[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2018-8034":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-05T02:55:30.529Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":27,"aliases":28,"duplicate_of":9,"upstream":30,"downstream":31,"duplicates":70,"related":71,"reserved_at":9,"published_at":79,"modified_at":80,"state":81,"summary":82,"references_raw":91,"kevs":378,"epss":379,"epss_history":382,"metrics":639,"affected":655},"CVE-2018-8034","The host name verification when using TLS with the WebSocket client was missing. It is now enabled by default. Versions Affected: Apache Tomcat 9.0.0.M1 to 9.0.9, 8.5.0 to 8.5.31, 8.0.0.RC1 to 8.0.52, and 7.0.35 to 7.0.88.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":9,"capec":18},"CWE-295","Improper Certificate Validation","The product does not validate, or incorrectly validates, a certificate.","weakness","Draft","Base",[19,23],{"id":20,"name":21,"techniques":22},"CAPEC-459","Creating a Rogue Certification Authority Certificate",[],{"id":24,"name":25,"techniques":26},"CAPEC-475","Signature Spoofing by Improper Validation",[],[],[29],"GHSA-46j3-r4pj-4835",[],[32,34,36,38,40,42,44,46,48,50,52,54,56,58,60,62,64,66,68],{"_key":33},"SUSE-SU-2018:2699-1",{"_key":35},"SUSE-SU-2018:3011-1",{"_key":37},"SUSE-SU-2018:3261-1",{"_key":39},"SUSE-SU-2018:3388-1",{"_key":41},"OPENSUSE-SU-2024:11468-1",{"_key":43},"OPENSUSE-SU-2024:13441-1",{"_key":45},"DLA-1453-1",{"_key":47},"DLA-1491-1",{"_key":49},"DSA-4281-1",{"_key":51},"MGASA-2018-0479",{"_key":53},"USN-3723-1",{"_key":55},"RHSA-2019:0131",{"_key":57},"RHSA-2019:0451",{"_key":59},"RHSA-2019:1159",{"_key":61},"RHSA-2019:1160",{"_key":63},"RHSA-2019:1161",{"_key":65},"RHSA-2019:1529",{"_key":67},"RHSA-2019:2205",{"_key":69},"UBUNTU-CVE-2018-8034",[],[72,73,74,75,76,77,78],{"_key":33},{"_key":35},{"_key":37},{"_key":39},{"_key":41},{"_key":43},{"_key":51},"2018-08-01T18:00:00.000Z","2024-10-21T16:09:49.791Z","Modified",{"cisa_kev":83,"cisa_ransomware":83,"cisa_vendor":9,"epss_severity":84,"epss_score":85,"severity":86,"severity_score":87,"severity_version":88,"severity_source":89,"severity_vector":90,"severity_status":81},false,"medium",0.13337,"high",7.5,"v3.1","cve.org","CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",[92,100,108,113,117,122,128,133,137,142,146,150,154,159,163,167,171,175,179,183,187,191,195,199,203,208,212,216,220,224,228,232,236,240,244,248,252,256,260,264,268,272,277,281,285,289,293,297,301,305,309,313,317,321,325,329,333,337,342,346,350,354,358,362,366,370,374],{"url":93,"sources":94,"tags":96},"https://usn.ubuntu.com/3723-1/",[89,95],"nvd",[97,98,99],"Vendor Advisory","X Refsource UBUNTU","Third Party Advisory",{"url":101,"sources":102,"tags":104},"http://mail-archives.us.apache.org/mod_mbox/www-announce/201807.mbox/%3C20180722091057.GA70283%40minotaur.apache.org%3E",[89,95,103],"osv_maven",[105,106,107],"Mailing List","X Refsource MLIST","WEB",{"url":109,"sources":110,"tags":111},"https://access.redhat.com/errata/RHSA-2019:0451",[89,95,103],[97,112,99,107],"X Refsource REDHAT",{"url":114,"sources":115,"tags":116},"https://lists.debian.org/debian-lts-announce/2018/07/msg00047.html",[89,95,103],[105,106,99,107],{"url":118,"sources":119,"tags":120},"https://www.debian.org/security/2018/dsa-4281",[89,95,103],[97,121,99,107],"X Refsource DEBIAN",{"url":123,"sources":124,"tags":125},"http://www.securitytracker.com/id/1041374",[89,95,103],[126,127,99,107],"VDB Entry","X Refsource SECTRACK",{"url":129,"sources":130,"tags":131},"https://security.netapp.com/advisory/ntap-20180817-0001/",[89,95],[132,99],"X Refsource CONFIRM",{"url":134,"sources":135,"tags":136},"https://access.redhat.com/errata/RHSA-2019:0131",[89,95,103],[97,112,99,107],{"url":138,"sources":139,"tags":140},"http://www.oracle.com/technetwork/security-advisory/cpuoct2018-4428296.html",[89,95,103],[132,141,99,107],"Patch",{"url":143,"sources":144,"tags":145},"https://access.redhat.com/errata/RHSA-2019:0130",[89,95,103],[97,112,99,107],{"url":147,"sources":148,"tags":149},"https://access.redhat.com/errata/RHSA-2019:0450",[89,95,103],[97,112,99,107],{"url":151,"sources":152,"tags":153},"https://lists.debian.org/debian-lts-announce/2018/09/msg00001.html",[89,95,103],[105,106,99,107],{"url":155,"sources":156,"tags":157},"http://www.securityfocus.com/bid/104895",[89,95,103],[126,158,99,107],"X Refsource BID",{"url":160,"sources":161,"tags":162},"https://lists.apache.org/thread.html/eb6efa8d59c45a7a9eff94c4b925467d3b3fec8ba7697f3daa314b04%40%3Cdev.tomcat.apache.org%3E",[89,95,103],[105,106,107],{"url":164,"sources":165,"tags":166},"https://lists.apache.org/thread.html/343558d982879bf88ec20dbf707f8c11255f8e219e81d45c4f8d0551%40%3Cdev.tomcat.apache.org%3E",[89,95,103],[105,106,107],{"url":168,"sources":169,"tags":170},"https://lists.apache.org/thread.html/388a323769f1dff84c9ec905455aa73fbcb20338e3c7eb131457f708%40%3Cdev.tomcat.apache.org%3E",[89,95,103],[105,106,107],{"url":172,"sources":173,"tags":174},"https://lists.apache.org/thread.html/5c0e00fd31efc11e147bf99d0f03c00a734447d3b131ab0818644cdb%40%3Cdev.tomcat.apache.org%3E",[89,95,103],[105,106,107],{"url":176,"sources":177,"tags":178},"https://lists.apache.org/thread.html/b5e3f51d28cd5d9b1809f56594f2cf63dcd6a90429e16ea9f83bbedc%40%3Cdev.tomcat.apache.org%3E",[89,95,103],[105,106,107],{"url":180,"sources":181,"tags":182},"https://lists.apache.org/thread.html/88855876c33f2f9c532ffb75bfee570ccf0b17ffa77493745af9a17a%40%3Cdev.tomcat.apache.org%3E",[89,95,103],[105,106,107],{"url":184,"sources":185,"tags":186},"https://lists.apache.org/thread.html/e85e83e9954f169bbb77b44baae5a33d8de878df557bb32b7f793661%40%3Cdev.tomcat.apache.org%3E",[89,95,103],[105,106,107],{"url":188,"sources":189,"tags":190},"https://lists.apache.org/thread.html/845312a10aabbe2c499fca94003881d2c79fc993d85f34c1f5c77424%40%3Cdev.tomcat.apache.org%3E",[89,95,103],[105,106,107],{"url":192,"sources":193,"tags":194},"https://lists.apache.org/thread.html/1dd0a59c1295cc08ce4c9e7edae5ad2268acc9ba55adcefa0532e5ba%40%3Cdev.tomcat.apache.org%3E",[89,95,103],[105,106,107],{"url":196,"sources":197,"tags":198},"https://lists.apache.org/thread.html/3d19773b4cf0377db62d1e9328bf9160bf1819f04f988315086931d7%40%3Cdev.tomcat.apache.org%3E",[89,95,103],[105,106,107],{"url":200,"sources":201,"tags":202},"https://lists.apache.org/thread.html/6af47120905aa7d8fe12f42e8ff2284fb338ba141d3b77b8c7cb61b3%40%3Cdev.tomcat.apache.org%3E",[89,95,103],[105,106,107],{"url":204,"sources":205,"tags":206},"https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html",[89,95,103],[207,141,99,107],"X Refsource MISC",{"url":209,"sources":210,"tags":211},"https://access.redhat.com/errata/RHSA-2019:1160",[89,95,103],[97,112,107],{"url":213,"sources":214,"tags":215},"https://access.redhat.com/errata/RHSA-2019:1162",[89,95,103],[97,112,107],{"url":217,"sources":218,"tags":219},"https://access.redhat.com/errata/RHSA-2019:1159",[89,95,103],[97,112,107],{"url":221,"sources":222,"tags":223},"https://access.redhat.com/errata/RHSA-2019:1161",[89,95,103],[97,112,107],{"url":225,"sources":226,"tags":227},"https://access.redhat.com/errata/RHSA-2019:1529",[89,95,103],[97,112,107],{"url":229,"sources":230,"tags":231},"https://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html",[89,95,103],[207,107],{"url":233,"sources":234,"tags":235},"https://lists.apache.org/thread.html/ac51944aef91dd5006b8510b0bef337adaccfe962fb90e7af9c22db4%40%3Cissues.activemq.apache.org%3E",[89,95,103],[105,106,107],{"url":237,"sources":238,"tags":239},"https://access.redhat.com/errata/RHSA-2019:2205",[89,95,103],[97,112,107],{"url":241,"sources":242,"tags":243},"https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html",[89,95,103],[207,107],{"url":245,"sources":246,"tags":247},"https://access.redhat.com/errata/RHSA-2019:3892",[89,95,103],[97,112,107],{"url":249,"sources":250,"tags":251},"https://lists.apache.org/thread.html/r6ccee4e849bc77df0840c7f853f6bd09d426f6741247da2b7429d5d9%40%3Cdev.tomcat.apache.org%3E",[89,95,103],[105,106,107],{"url":253,"sources":254,"tags":255},"https://lists.apache.org/thread.html/r3bbb800a816d0a51eccc5a228c58736960a9fffafa581a225834d97d%40%3Cdev.tomcat.apache.org%3E",[89,95,103],[105,106,107],{"url":257,"sources":258,"tags":259},"https://lists.apache.org/thread.html/r9136ff5b13e4f1941360b5a309efee2c114a14855578c3a2cbe5d19c%40%3Cdev.tomcat.apache.org%3E",[89,95,103],[105,106,107],{"url":261,"sources":262,"tags":263},"https://lists.apache.org/thread.html/raba0fabaf4d56d4325ab2aca8814f0b30a237ab83d8106b115ee279a%40%3Cdev.tomcat.apache.org%3E",[89,95,103],[105,106,107],{"url":265,"sources":266,"tags":267},"https://lists.apache.org/thread.html/r48c1444845fe15a823e1374674bfc297d5008a5453788099ea14caf0%40%3Cdev.tomcat.apache.org%3E",[89,95,103],[105,106,107],{"url":269,"sources":270,"tags":271},"https://www.oracle.com/security-alerts/cpuapr2020.html",[89,95,103],[207,107],{"url":273,"sources":274,"tags":275},"https://nvd.nist.gov/vuln/detail/CVE-2018-8034",[103],[276],"Advisory",{"url":278,"sources":279,"tags":280},"https://github.com/apache/tomcat/commit/2c522795166c930741a9cecca76797bf48cb1634",[103],[107],{"url":282,"sources":283,"tags":284},"https://github.com/apache/tomcat/commit/2835bb4e030c1c741ed0847bb3b9c3822e4fbc8a",[103],[107],{"url":286,"sources":287,"tags":288},"https://lists.apache.org/thread.html/r6ccee4e849bc77df0840c7f853f6bd09d426f6741247da2b7429d5d9@%3Cdev.tomcat.apache.org%3E",[103],[107],{"url":290,"sources":291,"tags":292},"https://lists.apache.org/thread.html/r48c1444845fe15a823e1374674bfc297d5008a5453788099ea14caf0@%3Cdev.tomcat.apache.org%3E",[103],[107],{"url":294,"sources":295,"tags":296},"https://lists.apache.org/thread.html/r3bbb800a816d0a51eccc5a228c58736960a9fffafa581a225834d97d@%3Cdev.tomcat.apache.org%3E",[103],[107],{"url":298,"sources":299,"tags":300},"https://lists.apache.org/thread.html/eb6efa8d59c45a7a9eff94c4b925467d3b3fec8ba7697f3daa314b04@%3Cdev.tomcat.apache.org%3E",[103],[107],{"url":302,"sources":303,"tags":304},"https://lists.apache.org/thread.html/e85e83e9954f169bbb77b44baae5a33d8de878df557bb32b7f793661@%3Cdev.tomcat.apache.org%3E",[103],[107],{"url":306,"sources":307,"tags":308},"https://lists.apache.org/thread.html/b5e3f51d28cd5d9b1809f56594f2cf63dcd6a90429e16ea9f83bbedc@%3Cdev.tomcat.apache.org%3E",[103],[107],{"url":310,"sources":311,"tags":312},"https://lists.apache.org/thread.html/ac51944aef91dd5006b8510b0bef337adaccfe962fb90e7af9c22db4@%3Cissues.activemq.apache.org%3E",[103],[107],{"url":314,"sources":315,"tags":316},"https://lists.apache.org/thread.html/r9136ff5b13e4f1941360b5a309efee2c114a14855578c3a2cbe5d19c@%3Cdev.tomcat.apache.org%3E",[103],[107],{"url":318,"sources":319,"tags":320},"https://lists.apache.org/thread.html/raba0fabaf4d56d4325ab2aca8814f0b30a237ab83d8106b115ee279a@%3Cdev.tomcat.apache.org%3E",[103],[107],{"url":322,"sources":323,"tags":324},"https://security.netapp.com/advisory/ntap-20180817-0001",[103],[107],{"url":326,"sources":327,"tags":328},"https://usn.ubuntu.com/3723-1",[103],[107],{"url":330,"sources":331,"tags":332},"https://web.archive.org/web/20200227102810/http://www.securityfocus.com/bid/104895",[103],[107],{"url":334,"sources":335,"tags":336},"https://web.archive.org/web/20200517032514/http://www.securitytracker.com/id/1041374",[103],[107],{"url":338,"sources":339,"tags":340},"https://github.com/apache/tomcat",[103],[341],"PACKAGE",{"url":343,"sources":344,"tags":345},"https://lists.apache.org/thread.html/1dd0a59c1295cc08ce4c9e7edae5ad2268acc9ba55adcefa0532e5ba@%3Cdev.tomcat.apache.org%3E",[103],[107],{"url":347,"sources":348,"tags":349},"https://lists.apache.org/thread.html/343558d982879bf88ec20dbf707f8c11255f8e219e81d45c4f8d0551@%3Cdev.tomcat.apache.org%3E",[103],[107],{"url":351,"sources":352,"tags":353},"https://lists.apache.org/thread.html/388a323769f1dff84c9ec905455aa73fbcb20338e3c7eb131457f708@%3Cdev.tomcat.apache.org%3E",[103],[107],{"url":355,"sources":356,"tags":357},"https://lists.apache.org/thread.html/3d19773b4cf0377db62d1e9328bf9160bf1819f04f988315086931d7@%3Cdev.tomcat.apache.org%3E",[103],[107],{"url":359,"sources":360,"tags":361},"https://lists.apache.org/thread.html/5c0e00fd31efc11e147bf99d0f03c00a734447d3b131ab0818644cdb@%3Cdev.tomcat.apache.org%3E",[103],[107],{"url":363,"sources":364,"tags":365},"https://lists.apache.org/thread.html/6af47120905aa7d8fe12f42e8ff2284fb338ba141d3b77b8c7cb61b3@%3Cdev.tomcat.apache.org%3E",[103],[107],{"url":367,"sources":368,"tags":369},"https://lists.apache.org/thread.html/845312a10aabbe2c499fca94003881d2c79fc993d85f34c1f5c77424@%3Cdev.tomcat.apache.org%3E",[103],[107],{"url":371,"sources":372,"tags":373},"https://lists.apache.org/thread.html/88855876c33f2f9c532ffb75bfee570ccf0b17ffa77493745af9a17a@%3Cdev.tomcat.apache.org%3E",[103],[107],{"url":375,"sources":376,"tags":377},"http://mail-archives.us.apache.org/mod_mbox/www-announce/201807.mbox/%3C20180722091057.GA70283@minotaur.apache.org%3E",[103],[107],[],{"date":380,"score":85,"percentile":381},"2026-06-04",0.94308,[383,387,389,392,394,397,399,403,406,409,411,414,417,420,423,427,429,432,436,439,442,445,448,451,453,456,458,460,464,467,470,473,475,477,479,481,484,487,490,493,495,498,501,504,507,511,514,516,519,521,523,526,529,531,535,538,540,543,546,550,553,556,560,563,566,568,571,574,576,579,581,584,587,589,592,595,598,601,603,606,609,612,615,618,621,624,627,630,633,636],{"date":384,"score":385,"percentile":386},"2025-11-04",0.20881,0.95376,{"date":388,"score":385,"percentile":386},"2025-11-05",{"date":390,"score":385,"percentile":391},"2025-11-06",0.95377,{"date":393,"score":385,"percentile":391},"2025-11-07",{"date":395,"score":385,"percentile":396},"2025-11-08",0.95378,{"date":398,"score":385,"percentile":391},"2025-11-09",{"date":400,"score":401,"percentile":402},"2025-11-10",0.16518,0.94618,{"date":404,"score":401,"percentile":405},"2025-11-11",0.94619,{"date":407,"score":401,"percentile":408},"2025-11-12",0.94623,{"date":410,"score":401,"percentile":408},"2025-11-13",{"date":412,"score":401,"percentile":413},"2025-11-14",0.94625,{"date":415,"score":401,"percentile":416},"2025-11-15",0.9462,{"date":418,"score":401,"percentile":419},"2025-11-16",0.94624,{"date":421,"score":401,"percentile":422},"2025-11-17",0.94627,{"date":424,"score":425,"percentile":426},"2025-11-18",0.27894,0.96174,{"date":428,"score":425,"percentile":426},"2025-11-19",{"date":430,"score":425,"percentile":431},"2025-11-20",0.96175,{"date":433,"score":434,"percentile":435},"2025-11-21",0.16439,0.94609,{"date":437,"score":434,"percentile":438},"2025-11-22",0.94607,{"date":440,"score":434,"percentile":441},"2025-11-23",0.9461,{"date":443,"score":434,"percentile":444},"2025-11-24",0.94612,{"date":446,"score":434,"percentile":447},"2025-11-25",0.94615,{"date":449,"score":434,"percentile":450},"2025-11-26",0.94616,{"date":452,"score":434,"percentile":405},"2025-11-27",{"date":454,"score":434,"percentile":455},"2025-11-28",0.94617,{"date":457,"score":434,"percentile":416},"2025-11-29",{"date":459,"score":434,"percentile":402},"2025-11-30",{"date":461,"score":462,"percentile":463},"2025-12-01",0.05997,0.90368,{"date":465,"score":462,"percentile":466},"2025-12-02",0.9037,{"date":468,"score":462,"percentile":469},"2025-12-03",0.90372,{"date":471,"score":434,"percentile":472},"2025-12-04",0.94614,{"date":474,"score":434,"percentile":455},"2025-12-05",{"date":476,"score":434,"percentile":455},"2025-12-06",{"date":478,"score":434,"percentile":408},"2025-12-07",{"date":480,"score":434,"percentile":408},"2025-12-08",{"date":482,"score":434,"percentile":483},"2025-12-09",0.94628,{"date":485,"score":434,"percentile":486},"2025-12-10",0.94634,{"date":488,"score":434,"percentile":489},"2025-12-11",0.94637,{"date":491,"score":434,"percentile":492},"2025-12-12",0.9464,{"date":494,"score":434,"percentile":492},"2025-12-13",{"date":496,"score":434,"percentile":497},"2025-12-14",0.94639,{"date":499,"score":434,"percentile":500},"2025-12-15",0.94643,{"date":502,"score":434,"percentile":503},"2025-12-16",0.94646,{"date":505,"score":434,"percentile":506},"2025-12-17",0.94649,{"date":508,"score":509,"percentile":510},"2025-12-18",0.16414,0.94647,{"date":512,"score":509,"percentile":513},"2025-12-19",0.94648,{"date":515,"score":509,"percentile":506},"2025-12-20",{"date":517,"score":509,"percentile":518},"2025-12-21",0.9465,{"date":520,"score":509,"percentile":518},"2025-12-22",{"date":522,"score":509,"percentile":518},"2025-12-23",{"date":524,"score":509,"percentile":525},"2025-12-24",0.94656,{"date":527,"score":509,"percentile":528},"2025-12-25",0.94662,{"date":530,"score":509,"percentile":528},"2025-12-26",{"date":532,"score":533,"percentile":534},"2025-12-27",0.16405,0.94681,{"date":536,"score":509,"percentile":537},"2025-12-28",0.94657,{"date":539,"score":509,"percentile":537},"2025-12-29",{"date":541,"score":509,"percentile":542},"2025-12-30",0.94658,{"date":544,"score":509,"percentile":545},"2025-12-31",0.94664,{"date":547,"score":548,"percentile":549},"2026-01-01",0.04508,0.88835,{"date":551,"score":548,"percentile":552},"2026-01-02",0.88829,{"date":554,"score":548,"percentile":555},"2026-01-03",0.88827,{"date":557,"score":558,"percentile":559},"2026-01-04",0.20786,0.9541,{"date":561,"score":558,"percentile":562},"2026-01-05",0.95407,{"date":564,"score":558,"percentile":565},"2026-01-06",0.95408,{"date":567,"score":558,"percentile":565},"2026-01-07",{"date":569,"score":558,"percentile":570},"2026-01-08",0.95411,{"date":572,"score":558,"percentile":573},"2026-01-09",0.95414,{"date":575,"score":558,"percentile":573},"2026-01-10",{"date":577,"score":558,"percentile":578},"2026-01-11",0.95412,{"date":580,"score":558,"percentile":578},"2026-01-12",{"date":582,"score":558,"percentile":583},"2026-01-13",0.95409,{"date":585,"score":558,"percentile":586},"2026-01-14",0.95416,{"date":588,"score":558,"percentile":586},"2026-01-15",{"date":590,"score":558,"percentile":591},"2026-01-16",0.95418,{"date":593,"score":558,"percentile":594},"2026-01-17",0.95423,{"date":596,"score":558,"percentile":597},"2026-01-18",0.95424,{"date":599,"score":558,"percentile":600},"2026-01-19",0.95422,{"date":602,"score":558,"percentile":597},"2026-01-20",{"date":604,"score":558,"percentile":605},"2026-01-21",0.95427,{"date":607,"score":558,"percentile":608},"2026-01-22",0.9543,{"date":610,"score":558,"percentile":611},"2026-01-23",0.95434,{"date":613,"score":558,"percentile":614},"2026-01-24",0.95438,{"date":616,"score":558,"percentile":617},"2026-01-25",0.95441,{"date":619,"score":558,"percentile":620},"2026-01-26",0.95443,{"date":622,"score":558,"percentile":623},"2026-01-27",0.95442,{"date":625,"score":558,"percentile":626},"2026-01-28",0.95444,{"date":628,"score":558,"percentile":629},"2026-01-29",0.95447,{"date":631,"score":558,"percentile":632},"2026-01-30",0.95448,{"date":634,"score":558,"percentile":635},"2026-01-31",0.95451,{"date":637,"score":462,"percentile":638},"2026-02-01",0.905,[640,645,653],{"source":89,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":641,"cvss_v4_0":9},{"baseScore":87,"baseSeverity":642,"vectorString":90,"impactScore":643,"exploitabilityScore":644},"HIGH",6,10,{"source":95,"cvss_v2_0":646,"cvss_v3_0":650,"cvss_v3_1":652,"cvss_v4_0":9},{"baseScore":647,"baseSeverity":9,"vectorString":648,"impactScore":649,"exploitabilityScore":644},5,"AV:N/AC:L/Au:N/C:P/I:N/A:N",2.9,{"baseScore":87,"baseSeverity":642,"vectorString":651,"impactScore":643,"exploitabilityScore":644},"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",{"baseScore":87,"baseSeverity":642,"vectorString":90,"impactScore":643,"exploitabilityScore":644},{"source":103,"cvss_v2_0":9,"cvss_v3_0":654,"cvss_v3_1":9,"cvss_v4_0":9},{"baseScore":87,"baseSeverity":9,"vectorString":651,"impactScore":643,"exploitabilityScore":644},[656,671,766,776,785,807],{"ecosystem":9,"name":657,"vendor":658,"product":659,"cpe_part":660,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":661},"Apache Tomcat","apache software foundation","apache tomcat","a",[662,665,667,669],{"version":663,"is_range":83,"range_type":89,"version_start":663,"version_start_type":664,"version_end":663,"version_end_type":664,"fixed_in":9},"9.0.0.M1 to 9.0.9","including",{"version":666,"is_range":83,"range_type":89,"version_start":666,"version_start_type":664,"version_end":666,"version_end_type":664,"fixed_in":9},"8.5.0 to 8.5.31",{"version":668,"is_range":83,"range_type":89,"version_start":668,"version_start_type":664,"version_end":668,"version_end_type":664,"fixed_in":9},"8.0.0.RC1 to 8.0.52",{"version":670,"is_range":83,"range_type":89,"version_start":670,"version_start_type":664,"version_end":670,"version_end_type":664,"fixed_in":9},"7.0.35 to 7.0.88",{"ecosystem":9,"name":672,"vendor":9,"product":672,"cpe_part":9,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":673},"Tomcat",[674,680,684,688,692,694,696,698,700,702,704,706,708,710,712,714,716,718,720,722,724,726,728,730,732,734,736,738,740,742,744,746,748,750,752,754,756,758,760,762,764],{"version":675,"is_range":676,"range_type":677,"version_start":678,"version_start_type":664,"version_end":679,"version_end_type":664,"fixed_in":9},"gte7.0.35_lte7.0.88",true,"cpe","7.0.35","7.0.88",{"version":681,"is_range":676,"range_type":677,"version_start":682,"version_start_type":664,"version_end":683,"version_end_type":664,"fixed_in":9},"gte8.0.0_lte8.0.52","8.0.0","8.0.52",{"version":685,"is_range":676,"range_type":677,"version_start":686,"version_start_type":664,"version_end":687,"version_end_type":664,"fixed_in":9},"gte8.5.0_lte8.5.31","8.5.0","8.5.31",{"version":689,"is_range":676,"range_type":677,"version_start":690,"version_start_type":664,"version_end":691,"version_end_type":664,"fixed_in":9},"gte9.0.1_lte9.0.9","9.0.1","9.0.9",{"version":693,"is_range":83,"range_type":677,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"8.0.0:rc1",{"version":695,"is_range":83,"range_type":677,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"8.0.0:rc10",{"version":697,"is_range":83,"range_type":677,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"8.0.0:rc2",{"version":699,"is_range":83,"range_type":677,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"8.0.0:rc3",{"version":701,"is_range":83,"range_type":677,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"8.0.0:rc4",{"version":703,"is_range":83,"range_type":677,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"8.0.0:rc5",{"version":705,"is_range":83,"range_type":677,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"8.0.0:rc6",{"version":707,"is_range":83,"range_type":677,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"8.0.0:rc7",{"version":709,"is_range":83,"range_type":677,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"8.0.0:rc8",{"version":711,"is_range":83,"range_type":677,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"8.0.0:rc9",{"version":713,"is_range":83,"range_type":677,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"9.0.0:milestone1",{"version":715,"is_range":83,"range_type":677,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"9.0.0:milestone10",{"version":717,"is_range":83,"range_type":677,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"9.0.0:milestone11",{"version":719,"is_range":83,"range_type":677,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"9.0.0:milestone12",{"version":721,"is_range":83,"range_type":677,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"9.0.0:milestone13",{"version":723,"is_range":83,"range_type":677,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"9.0.0:milestone14",{"version":725,"is_range":83,"range_type":677,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"9.0.0:milestone15",{"version":727,"is_range":83,"range_type":677,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"9.0.0:milestone16",{"version":729,"is_range":83,"range_type":677,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"9.0.0:milestone17",{"version":731,"is_range":83,"range_type":677,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"9.0.0:milestone18",{"version":733,"is_range":83,"range_type":677,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"9.0.0:milestone19",{"version":735,"is_range":83,"range_type":677,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"9.0.0:milestone2",{"version":737,"is_range":83,"range_type":677,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"9.0.0:milestone20",{"version":739,"is_range":83,"range_type":677,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"9.0.0:milestone21",{"version":741,"is_range":83,"range_type":677,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"9.0.0:milestone22",{"version":743,"is_range":83,"range_type":677,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"9.0.0:milestone23",{"version":745,"is_range":83,"range_type":677,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"9.0.0:milestone24",{"version":747,"is_range":83,"range_type":677,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"9.0.0:milestone25",{"version":749,"is_range":83,"range_type":677,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"9.0.0:milestone26",{"version":751,"is_range":83,"range_type":677,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"9.0.0:milestone27",{"version":753,"is_range":83,"range_type":677,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"9.0.0:milestone3",{"version":755,"is_range":83,"range_type":677,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"9.0.0:milestone4",{"version":757,"is_range":83,"range_type":677,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"9.0.0:milestone5",{"version":759,"is_range":83,"range_type":677,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"9.0.0:milestone6",{"version":761,"is_range":83,"range_type":677,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"9.0.0:milestone7",{"version":763,"is_range":83,"range_type":677,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"9.0.0:milestone8",{"version":765,"is_range":83,"range_type":677,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"9.0.0:milestone9",{"ecosystem":9,"name":767,"vendor":768,"product":769,"cpe_part":770,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":771},"ubuntu linux","canonical","ubuntu_linux","o",[772,774],{"version":773,"is_range":83,"range_type":677,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"14.04",{"version":775,"is_range":83,"range_type":677,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"16.04",{"ecosystem":9,"name":777,"vendor":778,"product":779,"cpe_part":770,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":780},"debian linux","debian","debian_linux",[781,783],{"version":782,"is_range":83,"range_type":677,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"8.0",{"version":784,"is_range":83,"range_type":677,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"9.0",{"ecosystem":786,"name":787,"vendor":788,"product":789,"cpe_part":9,"purl_type":790,"purl_namespace":788,"purl_name":789,"source":9,"versions":791},"Maven","org.apache.tomcat.embed:tomcat-embed-core","org.apache.tomcat.embed","tomcat-embed-core","maven",[792,798,801,804],{"version":793,"is_range":676,"range_type":794,"version_start":795,"version_start_type":664,"version_end":796,"version_end_type":797,"fixed_in":9},"gte9_0_0_lt9_0_10","ecosystem","9.0.0","9.0.10","excluding",{"version":799,"is_range":676,"range_type":794,"version_start":686,"version_start_type":664,"version_end":800,"version_end_type":797,"fixed_in":9},"gte8_5_0_lt8_5_32","8.5.32",{"version":802,"is_range":676,"range_type":794,"version_start":682,"version_start_type":664,"version_end":803,"version_end_type":797,"fixed_in":9},"gte8_0_0_lt8_0_53","8.0.53",{"version":805,"is_range":676,"range_type":794,"version_start":678,"version_start_type":664,"version_end":806,"version_end_type":797,"fixed_in":9},"gte7_0_35_lt7_0_90","7.0.90",{"ecosystem":9,"name":808,"vendor":809,"product":810,"cpe_part":660,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":811},"retail order broker","oracle","retail_order_broker",[812,814,816],{"version":813,"is_range":83,"range_type":677,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.1",{"version":815,"is_range":83,"range_type":677,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.2",{"version":817,"is_range":83,"range_type":677,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"15.0"]