[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2024-52316":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-05T08:55:32.481Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":26,"aliases":27,"duplicate_of":9,"upstream":30,"downstream":31,"duplicates":58,"related":59,"reserved_at":9,"published_at":67,"modified_at":68,"state":69,"summary":70,"references_raw":79,"kevs":128,"epss":129,"epss_history":132,"metrics":393,"affected":402},"CVE-2024-52316","Unchecked Error Condition vulnerability in Apache Tomcat. If Tomcat is configured to use a custom Jakarta Authentication (formerly JASPIC) ServerAuthContext component which may throw an exception during the authentication process without explicitly setting an HTTP status to indicate failure, the authentication may not fail, allowing the user to bypass the authentication process. There are no known Jakarta Authentication components that behave in this way.\n\nThis issue affects Apache Tomcat: from 11.0.0-M1 through 11.0.0-M26, from 10.1.0-M1 through 10.1.30, from 9.0.0-M1 through 9.0.95.\n\nThe following versions were EOL at the time the CVE was created but are \nknown to be affected: 8.5.0 though 8.5.100. Other EOL versions may also be affected.\n\n\nUsers are recommended to upgrade to version 11.0.0, 10.1.31 or 9.0.96, which fix the issue.",null,[11,20],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":18,"capec":19},"CWE-391","Unchecked Error Condition","[PLANNED FOR DEPRECATION. SEE MAINTENANCE NOTES AND CONSIDER CWE-252, CWE-248, OR CWE-1069.] Ignoring exceptions and other error conditions may allow an attacker to induce unexpected behavior unnoticed.","weakness","Incomplete","Base","Medium",[],{"_key":21,"id":21,"name":22,"description":23,"type":15,"status":16,"abstraction":24,"likelihood_of_exploit":18,"capec":25},"CWE-754","Improper Check for Unusual or Exceptional Conditions","The product does not check or incorrectly checks for unusual or exceptional conditions that are not expected to occur frequently during day to day operation of the product.","Class",[],[],[28,29],"GHSA-xcpr-7mr4-h4xq","BIT-tomcat-2024-52316",[],[32,34,36,38,40,42,44,46,48,50,52,54,56],{"_key":33},"OPENSUSE-SU-2024:14526-1",{"_key":35},"SUSE-SU-2024:4075-1",{"_key":37},"SUSE-SU-2024:4105-1",{"_key":39},"SUSE-SU-2024:4106-1",{"_key":41},"OPENSUSE-SU-2024:14525-1",{"_key":43},"DLA-4017-1",{"_key":45},"DSA-5845-1",{"_key":47},"SUSE-SU-2026:1058-1",{"_key":49},"MGASA-2024-0379",{"_key":51},"DEBIAN-CVE-2024-52316",{"_key":53},"RHSA-2025:3608",{"_key":55},"RHSA-2025:7497",{"_key":57},"UBUNTU-CVE-2024-52316",[],[60,61,62,63,64,65,66],{"_key":33},{"_key":35},{"_key":37},{"_key":39},{"_key":41},{"_key":47},{"_key":49},"2024-11-18T11:32:22.072Z","2025-11-04T15:59:51.152Z","Analyzed",{"cisa_kev":71,"cisa_ransomware":71,"cisa_vendor":9,"epss_severity":72,"epss_score":73,"severity":74,"severity_score":75,"severity_version":76,"severity_source":77,"severity_vector":78,"severity_status":69},false,"low",0.02487,"critical",9.8,"v3.1","cve.org","CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",[80,89,94,98,102,107,111,115,119,124],{"url":81,"sources":82,"tags":85},"https://lists.apache.org/thread/lopzlqh91jj9n334g02om08sbysdb928",[77,83,84],"nvd","osv_maven",[86,87,88],"Vendor Advisory","Mailing List","WEB",{"url":90,"sources":91,"tags":92},"http://www.openwall.com/lists/oss-security/2024/11/18/2",[77,83,84],[87,93,88],"Third Party Advisory",{"url":95,"sources":96,"tags":97},"https://security.netapp.com/advisory/ntap-20250124-0003/",[77,83],[93],{"url":99,"sources":100,"tags":101},"https://lists.debian.org/debian-lts-announce/2025/01/msg00009.html",[77,83,84],[93,88],{"url":103,"sources":104,"tags":105},"https://nvd.nist.gov/vuln/detail/CVE-2024-52316",[84],[106],"Advisory",{"url":108,"sources":109,"tags":110},"https://github.com/apache/tomcat/commit/6d097a66746635df6880fe7662a792156b0eca14",[84],[88],{"url":112,"sources":113,"tags":114},"https://github.com/apache/tomcat/commit/7532f9dc4a8c37ec958f79dc82c4924a6c539223",[84],[88],{"url":116,"sources":117,"tags":118},"https://github.com/apache/tomcat/commit/acc2f01395f895980f5d8a64573fcc1bade13369",[84],[88],{"url":120,"sources":121,"tags":122},"https://github.com/apache/tomcat",[84],[123],"PACKAGE",{"url":125,"sources":126,"tags":127},"https://security.netapp.com/advisory/ntap-20250124-0003",[84],[88],[],{"date":130,"score":73,"percentile":131},"2026-06-04",0.85581,[133,137,139,142,145,149,152,155,158,161,164,167,170,172,175,179,182,185,188,191,194,197,200,202,204,206,209,212,216,219,222,225,228,231,233,235,238,242,245,248,251,253,255,258,261,264,267,270,273,276,278,281,284,287,291,295,298,301,304,308,311,314,317,320,323,325,327,330,332,335,338,341,344,347,349,352,354,357,359,361,364,367,370,373,376,379,382,384,387,390],{"date":134,"score":135,"percentile":136},"2025-11-04",0.01737,0.81853,{"date":138,"score":135,"percentile":136},"2025-11-05",{"date":140,"score":135,"percentile":141},"2025-11-06",0.81855,{"date":143,"score":135,"percentile":144},"2025-11-07",0.81866,{"date":146,"score":147,"percentile":148},"2025-11-08",0.01759,0.82,{"date":150,"score":147,"percentile":151},"2025-11-09",0.81996,{"date":153,"score":147,"percentile":154},"2025-11-10",0.81989,{"date":156,"score":147,"percentile":157},"2025-11-11",0.81998,{"date":159,"score":147,"percentile":160},"2025-11-12",0.82008,{"date":162,"score":147,"percentile":163},"2025-11-13",0.82014,{"date":165,"score":147,"percentile":166},"2025-11-14",0.82018,{"date":168,"score":147,"percentile":169},"2025-11-15",0.82013,{"date":171,"score":147,"percentile":163},"2025-11-16",{"date":173,"score":147,"percentile":174},"2025-11-17",0.82011,{"date":176,"score":177,"percentile":178},"2025-11-18",0.15849,0.9419,{"date":180,"score":177,"percentile":181},"2025-11-19",0.94194,{"date":183,"score":177,"percentile":184},"2025-11-20",0.94197,{"date":186,"score":147,"percentile":187},"2025-11-21",0.82027,{"date":189,"score":147,"percentile":190},"2025-11-22",0.8203,{"date":192,"score":147,"percentile":193},"2025-11-23",0.82024,{"date":195,"score":147,"percentile":196},"2025-11-24",0.82022,{"date":198,"score":147,"percentile":199},"2025-11-25",0.82017,{"date":201,"score":147,"percentile":166},"2025-11-26",{"date":203,"score":147,"percentile":193},"2025-11-27",{"date":205,"score":147,"percentile":163},"2025-11-28",{"date":207,"score":147,"percentile":208},"2025-11-29",0.82019,{"date":210,"score":147,"percentile":211},"2025-11-30",0.82025,{"date":213,"score":214,"percentile":215},"2025-12-01",0.01073,0.77215,{"date":217,"score":214,"percentile":218},"2025-12-02",0.77226,{"date":220,"score":214,"percentile":221},"2025-12-03",0.77214,{"date":223,"score":147,"percentile":224},"2025-12-04",0.82023,{"date":226,"score":147,"percentile":227},"2025-12-05",0.82031,{"date":229,"score":147,"percentile":230},"2025-12-06",0.82029,{"date":232,"score":147,"percentile":187},"2025-12-07",{"date":234,"score":147,"percentile":227},"2025-12-08",{"date":236,"score":147,"percentile":237},"2025-12-09",0.8205,{"date":239,"score":240,"percentile":241},"2025-12-10",0.01302,0.79175,{"date":243,"score":240,"percentile":244},"2025-12-11",0.7919,{"date":246,"score":240,"percentile":247},"2025-12-12",0.7921,{"date":249,"score":240,"percentile":250},"2025-12-13",0.79211,{"date":252,"score":240,"percentile":247},"2025-12-14",{"date":254,"score":240,"percentile":247},"2025-12-15",{"date":256,"score":240,"percentile":257},"2025-12-16",0.79221,{"date":259,"score":240,"percentile":260},"2025-12-17",0.79229,{"date":262,"score":240,"percentile":263},"2025-12-18",0.79249,{"date":265,"score":240,"percentile":266},"2025-12-19",0.79258,{"date":268,"score":240,"percentile":269},"2025-12-20",0.79254,{"date":271,"score":240,"percentile":272},"2025-12-21",0.79247,{"date":274,"score":240,"percentile":275},"2025-12-22",0.79248,{"date":277,"score":240,"percentile":275},"2025-12-23",{"date":279,"score":240,"percentile":280},"2025-12-24",0.79262,{"date":282,"score":240,"percentile":283},"2025-12-25",0.79282,{"date":285,"score":240,"percentile":286},"2025-12-26",0.79279,{"date":288,"score":289,"percentile":290},"2025-12-27",0.02176,0.83934,{"date":292,"score":293,"percentile":294},"2025-12-28",0.01846,0.82513,{"date":296,"score":293,"percentile":297},"2025-12-29",0.82509,{"date":299,"score":293,"percentile":300},"2025-12-30",0.82517,{"date":302,"score":293,"percentile":303},"2025-12-31",0.8253,{"date":305,"score":306,"percentile":307},"2026-01-01",0.01612,0.8142,{"date":309,"score":306,"percentile":310},"2026-01-02",0.81416,{"date":312,"score":306,"percentile":313},"2026-01-03",0.8141,{"date":315,"score":293,"percentile":316},"2026-01-04",0.82507,{"date":318,"score":293,"percentile":319},"2026-01-05",0.82503,{"date":321,"score":293,"percentile":322},"2026-01-06",0.82508,{"date":324,"score":293,"percentile":297},"2026-01-07",{"date":326,"score":293,"percentile":294},"2026-01-08",{"date":328,"score":293,"percentile":329},"2026-01-09",0.82514,{"date":331,"score":293,"percentile":329},"2026-01-10",{"date":333,"score":293,"percentile":334},"2026-01-11",0.82511,{"date":336,"score":293,"percentile":337},"2026-01-12",0.82505,{"date":339,"score":293,"percentile":340},"2026-01-13",0.82502,{"date":342,"score":293,"percentile":343},"2026-01-14",0.82521,{"date":345,"score":293,"percentile":346},"2026-01-15",0.82519,{"date":348,"score":293,"percentile":303},"2026-01-16",{"date":350,"score":293,"percentile":351},"2026-01-17",0.82532,{"date":353,"score":293,"percentile":303},"2026-01-18",{"date":355,"score":293,"percentile":356},"2026-01-19",0.82526,{"date":358,"score":293,"percentile":356},"2026-01-20",{"date":360,"score":293,"percentile":351},"2026-01-21",{"date":362,"score":293,"percentile":363},"2026-01-22",0.8254,{"date":365,"score":293,"percentile":366},"2026-01-23",0.82561,{"date":368,"score":293,"percentile":369},"2026-01-24",0.82567,{"date":371,"score":293,"percentile":372},"2026-01-25",0.8256,{"date":374,"score":293,"percentile":375},"2026-01-26",0.82558,{"date":377,"score":293,"percentile":378},"2026-01-27",0.82554,{"date":380,"score":293,"percentile":381},"2026-01-28",0.82556,{"date":383,"score":293,"percentile":375},"2026-01-29",{"date":385,"score":293,"percentile":386},"2026-01-30",0.82565,{"date":388,"score":293,"percentile":389},"2026-01-31",0.8257,{"date":391,"score":306,"percentile":392},"2026-02-01",0.81474,[394,398,400],{"source":77,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":395,"cvss_v4_0":9},{"baseScore":75,"baseSeverity":396,"vectorString":78,"impactScore":75,"exploitabilityScore":397},"CRITICAL",10,{"source":83,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":399,"cvss_v4_0":9},{"baseScore":75,"baseSeverity":396,"vectorString":78,"impactScore":75,"exploitabilityScore":397},{"source":84,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":401,"cvss_v4_0":9},{"baseScore":75,"baseSeverity":9,"vectorString":78,"impactScore":75,"exploitabilityScore":397},[403,427,492,500],{"ecosystem":9,"name":404,"vendor":405,"product":406,"cpe_part":407,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":408},"Apache Tomcat","apache software foundation","apache tomcat","a",[409,415,419,423],{"version":410,"is_range":411,"range_type":77,"version_start":412,"version_start_type":413,"version_end":414,"version_end_type":413,"fixed_in":9},">= 11.0.0-M1, \u003C= 11.0.0-M26",true,"11.0.0-M1","including","11.0.0-M26",{"version":416,"is_range":411,"range_type":77,"version_start":417,"version_start_type":413,"version_end":418,"version_end_type":413,"fixed_in":9},">= 10.1.0-M1, \u003C= 10.1.30","10.1.0-M1","10.1.30",{"version":420,"is_range":411,"range_type":77,"version_start":421,"version_start_type":413,"version_end":422,"version_end_type":413,"fixed_in":9},">= 9.0.0-M1, \u003C= 9.0.95","9.0.0-M1","9.0.95",{"version":424,"is_range":411,"range_type":77,"version_start":425,"version_start_type":413,"version_end":426,"version_end_type":413,"fixed_in":9},">= 8.5.0, \u003C= 8.5.100","8.5.0","8.5.100",{"ecosystem":9,"name":428,"vendor":9,"product":428,"cpe_part":9,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":429},"Tomcat",[430,436,440,442,444,446,448,450,452,454,456,458,460,462,464,466,468,470,472,474,476,478,480,482,484,486,488,490],{"version":431,"is_range":411,"range_type":432,"version_start":433,"version_start_type":413,"version_end":434,"version_end_type":435,"fixed_in":9},"gte9.0.0_lt9.0.96","cpe","9.0.0","9.0.96","excluding",{"version":437,"is_range":411,"range_type":432,"version_start":438,"version_start_type":413,"version_end":439,"version_end_type":435,"fixed_in":9},"gte10.1.0_lt10.1.31","10.1.0","10.1.31",{"version":441,"is_range":71,"range_type":432,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"11.0.0:milestone1",{"version":443,"is_range":71,"range_type":432,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"11.0.0:milestone10",{"version":445,"is_range":71,"range_type":432,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"11.0.0:milestone11",{"version":447,"is_range":71,"range_type":432,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"11.0.0:milestone12",{"version":449,"is_range":71,"range_type":432,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"11.0.0:milestone13",{"version":451,"is_range":71,"range_type":432,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"11.0.0:milestone14",{"version":453,"is_range":71,"range_type":432,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"11.0.0:milestone15",{"version":455,"is_range":71,"range_type":432,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"11.0.0:milestone16",{"version":457,"is_range":71,"range_type":432,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"11.0.0:milestone17",{"version":459,"is_range":71,"range_type":432,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"11.0.0:milestone18",{"version":461,"is_range":71,"range_type":432,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"11.0.0:milestone19",{"version":463,"is_range":71,"range_type":432,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"11.0.0:milestone2",{"version":465,"is_range":71,"range_type":432,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"11.0.0:milestone20",{"version":467,"is_range":71,"range_type":432,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"11.0.0:milestone21",{"version":469,"is_range":71,"range_type":432,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"11.0.0:milestone22",{"version":471,"is_range":71,"range_type":432,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"11.0.0:milestone23",{"version":473,"is_range":71,"range_type":432,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"11.0.0:milestone24",{"version":475,"is_range":71,"range_type":432,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"11.0.0:milestone25",{"version":477,"is_range":71,"range_type":432,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"11.0.0:milestone26",{"version":479,"is_range":71,"range_type":432,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"11.0.0:milestone3",{"version":481,"is_range":71,"range_type":432,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"11.0.0:milestone4",{"version":483,"is_range":71,"range_type":432,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"11.0.0:milestone5",{"version":485,"is_range":71,"range_type":432,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"11.0.0:milestone6",{"version":487,"is_range":71,"range_type":432,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"11.0.0:milestone7",{"version":489,"is_range":71,"range_type":432,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"11.0.0:milestone8",{"version":491,"is_range":71,"range_type":432,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"11.0.0:milestone9",{"ecosystem":9,"name":493,"vendor":494,"product":495,"cpe_part":496,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":497},"debian linux","debian","debian_linux","o",[498],{"version":499,"is_range":71,"range_type":432,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"11.0",{"ecosystem":501,"name":502,"vendor":503,"product":504,"cpe_part":9,"purl_type":505,"purl_namespace":503,"purl_name":504,"source":9,"versions":506},"Maven","org.apache.tomcat:tomcat-catalina","org.apache.tomcat","tomcat-catalina","maven",[507,510,512],{"version":508,"is_range":411,"range_type":509,"version_start":9,"version_start_type":9,"version_end":434,"version_end_type":435,"fixed_in":9},"lt9_0_96","ecosystem",{"version":511,"is_range":411,"range_type":509,"version_start":417,"version_start_type":413,"version_end":418,"version_end_type":435,"fixed_in":9},"gte10_1_0_M1_lt10_1_30",{"version":513,"is_range":411,"range_type":509,"version_start":412,"version_start_type":413,"version_end":514,"version_end_type":435,"fixed_in":9},"gte11_0_0_M1_lt11_0_1","11.0.1"]