[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2024-21733":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-05T14:55:33.319Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":36,"aliases":37,"duplicate_of":9,"upstream":40,"downstream":41,"duplicates":54,"related":55,"reserved_at":9,"published_at":58,"modified_at":59,"state":60,"summary":61,"references_raw":70,"kevs":129,"epss":130,"epss_history":133,"metrics":360,"affected":370},"CVE-2024-21733","Generation of Error Message Containing Sensitive Information vulnerability in Apache Tomcat.This issue affects Apache Tomcat: from 8.5.7 through 8.5.63, from 9.0.0-M11 through 9.0.43. Other, EOL versions may also be affected.\n\nUsers are recommended to upgrade to version 8.5.64 onwards or 9.0.44 onwards, which contain a fix for the issue.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":18,"capec":19},"CWE-209","Generation of Error Message Containing Sensitive Information","The product generates an error message that includes sensitive information about its environment, users, or associated data.","weakness","Draft","Base","High",[20,24,28,32],{"id":21,"name":22,"techniques":23},"CAPEC-215","Fuzzing for application mapping",[],{"id":25,"name":26,"techniques":27},"CAPEC-463","Padding Oracle Crypto Attack",[],{"id":29,"name":30,"techniques":31},"CAPEC-54","Query System for Information",[],{"id":33,"name":34,"techniques":35},"CAPEC-7","Blind SQL Injection",[],[],[38,39],"GHSA-f4qf-m5gf-8jm8","BIT-tomcat-2024-21733",[],[42,44,46,48,50,52],{"_key":43},"SUSE-SU-2024:0829-1",{"_key":45},"DLA-4017-1",{"_key":47},"SUSE-SU-2026:1058-1",{"_key":49},"USN-7562-1",{"_key":51},"DEBIAN-CVE-2024-21733",{"_key":53},"UBUNTU-CVE-2024-21733",[],[56,57],{"_key":43},{"_key":47},"2024-01-19T10:29:04.694Z","2025-11-03T20:36:42.598Z","Modified",{"cisa_kev":62,"cisa_ransomware":62,"cisa_vendor":9,"epss_severity":63,"epss_score":64,"severity":65,"severity_score":66,"severity_version":67,"severity_source":68,"severity_vector":69,"severity_status":60},false,"critical",0.70951,"medium",5.3,"v3.1","cve.org","CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",[71,81,87,91,95,99,104,108,112,117,121,125],{"url":72,"sources":73,"tags":76},"https://lists.apache.org/thread/h9bjqdd0odj6lhs2o96qgowcc6hb0cfz",[68,74,75],"nvd","osv_maven",[77,78,79,80],"Vendor Advisory","Mailing List","Patch","WEB",{"url":82,"sources":83,"tags":84},"http://www.openwall.com/lists/oss-security/2024/01/19/2",[68,74,75],[85,78,79,86,80],"X Transferred","Third Party Advisory",{"url":88,"sources":89,"tags":90},"http://packetstormsecurity.com/files/176951/Apache-Tomcat-8.5.63-9.0.43-HTTP-Response-Smuggling.html",[68,74,75],[85,80],{"url":92,"sources":93,"tags":94},"https://security.netapp.com/advisory/ntap-20240216-0005/",[68,74],[85],{"url":96,"sources":97,"tags":98},"https://lists.debian.org/debian-lts-announce/2025/01/msg00009.html",[68,74,75],[80],{"url":100,"sources":101,"tags":102},"https://nvd.nist.gov/vuln/detail/CVE-2024-21733",[75],[103],"Advisory",{"url":105,"sources":106,"tags":107},"https://github.com/apache/tomcat/commit/86ccc43940861703c2be96a5f35384407522125a",[75],[80],{"url":109,"sources":110,"tags":111},"https://github.com/apache/tomcat/commit/ce4b154e7b48f66bd98858626347747cd2514311",[75],[80],{"url":113,"sources":114,"tags":115},"https://github.com/apache/tomcat",[75],[116],"PACKAGE",{"url":118,"sources":119,"tags":120},"https://security.netapp.com/advisory/ntap-20240216-0005",[75],[80],{"url":122,"sources":123,"tags":124},"https://tomcat.apache.org/security-8.html",[75],[80],{"url":126,"sources":127,"tags":128},"https://tomcat.apache.org/security-9.html",[75],[80],[],{"date":131,"score":64,"percentile":132},"2026-06-04",0.98723,[134,138,141,143,147,149,151,154,156,159,161,163,165,168,171,175,177,179,181,183,185,187,189,191,193,195,197,199,202,205,208,211,213,215,218,220,222,224,227,230,233,235,237,239,242,245,247,250,252,254,257,260,263,265,268,271,273,276,278,281,284,286,289,291,294,297,299,302,305,307,309,311,313,316,318,321,324,327,329,331,333,336,339,341,344,347,349,352,355,357],{"date":135,"score":136,"percentile":137},"2025-11-04",0.67964,0.98508,{"date":139,"score":136,"percentile":140},"2025-11-05",0.98506,{"date":142,"score":136,"percentile":140},"2025-11-06",{"date":144,"score":145,"percentile":146},"2025-11-07",0.70681,0.9862,{"date":148,"score":145,"percentile":146},"2025-11-08",{"date":150,"score":145,"percentile":146},"2025-11-09",{"date":152,"score":145,"percentile":153},"2025-11-10",0.98621,{"date":155,"score":145,"percentile":153},"2025-11-11",{"date":157,"score":145,"percentile":158},"2025-11-12",0.98623,{"date":160,"score":145,"percentile":158},"2025-11-13",{"date":162,"score":145,"percentile":158},"2025-11-14",{"date":164,"score":145,"percentile":153},"2025-11-15",{"date":166,"score":145,"percentile":167},"2025-11-16",0.98622,{"date":169,"score":145,"percentile":170},"2025-11-17",0.98624,{"date":172,"score":173,"percentile":174},"2025-11-18",0.72219,0.98815,{"date":176,"score":173,"percentile":174},"2025-11-19",{"date":178,"score":173,"percentile":174},"2025-11-20",{"date":180,"score":145,"percentile":158},"2025-11-21",{"date":182,"score":145,"percentile":146},"2025-11-22",{"date":184,"score":145,"percentile":146},"2025-11-23",{"date":186,"score":145,"percentile":146},"2025-11-24",{"date":188,"score":145,"percentile":167},"2025-11-25",{"date":190,"score":145,"percentile":167},"2025-11-26",{"date":192,"score":145,"percentile":167},"2025-11-27",{"date":194,"score":145,"percentile":153},"2025-11-28",{"date":196,"score":145,"percentile":167},"2025-11-29",{"date":198,"score":145,"percentile":153},"2025-11-30",{"date":200,"score":145,"percentile":201},"2025-12-01",0.98634,{"date":203,"score":145,"percentile":204},"2025-12-02",0.98637,{"date":206,"score":145,"percentile":207},"2025-12-03",0.98639,{"date":209,"score":145,"percentile":210},"2025-12-04",0.98625,{"date":212,"score":145,"percentile":210},"2025-12-05",{"date":214,"score":145,"percentile":170},"2025-12-06",{"date":216,"score":145,"percentile":217},"2025-12-07",0.98626,{"date":219,"score":145,"percentile":210},"2025-12-08",{"date":221,"score":145,"percentile":217},"2025-12-09",{"date":223,"score":145,"percentile":217},"2025-12-10",{"date":225,"score":145,"percentile":226},"2025-12-11",0.98627,{"date":228,"score":145,"percentile":229},"2025-12-12",0.98629,{"date":231,"score":145,"percentile":232},"2025-12-13",0.98628,{"date":234,"score":145,"percentile":229},"2025-12-14",{"date":236,"score":145,"percentile":232},"2025-12-15",{"date":238,"score":145,"percentile":229},"2025-12-16",{"date":240,"score":145,"percentile":241},"2025-12-17",0.9863,{"date":243,"score":145,"percentile":244},"2025-12-18",0.98631,{"date":246,"score":145,"percentile":244},"2025-12-19",{"date":248,"score":145,"percentile":249},"2025-12-20",0.98632,{"date":251,"score":145,"percentile":249},"2025-12-21",{"date":253,"score":145,"percentile":249},"2025-12-22",{"date":255,"score":136,"percentile":256},"2025-12-23",0.98518,{"date":258,"score":136,"percentile":259},"2025-12-24",0.98519,{"date":261,"score":136,"percentile":262},"2025-12-25",0.9852,{"date":264,"score":136,"percentile":262},"2025-12-26",{"date":266,"score":136,"percentile":267},"2025-12-27",0.98536,{"date":269,"score":136,"percentile":270},"2025-12-28",0.98522,{"date":272,"score":136,"percentile":270},"2025-12-29",{"date":274,"score":136,"percentile":275},"2025-12-30",0.98521,{"date":277,"score":136,"percentile":270},"2025-12-31",{"date":279,"score":136,"percentile":280},"2026-01-01",0.98538,{"date":282,"score":136,"percentile":283},"2026-01-02",0.98537,{"date":285,"score":136,"percentile":267},"2026-01-03",{"date":287,"score":136,"percentile":288},"2026-01-04",0.98524,{"date":290,"score":136,"percentile":288},"2026-01-05",{"date":292,"score":136,"percentile":293},"2026-01-06",0.98525,{"date":295,"score":136,"percentile":296},"2026-01-07",0.98527,{"date":298,"score":136,"percentile":296},"2026-01-08",{"date":300,"score":136,"percentile":301},"2026-01-09",0.98528,{"date":303,"score":136,"percentile":304},"2026-01-10",0.98529,{"date":306,"score":136,"percentile":304},"2026-01-11",{"date":308,"score":136,"percentile":301},"2026-01-12",{"date":310,"score":136,"percentile":296},"2026-01-13",{"date":312,"score":136,"percentile":301},"2026-01-14",{"date":314,"score":136,"percentile":315},"2026-01-15",0.9853,{"date":317,"score":136,"percentile":304},"2026-01-16",{"date":319,"score":136,"percentile":320},"2026-01-17",0.98531,{"date":322,"score":136,"percentile":323},"2026-01-18",0.98533,{"date":325,"score":136,"percentile":326},"2026-01-19",0.98535,{"date":328,"score":136,"percentile":326},"2026-01-20",{"date":330,"score":136,"percentile":326},"2026-01-21",{"date":332,"score":136,"percentile":283},"2026-01-22",{"date":334,"score":136,"percentile":335},"2026-01-23",0.98539,{"date":337,"score":136,"percentile":338},"2026-01-24",0.9854,{"date":340,"score":136,"percentile":338},"2026-01-25",{"date":342,"score":136,"percentile":343},"2026-01-26",0.98541,{"date":345,"score":136,"percentile":346},"2026-01-27",0.98542,{"date":348,"score":136,"percentile":346},"2026-01-28",{"date":350,"score":136,"percentile":351},"2026-01-29",0.98543,{"date":353,"score":136,"percentile":354},"2026-01-30",0.98544,{"date":356,"score":136,"percentile":351},"2026-01-31",{"date":358,"score":136,"percentile":359},"2026-02-01",0.98555,[361,366,368],{"source":68,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":362,"cvss_v4_0":9},{"baseScore":66,"baseSeverity":363,"vectorString":69,"impactScore":364,"exploitabilityScore":365},"MEDIUM",2.3,10,{"source":74,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":367,"cvss_v4_0":9},{"baseScore":66,"baseSeverity":363,"vectorString":69,"impactScore":364,"exploitabilityScore":365},{"source":75,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":369,"cvss_v4_0":9},{"baseScore":66,"baseSeverity":9,"vectorString":69,"impactScore":364,"exploitabilityScore":365},[371,387,433,443],{"ecosystem":9,"name":372,"vendor":373,"product":374,"cpe_part":375,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":376},"Apache Tomcat","apache software foundation","apache tomcat","a",[377,383],{"version":378,"is_range":379,"range_type":68,"version_start":380,"version_start_type":381,"version_end":382,"version_end_type":381,"fixed_in":9},">= 8.5.7, \u003C= 8.5.63",true,"8.5.7","including","8.5.63",{"version":384,"is_range":379,"range_type":68,"version_start":385,"version_start_type":381,"version_end":386,"version_end_type":381,"fixed_in":9},">= 9.0.0-M11, \u003C= 9.0.43","9.0.0-M11","9.0.43",{"ecosystem":9,"name":388,"vendor":9,"product":388,"cpe_part":9,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":389},"Tomcat",[390,395,399,401,403,405,407,409,411,413,415,417,419,421,423,425,427,429,431],{"version":391,"is_range":379,"range_type":392,"version_start":380,"version_start_type":381,"version_end":393,"version_end_type":394,"fixed_in":9},"gte8.5.7_lt8.5.64","cpe","8.5.64","excluding",{"version":396,"is_range":379,"range_type":392,"version_start":397,"version_start_type":381,"version_end":398,"version_end_type":394,"fixed_in":9},"gte9.0.1_lt9.0.44","9.0.1","9.0.44",{"version":400,"is_range":62,"range_type":392,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"9.0.0:milestone11",{"version":402,"is_range":62,"range_type":392,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"9.0.0:milestone12",{"version":404,"is_range":62,"range_type":392,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"9.0.0:milestone13",{"version":406,"is_range":62,"range_type":392,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"9.0.0:milestone14",{"version":408,"is_range":62,"range_type":392,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"9.0.0:milestone15",{"version":410,"is_range":62,"range_type":392,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"9.0.0:milestone16",{"version":412,"is_range":62,"range_type":392,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"9.0.0:milestone17",{"version":414,"is_range":62,"range_type":392,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"9.0.0:milestone18",{"version":416,"is_range":62,"range_type":392,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"9.0.0:milestone19",{"version":418,"is_range":62,"range_type":392,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"9.0.0:milestone20",{"version":420,"is_range":62,"range_type":392,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"9.0.0:milestone21",{"version":422,"is_range":62,"range_type":392,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"9.0.0:milestone22",{"version":424,"is_range":62,"range_type":392,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"9.0.0:milestone23",{"version":426,"is_range":62,"range_type":392,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"9.0.0:milestone24",{"version":428,"is_range":62,"range_type":392,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"9.0.0:milestone25",{"version":430,"is_range":62,"range_type":392,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"9.0.0:milestone26",{"version":432,"is_range":62,"range_type":392,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"9.0.0:milestone27",{"ecosystem":434,"name":435,"vendor":436,"product":437,"cpe_part":9,"purl_type":438,"purl_namespace":436,"purl_name":437,"source":9,"versions":439},"Maven","org.apache.tomcat:tomcat-coyote","org.apache.tomcat","tomcat-coyote","maven",[440],{"version":441,"is_range":379,"range_type":442,"version_start":385,"version_start_type":381,"version_end":398,"version_end_type":394,"fixed_in":9},"gte9_0_0_M11_lt9_0_44","ecosystem",{"ecosystem":434,"name":444,"vendor":445,"product":446,"cpe_part":9,"purl_type":438,"purl_namespace":445,"purl_name":446,"source":9,"versions":447},"org.apache.tomcat.embed:tomcat-embed-core","org.apache.tomcat.embed","tomcat-embed-core",[448],{"version":449,"is_range":379,"range_type":442,"version_start":380,"version_start_type":381,"version_end":393,"version_end_type":394,"fixed_in":9},"gte8_5_7_lt8_5_64"]