[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2024-52318":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-05T14:55:33.319Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":152,"aliases":153,"duplicate_of":9,"upstream":156,"downstream":157,"duplicates":164,"related":165,"reserved_at":9,"published_at":167,"modified_at":168,"state":169,"summary":170,"references_raw":178,"kevs":227,"epss":228,"epss_history":231,"metrics":483,"affected":493},"CVE-2024-52318","Incorrect object recycling and reuse vulnerability in Apache Tomcat.\n\nThis issue affects Apache Tomcat: 11.0.0, 10.1.31, 9.0.96.\n\nUsers are recommended to upgrade to version 11.0.1, 10.1.32 or 9.0.97, which fixes the issue.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":9,"capec":18},"CWE-326","Inadequate Encryption Strength","The product stores or transmits sensitive data using an encryption scheme that is theoretically sound, but is not strong enough for the level of protection required.","weakness","Draft","Class",[19,144,148],{"id":20,"name":21,"techniques":22},"CAPEC-112","Brute Force",[23],{"id":24,"name":21,"tactics":25,"countermeasures":29},"T1110",[26],{"id":27,"name":28},"TA0031","Credential Access",[30,35,39,43,47,51,55,59,63,67,71,75,79,83,88,92,97,102,106,110,114,118,122,126,130,135,140],{"id":31,"name":32,"tactic":33},"D3-CCSA","Credential Compromise Scope Analysis",{"name":34},"Detect",{"id":36,"name":37,"tactic":38},"D3-AEM","Application Exception Monitoring",{"name":34},{"id":40,"name":41,"tactic":42},"D3-OPM","Operational Process Monitoring",{"name":34},{"id":44,"name":45,"tactic":46},"D3-UGLPA","User Geolocation Logon Pattern Analysis",{"name":34},{"id":48,"name":49,"tactic":50},"D3-PMAD","Protocol Metadata Anomaly Detection",{"name":34},{"id":52,"name":53,"tactic":54},"D3-CSPP","Client-server Payload Profiling",{"name":34},{"id":56,"name":57,"tactic":58},"D3-PHDURA","Per Host Download-Upload Ratio Analysis",{"name":34},{"id":60,"name":61,"tactic":62},"D3-NTSA","Network Traffic Signature Analysis",{"name":34},{"id":64,"name":65,"tactic":66},"D3-APCA","Application Protocol Command Analysis",{"name":34},{"id":68,"name":69,"tactic":70},"D3-NTCD","Network Traffic Community Deviation",{"name":34},{"id":72,"name":73,"tactic":74},"D3-RTSD","Remote Terminal Session Detection",{"name":34},{"id":76,"name":77,"tactic":78},"D3-CAA","Connection Attempt Analysis",{"name":34},{"id":80,"name":81,"tactic":82},"D3-ANAA","Administrative Network Activity Analysis",{"name":34},{"id":84,"name":85,"tactic":86},"D3-CR","Credential Revocation",{"name":87},"Evict",{"id":89,"name":90,"tactic":91},"D3-ANCI","Authentication Cache Invalidation",{"name":87},{"id":93,"name":94,"tactic":95},"D3-DUC","Decoy User Credential",{"name":96},"Deceive",{"id":98,"name":99,"tactic":100},"D3-CH","Credential Hardening",{"name":101},"Harden",{"id":103,"name":104,"tactic":105},"D3-MFA","Multi-factor Authentication",{"name":101},{"id":107,"name":108,"tactic":109},"D3-CRO","Credential Rotation",{"name":101},{"id":111,"name":112,"tactic":113},"D3-PR","Password Rotation",{"name":101},{"id":115,"name":116,"tactic":117},"D3-PWA","Password Authentication",{"name":101},{"id":119,"name":120,"tactic":121},"D3-CDP","Change Default Password",{"name":101},{"id":123,"name":124,"tactic":125},"D3-SPP","Strong Password Policy",{"name":101},{"id":127,"name":128,"tactic":129},"D3-OTP","One-time Password",{"name":101},{"id":131,"name":132,"tactic":133},"D3-RIC","Reissue Credential",{"name":134},"Restore",{"id":136,"name":137,"tactic":138},"D3-CTS","Credential Transmission Scoping",{"name":139},"Isolate",{"id":141,"name":142,"tactic":143},"D3-NTF","Network Traffic Filtering",{"name":139},{"id":145,"name":146,"techniques":147},"CAPEC-192","Protocol Analysis",[],{"id":149,"name":150,"techniques":151},"CAPEC-20","Encryption Brute Forcing",[],[],[154,155],"GHSA-f632-9449-3j4w","BIT-tomcat-2024-52318",[],[158,160,162],{"_key":159},"UBUNTU-CVE-2024-52318",{"_key":161},"MGASA-2024-0379",{"_key":163},"DEBIAN-CVE-2024-52318",[],[166],{"_key":161},"2024-11-18T12:21:39.170Z","2025-01-31T15:02:49.374Z","Analyzed",{"cisa_kev":171,"cisa_ransomware":171,"cisa_vendor":9,"epss_severity":172,"epss_score":173,"severity":172,"severity_score":174,"severity_version":175,"severity_source":176,"severity_vector":177,"severity_status":169},false,"medium",0.15467,6.1,"v3.1","cve.org","CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",[179,187,192,197,202,206,210,214,218,223],{"url":180,"sources":181,"tags":184},"https://lists.apache.org/thread/co243cw1nlh6p521c5265cm839wkqdp9",[176,182,183],"nvd","osv_maven",[185,186],"Vendor Advisory","WEB",{"url":188,"sources":189,"tags":190},"http://www.openwall.com/lists/oss-security/2024/11/18/4",[176,182,183],[191,186],"Mailing List",{"url":193,"sources":194,"tags":195},"https://security.netapp.com/advisory/ntap-20250131-0009/",[176,182],[196],"Third Party Advisory",{"url":198,"sources":199,"tags":200},"https://nvd.nist.gov/vuln/detail/CVE-2024-52318",[183],[201],"Advisory",{"url":203,"sources":204,"tags":205},"https://github.com/apache/tomcat/commit/8d1fc4733a06d1a03b9d644c57010f2ec5f0df38",[183],[186],{"url":207,"sources":208,"tags":209},"https://github.com/apache/tomcat/commit/9813c5dd3259183f659bbb83312a5cf673cc1ebf",[183],[186],{"url":211,"sources":212,"tags":213},"https://github.com/apache/tomcat/commit/be8e32143a3159e78fe5463d09bb8e1b33bf2b1f",[183],[186],{"url":215,"sources":216,"tags":217},"https://bz.apache.org/bugzilla/show_bug.cgi?id=69333",[183],[186],{"url":219,"sources":220,"tags":221},"https://github.com/apache/tomcat",[183],[222],"PACKAGE",{"url":224,"sources":225,"tags":226},"https://security.netapp.com/advisory/ntap-20250131-0009",[183],[186],[],{"date":229,"score":173,"percentile":230},"2026-06-04",0.94785,[232,236,239,242,245,248,251,253,256,259,262,265,268,271,273,277,280,283,286,288,291,294,296,298,300,303,306,308,311,314,317,320,323,325,328,331,334,337,340,343,346,349,352,355,358,361,364,366,369,371,374,377,380,382,386,389,392,394,397,400,403,405,408,410,412,414,417,420,422,425,428,430,433,436,439,442,445,448,450,453,456,459,462,465,467,469,472,475,477,480],{"date":233,"score":234,"percentile":235},"2025-11-04",0.03657,0.87361,{"date":237,"score":234,"percentile":238},"2025-11-05",0.87363,{"date":240,"score":234,"percentile":241},"2025-11-06",0.8736,{"date":243,"score":234,"percentile":244},"2025-11-07",0.87368,{"date":246,"score":234,"percentile":247},"2025-11-08",0.87371,{"date":249,"score":234,"percentile":250},"2025-11-09",0.87365,{"date":252,"score":234,"percentile":250},"2025-11-10",{"date":254,"score":234,"percentile":255},"2025-11-11",0.8737,{"date":257,"score":234,"percentile":258},"2025-11-12",0.87376,{"date":260,"score":234,"percentile":261},"2025-11-13",0.87381,{"date":263,"score":234,"percentile":264},"2025-11-14",0.87383,{"date":266,"score":234,"percentile":267},"2025-11-15",0.87377,{"date":269,"score":234,"percentile":270},"2025-11-16",0.87382,{"date":272,"score":234,"percentile":267},"2025-11-17",{"date":274,"score":275,"percentile":276},"2025-11-18",0.19515,0.94982,{"date":278,"score":275,"percentile":279},"2025-11-19",0.94984,{"date":281,"score":275,"percentile":282},"2025-11-20",0.94988,{"date":284,"score":234,"percentile":285},"2025-11-21",0.87388,{"date":287,"score":234,"percentile":264},"2025-11-22",{"date":289,"score":234,"percentile":290},"2025-11-23",0.87378,{"date":292,"score":234,"percentile":293},"2025-11-24",0.87379,{"date":295,"score":234,"percentile":293},"2025-11-25",{"date":297,"score":234,"percentile":267},"2025-11-26",{"date":299,"score":234,"percentile":267},"2025-11-27",{"date":301,"score":234,"percentile":302},"2025-11-28",0.87364,{"date":304,"score":234,"percentile":305},"2025-11-29",0.87438,{"date":307,"score":234,"percentile":305},"2025-11-30",{"date":309,"score":234,"percentile":310},"2025-12-01",0.87504,{"date":312,"score":234,"percentile":313},"2025-12-02",0.87505,{"date":315,"score":234,"percentile":316},"2025-12-03",0.87503,{"date":318,"score":234,"percentile":319},"2025-12-04",0.87436,{"date":321,"score":234,"percentile":322},"2025-12-05",0.8744,{"date":324,"score":234,"percentile":305},"2025-12-06",{"date":326,"score":234,"percentile":327},"2025-12-07",0.87434,{"date":329,"score":234,"percentile":330},"2025-12-08",0.87435,{"date":332,"score":234,"percentile":333},"2025-12-09",0.87449,{"date":335,"score":234,"percentile":336},"2025-12-10",0.87465,{"date":338,"score":234,"percentile":339},"2025-12-11",0.87472,{"date":341,"score":234,"percentile":342},"2025-12-12",0.87476,{"date":344,"score":234,"percentile":345},"2025-12-13",0.87475,{"date":347,"score":234,"percentile":348},"2025-12-14",0.8747,{"date":350,"score":234,"percentile":351},"2025-12-15",0.87468,{"date":353,"score":234,"percentile":354},"2025-12-16",0.87477,{"date":356,"score":234,"percentile":357},"2025-12-17",0.87481,{"date":359,"score":234,"percentile":360},"2025-12-18",0.87491,{"date":362,"score":234,"percentile":363},"2025-12-19",0.87493,{"date":365,"score":234,"percentile":360},"2025-12-20",{"date":367,"score":234,"percentile":368},"2025-12-21",0.87496,{"date":370,"score":234,"percentile":368},"2025-12-22",{"date":372,"score":234,"percentile":373},"2025-12-23",0.875,{"date":375,"score":234,"percentile":376},"2025-12-24",0.87506,{"date":378,"score":234,"percentile":379},"2025-12-25",0.87518,{"date":381,"score":234,"percentile":379},"2025-12-26",{"date":383,"score":384,"percentile":385},"2025-12-27",0.12001,0.93579,{"date":387,"score":384,"percentile":388},"2025-12-28",0.9354,{"date":390,"score":384,"percentile":391},"2025-12-29",0.93539,{"date":393,"score":384,"percentile":388},"2025-12-30",{"date":395,"score":384,"percentile":396},"2025-12-31",0.93545,{"date":398,"score":384,"percentile":399},"2026-01-01",0.9358,{"date":401,"score":384,"percentile":402},"2026-01-02",0.93577,{"date":404,"score":384,"percentile":402},"2026-01-03",{"date":406,"score":384,"percentile":407},"2026-01-04",0.93541,{"date":409,"score":384,"percentile":391},"2026-01-05",{"date":411,"score":384,"percentile":388},"2026-01-06",{"date":413,"score":384,"percentile":407},"2026-01-07",{"date":415,"score":384,"percentile":416},"2026-01-08",0.93544,{"date":418,"score":384,"percentile":419},"2026-01-09",0.93548,{"date":421,"score":384,"percentile":419},"2026-01-10",{"date":423,"score":384,"percentile":424},"2026-01-11",0.93547,{"date":426,"score":384,"percentile":427},"2026-01-12",0.93546,{"date":429,"score":384,"percentile":396},"2026-01-13",{"date":431,"score":384,"percentile":432},"2026-01-14",0.93554,{"date":434,"score":384,"percentile":435},"2026-01-15",0.93555,{"date":437,"score":384,"percentile":438},"2026-01-16",0.93561,{"date":440,"score":384,"percentile":441},"2026-01-17",0.93566,{"date":443,"score":384,"percentile":444},"2026-01-18",0.9356,{"date":446,"score":384,"percentile":447},"2026-01-19",0.93559,{"date":449,"score":384,"percentile":444},"2026-01-20",{"date":451,"score":384,"percentile":452},"2026-01-21",0.93564,{"date":454,"score":384,"percentile":455},"2026-01-22",0.93567,{"date":457,"score":384,"percentile":458},"2026-01-23",0.9357,{"date":460,"score":384,"percentile":461},"2026-01-24",0.93574,{"date":463,"score":384,"percentile":464},"2026-01-25",0.93576,{"date":466,"score":384,"percentile":402},"2026-01-26",{"date":468,"score":384,"percentile":402},"2026-01-27",{"date":470,"score":384,"percentile":471},"2026-01-28",0.93582,{"date":473,"score":384,"percentile":474},"2026-01-29",0.93583,{"date":476,"score":384,"percentile":471},"2026-01-30",{"date":478,"score":384,"percentile":479},"2026-01-31",0.93585,{"date":481,"score":384,"percentile":482},"2026-02-01",0.93619,[484,489,491],{"source":176,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":485,"cvss_v4_0":9},{"baseScore":174,"baseSeverity":486,"vectorString":177,"impactScore":487,"exploitabilityScore":488},"MEDIUM",4.5,7.2,{"source":182,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":490,"cvss_v4_0":9},{"baseScore":174,"baseSeverity":486,"vectorString":177,"impactScore":487,"exploitabilityScore":488},{"source":183,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":492,"cvss_v4_0":9},{"baseScore":174,"baseSeverity":9,"vectorString":177,"impactScore":487,"exploitabilityScore":488},[494,507,514],{"ecosystem":9,"name":495,"vendor":496,"product":497,"cpe_part":498,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":499},"Apache Tomcat","apache software foundation","apache tomcat","a",[500,503,505],{"version":501,"is_range":171,"range_type":176,"version_start":501,"version_start_type":502,"version_end":501,"version_end_type":502,"fixed_in":9},"11.0.0","including",{"version":504,"is_range":171,"range_type":176,"version_start":504,"version_start_type":502,"version_end":504,"version_end_type":502,"fixed_in":9},"10.1.31",{"version":506,"is_range":171,"range_type":176,"version_start":506,"version_start_type":502,"version_end":506,"version_end_type":502,"fixed_in":9},"9.0.96",{"ecosystem":9,"name":508,"vendor":9,"product":508,"cpe_part":9,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":509},"Tomcat",[510,512,513],{"version":506,"is_range":171,"range_type":511,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"cpe",{"version":504,"is_range":171,"range_type":511,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"version":501,"is_range":171,"range_type":511,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"ecosystem":515,"name":516,"vendor":517,"product":518,"cpe_part":9,"purl_type":519,"purl_namespace":517,"purl_name":518,"source":9,"versions":520},"Maven","org.apache.tomcat:tomcat-jasper","org.apache.tomcat","tomcat-jasper","maven",[521,527,530],{"version":522,"is_range":523,"range_type":524,"version_start":501,"version_start_type":502,"version_end":525,"version_end_type":526,"fixed_in":9},"gte11_0_0_lt11_0_1",true,"ecosystem","11.0.1","excluding",{"version":528,"is_range":523,"range_type":524,"version_start":504,"version_start_type":502,"version_end":529,"version_end_type":526,"fixed_in":9},"gte10_1_31_lt10_1_32","10.1.32",{"version":531,"is_range":523,"range_type":524,"version_start":506,"version_start_type":502,"version_end":532,"version_end_type":526,"fixed_in":9},"gte9_0_96_lt9_0_97","9.0.97"]