[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2020-9484":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-05T02:55:30.529Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":24,"aliases":25,"duplicate_of":9,"upstream":28,"downstream":29,"duplicates":80,"related":81,"reserved_at":9,"published_at":92,"modified_at":93,"state":94,"summary":95,"references_raw":103,"kevs":436,"epss":437,"epss_history":440,"metrics":635,"affected":648},"CVE-2020-9484","When using Apache Tomcat versions 10.0.0-M1 to 10.0.0-M4, 9.0.0.M1 to 9.0.34, 8.5.0 to 8.5.54 and 7.0.0 to 7.0.103 if a) an attacker is able to control the contents and name of a file on the server; and b) the server is configured to use the PersistenceManager with a FileStore; and c) the PersistenceManager is configured with sessionAttributeValueClassNameFilter=\"null\" (the default unless a SecurityManager is used) or a sufficiently lax filter to allow the attacker provided object to be deserialized; and d) the attacker knows the relative file path from the storage location used by FileStore to the file the attacker has control over; then, using a specifically crafted request, the attacker will be able to trigger remote code execution via deserialization of the file under their control. Note that all of conditions a) to d) must be true for the attack to succeed.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":18,"capec":19},"CWE-502","Deserialization of Untrusted Data","The product deserializes untrusted data without sufficiently ensuring that the resulting data will be valid.","weakness","Draft","Base","Medium",[20],{"id":21,"name":22,"techniques":23},"CAPEC-586","Object Injection",[],[],[26,27],"GHSA-344f-f5vg-2jfj","BIT-tomcat-2020-9484",[],[30,32,34,36,38,40,42,44,46,48,50,52,54,56,58,60,62,64,66,68,70,72,74,76,78],{"_key":31},"SUSE-SU-2020:1363-1",{"_key":33},"SUSE-SU-2020:1364-1",{"_key":35},"SUSE-SU-2020:1365-1",{"_key":37},"SUSE-SU-2020:14375-1",{"_key":39},"SUSE-SU-2020:1497-1",{"_key":41},"SUSE-SU-2020:1498-1",{"_key":43},"UBUNTU-CVE-2020-9484",{"_key":45},"OPENSUSE-SU-2020:0711-1",{"_key":47},"OPENSUSE-SU-2024:11468-1",{"_key":49},"OPENSUSE-SU-2024:13441-1",{"_key":51},"DLA-2209-1",{"_key":53},"DLA-2217-1",{"_key":55},"DLA-2279-1",{"_key":57},"DSA-4727-1",{"_key":59},"MGASA-2020-0277",{"_key":61},"USN-4448-1",{"_key":63},"USN-4596-1",{"_key":65},"USN-5360-1",{"_key":67},"DEBIAN-CVE-2020-9484",{"_key":69},"RHSA-2020:2483",{"_key":71},"RHSA-2020:2506",{"_key":73},"RHSA-2020:2529",{"_key":75},"RHSA-2020:2530",{"_key":77},"USN-6908-1",{"_key":79},"USN-6943-1",[],[82,83,84,85,86,87,88,89,90,91],{"_key":31},{"_key":33},{"_key":35},{"_key":37},{"_key":39},{"_key":41},{"_key":45},{"_key":47},{"_key":49},{"_key":59},"2020-05-20T18:26:41.000Z","2024-08-04T10:26:16.293Z","Modified",{"cisa_kev":96,"cisa_ransomware":96,"cisa_vendor":9,"epss_severity":97,"epss_score":98,"severity":99,"severity_score":4,"severity_version":100,"severity_source":101,"severity_vector":102,"severity_status":94},false,"critical",0.93464,"high","v3.1","nvd","CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",[104,111,118,122,128,132,136,141,146,151,155,159,163,169,174,179,184,189,194,198,202,206,210,214,218,222,226,230,234,238,242,246,250,254,258,262,266,270,274,278,282,286,290,295,299,303,307,311,315,319,323,327,331,335,339,343,347,351,355,359,364,368,372,376,380,384,388,392,396,400,404,408,412,416,420,424,428,432],{"url":105,"sources":106,"tags":108},"https://lists.apache.org/thread.html/rf70f53af27e04869bdac18b1fc14a3ee529e59eb12292c8791a77926%40%3Cusers.tomcat.apache.org%3E",[107,101],"cve.org",[109,110],"Mailing List","X Refsource MLIST",{"url":112,"sources":113,"tags":115},"https://lists.debian.org/debian-lts-announce/2020/05/msg00020.html",[107,101,114],"osv_maven",[109,110,116,117],"Third Party Advisory","WEB",{"url":119,"sources":120,"tags":121},"https://lists.apache.org/thread.html/r26950738f4b4ca2d256597cf391d52d3450fa665c297ea5ca38f5469%40%3Cusers.tomcat.apache.org%3E",[107,101],[109,110],{"url":123,"sources":124,"tags":125},"http://lists.opensuse.org/opensuse-security-announce/2020-05/msg00057.html",[107,101,114],[126,127,116,117],"Vendor Advisory","X Refsource SUSE",{"url":129,"sources":130,"tags":131},"https://lists.apache.org/thread.html/r7bc247fffcb1d58415215c861d2354bd653c86266230d78a93c71ae2%40%3Cdev.tomcat.apache.org%3E",[107,101],[109,110],{"url":133,"sources":134,"tags":135},"https://lists.debian.org/debian-lts-announce/2020/05/msg00026.html",[107,101,114],[109,110,116,117],{"url":137,"sources":138,"tags":139},"http://seclists.org/fulldisclosure/2020/Jun/6",[107,101,114],[109,140,116,117],"X Refsource FULLDISC",{"url":142,"sources":143,"tags":144},"https://security.gentoo.org/glsa/202006-21",[107,101,114],[126,145,116,117],"X Refsource GENTOO",{"url":147,"sources":148,"tags":149},"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WJ7XHKWJWDNWXUJH6UB7CLIW4TWOZ26N/",[107,101],[126,150],"X Refsource FEDORA",{"url":152,"sources":153,"tags":154},"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GIQHXENTLYUNOES4LXVNJ2NCUQQRF5VJ/",[107,101],[126,150],{"url":156,"sources":157,"tags":158},"https://lists.apache.org/thread.html/rb1c0fb105ce2b93b7ec6fc1b77dd208022621a91c12d1f580813cfed%40%3Cdev.tomcat.apache.org%3E",[107,101],[109,110],{"url":160,"sources":161,"tags":162},"https://lists.debian.org/debian-lts-announce/2020/07/msg00010.html",[107,101,114],[109,110,116,117],{"url":164,"sources":165,"tags":166},"https://www.oracle.com/security-alerts/cpujul2020.html",[107,101,114],[167,168,116,117],"X Refsource MISC","Patch",{"url":170,"sources":171,"tags":172},"https://lists.apache.org/thread.html/r77eae567ed829da9012cadb29af17f2df8fa23bf66faf88229857bb1%40%3Cannounce.tomcat.apache.org%3E",[107,101,114],[167,109,173,168,116,117],"Mitigation",{"url":175,"sources":176,"tags":177},"https://security.netapp.com/advisory/ntap-20200528-0005/",[107,101],[178,116],"X Refsource CONFIRM",{"url":180,"sources":181,"tags":182},"http://packetstormsecurity.com/files/157924/Apache-Tomcat-CVE-2020-9484-Proof-Of-Concept.html",[107,101,114],[167,116,183,117],"VDB Entry",{"url":185,"sources":186,"tags":187},"https://www.debian.org/security/2020/dsa-4727",[107,101,114],[126,188,116,117],"X Refsource DEBIAN",{"url":190,"sources":191,"tags":192},"https://usn.ubuntu.com/4448-1/",[107,101],[126,193,116],"X Refsource UBUNTU",{"url":195,"sources":196,"tags":197},"https://lists.apache.org/thread.html/r123b3ebe389f46f9d337923f393cdae4d3e9b78d982d706712f0898c%40%3Ccommits.tomee.apache.org%3E",[107,101],[109,110],{"url":199,"sources":200,"tags":201},"https://lists.apache.org/thread.html/raa4123e472175bb052fbba165d37187cea923f755e8f3f30d124cb3f%40%3Ccommits.tomee.apache.org%3E",[107,101],[109,110],{"url":203,"sources":204,"tags":205},"https://lists.apache.org/thread.html/rc8473b08abdf3c16494ed817bec1717a0ee0c8080315bc27db5f21c3%40%3Ccommits.tomee.apache.org%3E",[107,101],[109,110],{"url":207,"sources":208,"tags":209},"https://lists.apache.org/thread.html/rf59c72572b9fee674a5d5cc6afeca4ffc3918a02c354a81cc50b7119%40%3Ccommits.tomee.apache.org%3E",[107,101],[109,110],{"url":211,"sources":212,"tags":213},"https://www.oracle.com/security-alerts/cpuoct2020.html",[107,101,114],[167,168,116,117],{"url":215,"sources":216,"tags":217},"https://kc.mcafee.com/corporate/index?page=content&id=SB10332",[107,101,114],[178,116,117],{"url":219,"sources":220,"tags":221},"https://usn.ubuntu.com/4596-1/",[107,101],[126,193,116],{"url":223,"sources":224,"tags":225},"https://www.oracle.com/security-alerts/cpujan2021.html",[107,101,114],[167,168,116,117],{"url":227,"sources":228,"tags":229},"https://lists.apache.org/thread.html/rfe62fbf9d4c314f166fe8c668e50e5d9dd882a99447f26f0367474bf%40%3Cdev.tomcat.apache.org%3E",[107,101],[109,110],{"url":231,"sources":232,"tags":233},"https://lists.apache.org/thread.html/rfe62fbf9d4c314f166fe8c668e50e5d9dd882a99447f26f0367474bf%40%3Cannounce.apache.org%3E",[107,101],[109,110],{"url":235,"sources":236,"tags":237},"https://lists.apache.org/thread.html/rfe62fbf9d4c314f166fe8c668e50e5d9dd882a99447f26f0367474bf%40%3Cusers.tomcat.apache.org%3E",[107,101],[109,110],{"url":239,"sources":240,"tags":241},"https://lists.apache.org/thread.html/rf6d5d57b114678d8898005faef31e9fd6d7c981fcc4ccfc3bc272fc9%40%3Cdev.tomcat.apache.org%3E",[107,101],[109,110],{"url":243,"sources":244,"tags":245},"https://lists.apache.org/thread.html/rfe62fbf9d4c314f166fe8c668e50e5d9dd882a99447f26f0367474bf%40%3Cannounce.tomcat.apache.org%3E",[107,101],[109,110],{"url":247,"sources":248,"tags":249},"http://www.openwall.com/lists/oss-security/2021/03/01/2",[107,101,114],[109,110,116,117],{"url":251,"sources":252,"tags":253},"https://lists.apache.org/thread.html/r8dd19c514face6dd85fd4eab0271854883f40c7307926c1f7cd5400c%40%3Ccommits.tomee.apache.org%3E",[107,101],[109,110],{"url":255,"sources":256,"tags":257},"https://www.oracle.com/security-alerts/cpuApr2021.html",[107,101,114],[167,168,116,117],{"url":259,"sources":260,"tags":261},"https://lists.apache.org/thread.html/r8a2ac0e476dbfc1e6440b09dcc782d444ad635d6da26f0284725a5dc%40%3Cusers.tomcat.apache.org%3E",[107,101],[109,110],{"url":263,"sources":264,"tags":265},"https://lists.apache.org/thread.html/rb51ccd58b2152fc75125b2406fc93e04ca9d34e737263faa6ff0f41f%40%3Cusers.tomcat.apache.org%3E",[107,101],[109,110],{"url":267,"sources":268,"tags":269},"https://lists.apache.org/thread.html/r11ce01e8a4c7269b88f88212f21830edf73558997ac7744f37769b77%40%3Cusers.tomcat.apache.org%3E",[107,101],[109,110],{"url":271,"sources":272,"tags":273},"https://lists.apache.org/thread.html/rc1778b38e74b5b6142414d57623bd55b023a72361f422836782fca3c%40%3Cdev.tomcat.apache.org%3E",[107,101],[109,110],{"url":275,"sources":276,"tags":277},"https://www.oracle.com//security-alerts/cpujul2021.html",[107,101,114],[167,168,116,117],{"url":279,"sources":280,"tags":281},"https://www.oracle.com/security-alerts/cpuoct2021.html",[107,101,114],[167,168,116,117],{"url":283,"sources":284,"tags":285},"https://www.oracle.com/security-alerts/cpujan2022.html",[107,101,114],[167,168,116,117],{"url":287,"sources":288,"tags":289},"https://www.oracle.com/security-alerts/cpujul2022.html",[107,101,114],[167,117],{"url":291,"sources":292,"tags":293},"https://nvd.nist.gov/vuln/detail/CVE-2020-9484",[114],[294],"Advisory",{"url":296,"sources":297,"tags":298},"https://github.com/apache/tomcat/commit/3aa8f28db7efb311cdd1b6fe15a9cd3b167a2222.patch",[114],[117],{"url":300,"sources":301,"tags":302},"https://github.com/apache/tomcat/commit/4785433a226a20df6acbea49296e1ce7e23de453",[114],[117],{"url":304,"sources":305,"tags":306},"https://github.com/apache/tomcat/commit/6d66e99ef85da93e4d2c2a536ca51aa3418bfaf4",[114],[117],{"url":308,"sources":309,"tags":310},"https://github.com/apache/tomcat/commit/74b105657ffbd1d1de80455f03446c3bbf30d1f5",[114],[117],{"url":312,"sources":313,"tags":314},"https://github.com/apache/tomcat/commit/93f0cc403a9210d469afc2bd9cf03ab3251c6f35",[114],[117],{"url":316,"sources":317,"tags":318},"https://github.com/apache/tomcat/commit/bb33048e3f9b4f2b70e4da2e6c4e34ca89023b1b",[114],[117],{"url":320,"sources":321,"tags":322},"https://tomcat.apache.org/security-9.html",[114],[117],{"url":324,"sources":325,"tags":326},"https://tomcat.apache.org/security-8.html",[114],[117],{"url":328,"sources":329,"tags":330},"https://tomcat.apache.org/security-7.html",[114],[117],{"url":332,"sources":333,"tags":334},"https://tomcat.apache.org/security-10.html",[114],[117],{"url":336,"sources":337,"tags":338},"https://security.netapp.com/advisory/ntap-20200528-0005",[114],[117],{"url":340,"sources":341,"tags":342},"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WJ7XHKWJWDNWXUJH6UB7CLIW4TWOZ26N",[114],[117],{"url":344,"sources":345,"tags":346},"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/GIQHXENTLYUNOES4LXVNJ2NCUQQRF5VJ",[114],[117],{"url":348,"sources":349,"tags":350},"https://bugzilla.suse.com/show_bug.cgi?id=1171928",[114],[117],{"url":352,"sources":353,"tags":354},"https://usn.ubuntu.com/4448-1",[114],[117],{"url":356,"sources":357,"tags":358},"https://usn.ubuntu.com/4596-1",[114],[117],{"url":360,"sources":361,"tags":362},"https://github.com/apache/tomcat",[114],[363],"PACKAGE",{"url":365,"sources":366,"tags":367},"https://lists.apache.org/thread.html/r11ce01e8a4c7269b88f88212f21830edf73558997ac7744f37769b77@%3Cusers.tomcat.apache.org%3E",[114],[117],{"url":369,"sources":370,"tags":371},"https://lists.apache.org/thread.html/r123b3ebe389f46f9d337923f393cdae4d3e9b78d982d706712f0898c@%3Ccommits.tomee.apache.org%3E",[114],[117],{"url":373,"sources":374,"tags":375},"https://lists.apache.org/thread.html/r26950738f4b4ca2d256597cf391d52d3450fa665c297ea5ca38f5469@%3Cusers.tomcat.apache.org%3E",[114],[117],{"url":377,"sources":378,"tags":379},"https://lists.apache.org/thread.html/r7bc247fffcb1d58415215c861d2354bd653c86266230d78a93c71ae2@%3Cdev.tomcat.apache.org%3E",[114],[117],{"url":381,"sources":382,"tags":383},"https://lists.apache.org/thread.html/r8a2ac0e476dbfc1e6440b09dcc782d444ad635d6da26f0284725a5dc@%3Cusers.tomcat.apache.org%3E",[114],[117],{"url":385,"sources":386,"tags":387},"https://lists.apache.org/thread.html/r8dd19c514face6dd85fd4eab0271854883f40c7307926c1f7cd5400c@%3Ccommits.tomee.apache.org%3E",[114],[117],{"url":389,"sources":390,"tags":391},"https://lists.apache.org/thread.html/raa4123e472175bb052fbba165d37187cea923f755e8f3f30d124cb3f@%3Ccommits.tomee.apache.org%3E",[114],[117],{"url":393,"sources":394,"tags":395},"https://lists.apache.org/thread.html/rb1c0fb105ce2b93b7ec6fc1b77dd208022621a91c12d1f580813cfed@%3Cdev.tomcat.apache.org%3E",[114],[117],{"url":397,"sources":398,"tags":399},"https://lists.apache.org/thread.html/rb51ccd58b2152fc75125b2406fc93e04ca9d34e737263faa6ff0f41f@%3Cusers.tomcat.apache.org%3E",[114],[117],{"url":401,"sources":402,"tags":403},"https://lists.apache.org/thread.html/rc1778b38e74b5b6142414d57623bd55b023a72361f422836782fca3c@%3Cdev.tomcat.apache.org%3E",[114],[117],{"url":405,"sources":406,"tags":407},"https://lists.apache.org/thread.html/rc8473b08abdf3c16494ed817bec1717a0ee0c8080315bc27db5f21c3@%3Ccommits.tomee.apache.org%3E",[114],[117],{"url":409,"sources":410,"tags":411},"https://lists.apache.org/thread.html/rf59c72572b9fee674a5d5cc6afeca4ffc3918a02c354a81cc50b7119@%3Ccommits.tomee.apache.org%3E",[114],[117],{"url":413,"sources":414,"tags":415},"https://lists.apache.org/thread.html/rf6d5d57b114678d8898005faef31e9fd6d7c981fcc4ccfc3bc272fc9@%3Cdev.tomcat.apache.org%3E",[114],[117],{"url":417,"sources":418,"tags":419},"https://lists.apache.org/thread.html/rf70f53af27e04869bdac18b1fc14a3ee529e59eb12292c8791a77926@%3Cusers.tomcat.apache.org%3E",[114],[117],{"url":421,"sources":422,"tags":423},"https://lists.apache.org/thread.html/rfe62fbf9d4c314f166fe8c668e50e5d9dd882a99447f26f0367474bf@%3Cannounce.apache.org%3E",[114],[117],{"url":425,"sources":426,"tags":427},"https://lists.apache.org/thread.html/rfe62fbf9d4c314f166fe8c668e50e5d9dd882a99447f26f0367474bf@%3Cannounce.tomcat.apache.org%3E",[114],[117],{"url":429,"sources":430,"tags":431},"https://lists.apache.org/thread.html/rfe62fbf9d4c314f166fe8c668e50e5d9dd882a99447f26f0367474bf@%3Cdev.tomcat.apache.org%3E",[114],[117],{"url":433,"sources":434,"tags":435},"https://lists.apache.org/thread.html/rfe62fbf9d4c314f166fe8c668e50e5d9dd882a99447f26f0367474bf@%3Cusers.tomcat.apache.org%3E",[114],[117],[],{"date":438,"score":98,"percentile":439},"2026-06-04",0.9983,[441,445,447,449,451,454,457,459,461,463,465,467,469,471,473,477,479,481,483,485,487,489,491,493,495,497,499,501,505,507,509,512,514,516,518,520,522,524,526,528,530,532,534,536,538,540,542,544,546,548,550,552,554,556,560,562,565,567,569,572,574,576,578,580,582,584,586,588,590,592,594,596,598,600,602,604,606,608,610,612,614,616,618,620,622,624,626,628,630,632],{"date":442,"score":443,"percentile":444},"2025-11-04",0.93325,0.99799,{"date":446,"score":443,"percentile":444},"2025-11-05",{"date":448,"score":443,"percentile":444},"2025-11-06",{"date":450,"score":443,"percentile":444},"2025-11-07",{"date":452,"score":443,"percentile":453},"2025-11-08",0.99798,{"date":455,"score":443,"percentile":456},"2025-11-09",0.99797,{"date":458,"score":443,"percentile":456},"2025-11-10",{"date":460,"score":443,"percentile":453},"2025-11-11",{"date":462,"score":443,"percentile":453},"2025-11-12",{"date":464,"score":443,"percentile":444},"2025-11-13",{"date":466,"score":443,"percentile":453},"2025-11-14",{"date":468,"score":443,"percentile":453},"2025-11-15",{"date":470,"score":443,"percentile":453},"2025-11-16",{"date":472,"score":443,"percentile":453},"2025-11-17",{"date":474,"score":475,"percentile":476},"2025-11-18",0.93557,0.99882,{"date":478,"score":475,"percentile":476},"2025-11-19",{"date":480,"score":475,"percentile":476},"2025-11-20",{"date":482,"score":443,"percentile":453},"2025-11-21",{"date":484,"score":443,"percentile":453},"2025-11-22",{"date":486,"score":443,"percentile":456},"2025-11-23",{"date":488,"score":443,"percentile":453},"2025-11-24",{"date":490,"score":443,"percentile":453},"2025-11-25",{"date":492,"score":443,"percentile":453},"2025-11-26",{"date":494,"score":443,"percentile":453},"2025-11-27",{"date":496,"score":443,"percentile":453},"2025-11-28",{"date":498,"score":443,"percentile":453},"2025-11-29",{"date":500,"score":443,"percentile":456},"2025-11-30",{"date":502,"score":503,"percentile":504},"2025-12-01",0.93238,0.9979,{"date":506,"score":503,"percentile":504},"2025-12-02",{"date":508,"score":503,"percentile":504},"2025-12-03",{"date":510,"score":443,"percentile":511},"2025-12-04",0.99796,{"date":513,"score":443,"percentile":511},"2025-12-05",{"date":515,"score":443,"percentile":511},"2025-12-06",{"date":517,"score":443,"percentile":511},"2025-12-07",{"date":519,"score":443,"percentile":456},"2025-12-08",{"date":521,"score":443,"percentile":511},"2025-12-09",{"date":523,"score":443,"percentile":456},"2025-12-10",{"date":525,"score":443,"percentile":456},"2025-12-11",{"date":527,"score":443,"percentile":456},"2025-12-12",{"date":529,"score":443,"percentile":456},"2025-12-13",{"date":531,"score":443,"percentile":456},"2025-12-14",{"date":533,"score":443,"percentile":456},"2025-12-15",{"date":535,"score":443,"percentile":456},"2025-12-16",{"date":537,"score":443,"percentile":456},"2025-12-17",{"date":539,"score":443,"percentile":511},"2025-12-18",{"date":541,"score":443,"percentile":456},"2025-12-19",{"date":543,"score":443,"percentile":511},"2025-12-20",{"date":545,"score":443,"percentile":456},"2025-12-21",{"date":547,"score":443,"percentile":456},"2025-12-22",{"date":549,"score":443,"percentile":456},"2025-12-23",{"date":551,"score":443,"percentile":456},"2025-12-24",{"date":553,"score":443,"percentile":511},"2025-12-25",{"date":555,"score":443,"percentile":511},"2025-12-26",{"date":557,"score":558,"percentile":559},"2025-12-27",0.93247,0.99788,{"date":561,"score":443,"percentile":511},"2025-12-28",{"date":563,"score":443,"percentile":564},"2025-12-29",0.99795,{"date":566,"score":443,"percentile":511},"2025-12-30",{"date":568,"score":443,"percentile":511},"2025-12-31",{"date":570,"score":503,"percentile":571},"2026-01-01",0.99791,{"date":573,"score":503,"percentile":571},"2026-01-02",{"date":575,"score":503,"percentile":571},"2026-01-03",{"date":577,"score":443,"percentile":511},"2026-01-04",{"date":579,"score":443,"percentile":511},"2026-01-05",{"date":581,"score":443,"percentile":511},"2026-01-06",{"date":583,"score":443,"percentile":511},"2026-01-07",{"date":585,"score":443,"percentile":511},"2026-01-08",{"date":587,"score":443,"percentile":456},"2026-01-09",{"date":589,"score":443,"percentile":453},"2026-01-10",{"date":591,"score":443,"percentile":453},"2026-01-11",{"date":593,"score":443,"percentile":453},"2026-01-12",{"date":595,"score":443,"percentile":444},"2026-01-13",{"date":597,"score":443,"percentile":444},"2026-01-14",{"date":599,"score":443,"percentile":453},"2026-01-15",{"date":601,"score":443,"percentile":444},"2026-01-16",{"date":603,"score":443,"percentile":444},"2026-01-17",{"date":605,"score":443,"percentile":453},"2026-01-18",{"date":607,"score":443,"percentile":453},"2026-01-19",{"date":609,"score":443,"percentile":456},"2026-01-20",{"date":611,"score":443,"percentile":453},"2026-01-21",{"date":613,"score":443,"percentile":456},"2026-01-22",{"date":615,"score":443,"percentile":453},"2026-01-23",{"date":617,"score":443,"percentile":453},"2026-01-24",{"date":619,"score":443,"percentile":453},"2026-01-25",{"date":621,"score":443,"percentile":456},"2026-01-26",{"date":623,"score":443,"percentile":456},"2026-01-27",{"date":625,"score":443,"percentile":453},"2026-01-28",{"date":627,"score":443,"percentile":456},"2026-01-29",{"date":629,"score":443,"percentile":453},"2026-01-30",{"date":631,"score":443,"percentile":453},"2026-01-31",{"date":633,"score":503,"percentile":634},"2026-02-01",0.99794,[636,646],{"source":101,"cvss_v2_0":637,"cvss_v3_0":9,"cvss_v3_1":642,"cvss_v4_0":9},{"baseScore":638,"baseSeverity":9,"vectorString":639,"impactScore":640,"exploitabilityScore":641},4.4,"AV:L/AC:M/Au:N/C:P/I:P/A:P",6.4,3.4,{"baseScore":4,"baseSeverity":643,"vectorString":102,"impactScore":644,"exploitabilityScore":645},"HIGH",9.8,2.6,{"source":114,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":647,"cvss_v4_0":9},{"baseScore":4,"baseSeverity":9,"vectorString":102,"impactScore":644,"exploitabilityScore":645},[649,730,740,751,759,782,791,809,815,822,832,838,844,852,860,866,871,876,885,893,901,909,915,922,928,935,942,948],{"ecosystem":9,"name":650,"vendor":9,"product":650,"cpe_part":9,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":651},"Tomcat",[652,660,664,668,670,672,674,676,678,680,682,684,686,688,690,692,694,696,698,700,702,704,706,708,710,712,714,716,718,720,722,724,726,728],{"version":653,"is_range":654,"range_type":655,"version_start":656,"version_start_type":657,"version_end":658,"version_end_type":659,"fixed_in":9},"gte7.0.0_lt7.0.108",true,"cpe","7.0.0","including","7.0.108","excluding",{"version":661,"is_range":654,"range_type":655,"version_start":662,"version_start_type":657,"version_end":663,"version_end_type":659,"fixed_in":9},"gte8.5.0_lt8.5.63","8.5.0","8.5.63",{"version":665,"is_range":654,"range_type":655,"version_start":666,"version_start_type":657,"version_end":667,"version_end_type":659,"fixed_in":9},"gte9.0.1_lt9.0.43","9.0.1","9.0.43",{"version":669,"is_range":96,"range_type":655,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"9.0.0:milestone1",{"version":671,"is_range":96,"range_type":655,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"9.0.0:milestone10",{"version":673,"is_range":96,"range_type":655,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"9.0.0:milestone11",{"version":675,"is_range":96,"range_type":655,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"9.0.0:milestone12",{"version":677,"is_range":96,"range_type":655,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"9.0.0:milestone13",{"version":679,"is_range":96,"range_type":655,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"9.0.0:milestone14",{"version":681,"is_range":96,"range_type":655,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"9.0.0:milestone15",{"version":683,"is_range":96,"range_type":655,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"9.0.0:milestone16",{"version":685,"is_range":96,"range_type":655,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"9.0.0:milestone17",{"version":687,"is_range":96,"range_type":655,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"9.0.0:milestone18",{"version":689,"is_range":96,"range_type":655,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"9.0.0:milestone19",{"version":691,"is_range":96,"range_type":655,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"9.0.0:milestone2",{"version":693,"is_range":96,"range_type":655,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"9.0.0:milestone20",{"version":695,"is_range":96,"range_type":655,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"9.0.0:milestone21",{"version":697,"is_range":96,"range_type":655,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"9.0.0:milestone22",{"version":699,"is_range":96,"range_type":655,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"9.0.0:milestone23",{"version":701,"is_range":96,"range_type":655,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"9.0.0:milestone24",{"version":703,"is_range":96,"range_type":655,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"9.0.0:milestone25",{"version":705,"is_range":96,"range_type":655,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"9.0.0:milestone26",{"version":707,"is_range":96,"range_type":655,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"9.0.0:milestone27",{"version":709,"is_range":96,"range_type":655,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"9.0.0:milestone3",{"version":711,"is_range":96,"range_type":655,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"9.0.0:milestone4",{"version":713,"is_range":96,"range_type":655,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"9.0.0:milestone5",{"version":715,"is_range":96,"range_type":655,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"9.0.0:milestone6",{"version":717,"is_range":96,"range_type":655,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"9.0.0:milestone7",{"version":719,"is_range":96,"range_type":655,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"9.0.0:milestone8",{"version":721,"is_range":96,"range_type":655,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"9.0.0:milestone9",{"version":723,"is_range":96,"range_type":655,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"10.0.0:milestone1",{"version":725,"is_range":96,"range_type":655,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"10.0.0:milestone2",{"version":727,"is_range":96,"range_type":655,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"10.0.0:milestone3",{"version":729,"is_range":96,"range_type":655,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"10.0.0:milestone4",{"ecosystem":9,"name":731,"vendor":732,"product":733,"cpe_part":734,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":735},"ubuntu linux","canonical","ubuntu_linux","o",[736,738],{"version":737,"is_range":96,"range_type":655,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"16.04",{"version":739,"is_range":96,"range_type":655,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"20.04",{"ecosystem":9,"name":741,"vendor":742,"product":743,"cpe_part":734,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":744},"debian linux","debian","debian_linux",[745,747,749],{"version":746,"is_range":96,"range_type":655,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"8.0",{"version":748,"is_range":96,"range_type":655,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"9.0",{"version":750,"is_range":96,"range_type":655,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"10.0",{"ecosystem":9,"name":752,"vendor":753,"product":752,"cpe_part":734,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":754},"fedora","fedoraproject",[755,757],{"version":756,"is_range":96,"range_type":655,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"31",{"version":758,"is_range":96,"range_type":655,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"32",{"ecosystem":760,"name":761,"vendor":762,"product":763,"cpe_part":9,"purl_type":764,"purl_namespace":762,"purl_name":763,"source":9,"versions":765},"Maven","org.apache.tomcat:tomcat-catalina","org.apache.tomcat","tomcat-catalina","maven",[766,771,775,779],{"version":767,"is_range":654,"range_type":768,"version_start":769,"version_start_type":657,"version_end":770,"version_end_type":659,"fixed_in":9},"gte10_0_0_M1_lt10_0_0_M5","ecosystem","10.0.0-M1","10.0.0-M5",{"version":772,"is_range":654,"range_type":768,"version_start":773,"version_start_type":657,"version_end":774,"version_end_type":659,"fixed_in":9},"gte9_0_0_lt9_0_35","9.0.0","9.0.35",{"version":776,"is_range":654,"range_type":768,"version_start":777,"version_start_type":657,"version_end":778,"version_end_type":659,"fixed_in":9},"gte8_0_0_lt8_5_55","8.0.0","8.5.55",{"version":780,"is_range":654,"range_type":768,"version_start":656,"version_start_type":657,"version_end":781,"version_end_type":659,"fixed_in":9},"gte7_0_0_lt7_0_104","7.0.104",{"ecosystem":760,"name":783,"vendor":784,"product":785,"cpe_part":9,"purl_type":764,"purl_namespace":784,"purl_name":785,"source":9,"versions":786},"org.apache.tomcat.embed:tomcat-embed-core","org.apache.tomcat.embed","tomcat-embed-core",[787,788,789,790],{"version":767,"is_range":654,"range_type":768,"version_start":769,"version_start_type":657,"version_end":770,"version_end_type":659,"fixed_in":9},{"version":772,"is_range":654,"range_type":768,"version_start":773,"version_start_type":657,"version_end":774,"version_end_type":659,"fixed_in":9},{"version":776,"is_range":654,"range_type":768,"version_start":777,"version_start_type":657,"version_end":778,"version_end_type":659,"fixed_in":9},{"version":780,"is_range":654,"range_type":768,"version_start":656,"version_start_type":657,"version_end":781,"version_end_type":659,"fixed_in":9},{"ecosystem":9,"name":792,"vendor":793,"product":794,"cpe_part":795,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":796},"epolicy orchestrator","mcafee","epolicy_orchestrator","a",[797,799,801,803,805,807],{"version":798,"is_range":96,"range_type":655,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.9.0",{"version":800,"is_range":96,"range_type":655,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.9.1",{"version":802,"is_range":96,"range_type":655,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.10.0",{"version":804,"is_range":96,"range_type":655,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.10.0:update_1",{"version":806,"is_range":96,"range_type":655,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.10.0:update_2",{"version":808,"is_range":96,"range_type":655,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.10.0:update_3",{"ecosystem":9,"name":810,"vendor":811,"product":810,"cpe_part":734,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":812},"leap","opensuse",[813],{"version":814,"is_range":96,"range_type":655,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"15.1",{"ecosystem":9,"name":816,"vendor":817,"product":818,"cpe_part":795,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":819},"agile engineering data management","oracle","agile_engineering_data_management",[820],{"version":821,"is_range":96,"range_type":655,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"6.2.1.0",{"ecosystem":9,"name":823,"vendor":817,"product":824,"cpe_part":795,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":825},"agile plm","agile_plm",[826,828,830],{"version":827,"is_range":96,"range_type":655,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"9.3.3",{"version":829,"is_range":96,"range_type":655,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"9.3.5",{"version":831,"is_range":96,"range_type":655,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"9.3.6",{"ecosystem":9,"name":833,"vendor":817,"product":834,"cpe_part":795,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":835},"communications cloud native core binding support function","communications_cloud_native_core_binding_support_function",[836],{"version":837,"is_range":96,"range_type":655,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"1.10.0",{"ecosystem":9,"name":839,"vendor":817,"product":840,"cpe_part":795,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":841},"communications cloud native core policy","communications_cloud_native_core_policy",[842],{"version":843,"is_range":96,"range_type":655,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"1.14.0",{"ecosystem":9,"name":845,"vendor":817,"product":846,"cpe_part":795,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":847},"communications diameter signaling router","communications_diameter_signaling_router",[848],{"version":849,"is_range":654,"range_type":655,"version_start":850,"version_start_type":657,"version_end":851,"version_end_type":657,"fixed_in":9},"gte8.0.0.0_lte8.4.0.5","8.0.0.0","8.4.0.5",{"ecosystem":9,"name":853,"vendor":817,"product":854,"cpe_part":795,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":855},"communications element manager","communications_element_manager",[856],{"version":857,"is_range":654,"range_type":655,"version_start":858,"version_start_type":657,"version_end":859,"version_end_type":657,"fixed_in":9},"gte8.2.0_lte8.2.2","8.2.0","8.2.2",{"ecosystem":9,"name":861,"vendor":817,"product":862,"cpe_part":795,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":863},"communications instant messaging server","communications_instant_messaging_server",[864],{"version":865,"is_range":96,"range_type":655,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"10.0.1.4.0",{"ecosystem":9,"name":867,"vendor":817,"product":868,"cpe_part":795,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":869},"communications session report manager","communications_session_report_manager",[870],{"version":857,"is_range":654,"range_type":655,"version_start":858,"version_start_type":657,"version_end":859,"version_end_type":657,"fixed_in":9},{"ecosystem":9,"name":872,"vendor":817,"product":873,"cpe_part":795,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":874},"communications session route manager","communications_session_route_manager",[875],{"version":857,"is_range":654,"range_type":655,"version_start":858,"version_start_type":657,"version_end":859,"version_end_type":657,"fixed_in":9},{"ecosystem":9,"name":877,"vendor":817,"product":877,"cpe_part":795,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":878},"database",[879,881,883],{"version":880,"is_range":96,"range_type":655,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"12.2.0.1",{"version":882,"is_range":96,"range_type":655,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"19c",{"version":884,"is_range":96,"range_type":655,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"21c",{"ecosystem":9,"name":886,"vendor":817,"product":887,"cpe_part":795,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":888},"fmw platform","fmw_platform",[889,891],{"version":890,"is_range":96,"range_type":655,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"12.2.1.3.0",{"version":892,"is_range":96,"range_type":655,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"12.2.1.4.0",{"ecosystem":9,"name":894,"vendor":817,"product":895,"cpe_part":795,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":896},"hospitality guest access","hospitality_guest_access",[897,899],{"version":898,"is_range":96,"range_type":655,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"4.2.0",{"version":900,"is_range":96,"range_type":655,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"4.2.1",{"ecosystem":9,"name":902,"vendor":817,"product":903,"cpe_part":795,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":904},"instantis enterprisetrack","instantis_enterprisetrack",[905],{"version":906,"is_range":654,"range_type":655,"version_start":907,"version_start_type":657,"version_end":908,"version_end_type":657,"fixed_in":9},"gte17.1_lte17.3","17.1","17.3",{"ecosystem":9,"name":910,"vendor":817,"product":911,"cpe_part":795,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":912},"managed file transfer","managed_file_transfer",[913,914],{"version":890,"is_range":96,"range_type":655,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"version":892,"is_range":96,"range_type":655,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"ecosystem":9,"name":916,"vendor":817,"product":917,"cpe_part":795,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":918},"mysql enterprise monitor","mysql_enterprise_monitor",[919],{"version":920,"is_range":654,"range_type":655,"version_start":9,"version_start_type":9,"version_end":921,"version_end_type":657,"fixed_in":9},"lte8.0.21","8.0.21",{"ecosystem":9,"name":923,"vendor":817,"product":924,"cpe_part":795,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":925},"retail order broker","retail_order_broker",[926],{"version":927,"is_range":96,"range_type":655,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"15.0",{"ecosystem":9,"name":929,"vendor":817,"product":930,"cpe_part":795,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":931},"siebel apps - marketing","siebel_apps_-_marketing",[932],{"version":933,"is_range":654,"range_type":655,"version_start":9,"version_start_type":9,"version_end":934,"version_end_type":657,"fixed_in":9},"lte21.9","21.9",{"ecosystem":9,"name":936,"vendor":817,"product":937,"cpe_part":795,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":938},"siebel ui framework","siebel_ui_framework",[939],{"version":940,"is_range":654,"range_type":655,"version_start":9,"version_start_type":9,"version_end":941,"version_end_type":657,"fixed_in":9},"lte20.12","20.12",{"ecosystem":9,"name":943,"vendor":817,"product":944,"cpe_part":795,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":945},"transportation management","transportation_management",[946],{"version":947,"is_range":96,"range_type":655,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"6.3.7",{"ecosystem":9,"name":949,"vendor":817,"product":950,"cpe_part":795,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":951},"workload manager","workload_manager",[952,953,955],{"version":880,"is_range":96,"range_type":655,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"version":954,"is_range":96,"range_type":655,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"18c",{"version":882,"is_range":96,"range_type":655,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9}]