transition tool","netapp","7-mode_transition_tool",[681],{"version":682,"is_range":65,"range_type":595,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"na",{"ecosystem":9,"name":684,"vendor":678,"product":685,"cpe_part":576,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":686},"oncommand insight","oncommand_insight",[687],{"version":682,"is_range":65,"range_type":595,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"ecosystem":9,"name":689,"vendor":678,"product":690,"cpe_part":576,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":691},"oncommand shift","oncommand_shift",[692],{"version":682,"is_range":65,"range_type":595,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"ecosystem":9,"name":694,"vendor":678,"product":695,"cpe_part":576,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":696},"snap creator framework","snap_creator_framework",[697],{"version":682,"is_range":65,"range_type":595,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"ecosystem":9,"name":699,"vendor":700,"product":701,"cpe_part":576,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":702},"agile engineering data management","oracle","agile_engineering_data_management",[703,705,707],{"version":704,"is_range":65,"range_type":595,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"6.1.3",{"version":706,"is_range":65,"range_type":595,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"6.2.0",{"version":708,"is_range":65,"range_type":595,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"6.2.1.0",{"ecosystem":9,"name":710,"vendor":700,"product":711,"cpe_part":576,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":712},"agile plm","agile_plm",[713,715],{"version":714,"is_range":65,"range_type":595,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"9.3.5",{"version":716,"is_range":65,"range_type":595,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"9.3.6",{"ecosystem":9,"name":718,"vendor":700,"product":719,"cpe_part":576,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":720},"communications application session controller","communications_application_session_controller",[721,723],{"version":722,"is_range":65,"range_type":595,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"3.7.1",{"version":724,"is_range":65,"range_type":595,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"3.8.0",{"ecosystem":9,"name":726,"vendor":700,"product":727,"cpe_part":576,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":728},"communications instant messaging server","communications_instant_messaging_server",[729],{"version":730,"is_range":65,"range_type":595,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"10.0.1",{"ecosystem":9,"name":732,"vendor":700,"product":733,"cpe_part":576,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":734},"communications interactive session recorder","communications_interactive_session_recorder",[735,737,739],{"version":736,"is_range":65,"range_type":595,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"6.0",{"version":738,"is_range":65,"range_type":595,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"6.1",{"version":740,"is_range":65,"range_type":595,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"6.2",{"ecosystem":9,"name":742,"vendor":700,"product":743,"cpe_part":576,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":744},"hospitality guest access","hospitality_guest_access",[745,747],{"version":746,"is_range":65,"range_type":595,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"4.2.0",{"version":748,"is_range":65,"range_type":595,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"4.2.1",{"ecosystem":9,"name":750,"vendor":700,"product":751,"cpe_part":576,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":752},"micros relate crm software","micros_relate_crm_software",[753,755],{"version":754,"is_range":65,"range_type":595,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"10.8",{"version":756,"is_range":65,"range_type":595,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"11.4",{"ecosystem":9,"name":758,"vendor":700,"product":759,"cpe_part":576,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":760},"micros retail xbri loss prevention","micros_retail_xbri_loss_prevention",[761,762,764,766,768,770],{"version":730,"is_range":65,"range_type":595,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"version":763,"is_range":65,"range_type":595,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"10.5.0",{"version":765,"is_range":65,"range_type":595,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"10.6.0",{"version":767,"is_range":65,"range_type":595,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"10.7.7",{"version":769,"is_range":65,"range_type":595,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"10.8.0",{"version":771,"is_range":65,"range_type":595,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"10.8.1",{"ecosystem":9,"name":773,"vendor":700,"product":774,"cpe_part":576,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":775},"mysql enterprise monitor","mysql_enterprise_monitor",[776,779,783],{"version":777,"is_range":64,"range_type":595,"version_start":9,"version_start_type":9,"version_end":778,"version_end_type":584,"fixed_in":9},"lte3.2.8.2223","3.2.8.2223",{"version":780,"is_range":64,"range_type":595,"version_start":781,"version_start_type":584,"version_end":782,"version_end_type":584,"fixed_in":9},"gte3.3.0_lte3.3.4.3247","3.3.0","3.3.4.3247",{"version":784,"is_range":64,"range_type":595,"version_start":785,"version_start_type":584,"version_end":786,"version_end_type":584,"fixed_in":9},"gte3.4.0_lte3.4.2.4181","3.4.0","3.4.2.4181",{"ecosystem":9,"name":788,"vendor":700,"product":789,"cpe_part":576,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":790},"retail convenience and fuel pos software","retail_convenience_and_fuel_pos_software",[791],{"version":792,"is_range":65,"range_type":595,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"2.1.132",{"ecosystem":9,"name":794,"vendor":700,"product":795,"cpe_part":576,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":796},"transportation management","transportation_management",[797,799,801,803,805,807,809,811],{"version":798,"is_range":65,"range_type":595,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"6.3.0",{"version":800,"is_range":65,"range_type":595,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"6.3.1",{"version":802,"is_range":65,"range_type":595,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"6.3.2",{"version":804,"is_range":65,"range_type":595,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"6.3.3",{"version":806,"is_range":65,"range_type":595,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"6.3.4",{"version":808,"is_range":65,"range_type":595,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"6.3.5",{"version":810,"is_range":65,"range_type":595,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"6.3.6",{"version":812,"is_range":65,"range_type":595,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"6.3.7",{"ecosystem":9,"name":814,"vendor":815,"product":816,"cpe_part":576,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":817},"jboss enterprise web server","redhat","jboss_enterprise_web_server",[818],{"version":819,"is_range":65,"range_type":595,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"3.0.0"]