[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-UBUNTU-CVE-2021-25329":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-05T08:55:32.481Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":11,"aliases":12,"duplicate_of":9,"upstream":13,"downstream":16,"duplicates":21,"related":22,"reserved_at":9,"published_at":25,"modified_at":26,"state":9,"summary":27,"references_raw":29,"kevs":81,"epss":9,"epss_history":82,"metrics":83,"affected":89},"UBUNTU-CVE-2021-25329","The fix for CVE-2020-9484 was incomplete. When using Apache Tomcat 10.0.0-M1 to 10.0.0, 9.0.0.M1 to 9.0.41, 8.5.0 to 8.5.61 or 7.0.0. to 7.0.107 with a configuration edge case that was highly unlikely to be used, the Tomcat instance was still vulnerable to CVE-2020-9494. Note that both the previously published prerequisites for CVE-2020-9484 and the previously published mitigations for CVE-2020-9484 also apply to this issue.",null,[],[],[],[14],{"_key":15},"CVE-2021-25329",[17,19],{"_key":18},"USN-5360-1",{"_key":20},"USN-6908-1",[],[23,24],{"_key":18},{"_key":20},"2021-03-01T12:15:00Z","2026-06-04T12:45:15.944993842Z",{"cisa_kev":28,"cisa_ransomware":28,"cisa_vendor":9,"epss_severity":9,"epss_score":9,"severity":9,"severity_score":9,"severity_version":9,"severity_source":9,"severity_vector":9,"severity_status":9},false,[30,36,40,44,48,52,56,60,64,68,73,77],{"url":31,"sources":32,"tags":34},"https://ubuntu.com/security/CVE-2021-25329",[33],"osv_ubuntu",[35],"REPORT",{"url":37,"sources":38,"tags":39},"https://www.openwall.com/lists/oss-security/2021/03/01/2",[33],[35],{"url":41,"sources":42,"tags":43},"http://www.openwall.com/lists/oss-security/2021/03/01/2",[33],[35],{"url":45,"sources":46,"tags":47},"https://lists.apache.org/thread.html/rf6d5d57b114678d8898005faef31e9fd6d7c981fcc4ccfc3bc272fc9@%3Cdev.tomcat.apache.org%3E",[33],[35],{"url":49,"sources":50,"tags":51},"https://lists.apache.org/thread.html/rfe62fbf9d4c314f166fe8c668e50e5d9dd882a99447f26f0367474bf%40%3Cannounce.tomcat.apache.org%3E",[33],[35],{"url":53,"sources":54,"tags":55},"https://lists.apache.org/thread.html/rfe62fbf9d4c314f166fe8c668e50e5d9dd882a99447f26f0367474bf@%3Cannounce.apache.org%3E",[33],[35],{"url":57,"sources":58,"tags":59},"https://lists.apache.org/thread.html/rfe62fbf9d4c314f166fe8c668e50e5d9dd882a99447f26f0367474bf@%3Cannounce.tomcat.apache.org%3E",[33],[35],{"url":61,"sources":62,"tags":63},"https://lists.apache.org/thread.html/rfe62fbf9d4c314f166fe8c668e50e5d9dd882a99447f26f0367474bf@%3Cdev.tomcat.apache.org%3E",[33],[35],{"url":65,"sources":66,"tags":67},"https://lists.apache.org/thread.html/rfe62fbf9d4c314f166fe8c668e50e5d9dd882a99447f26f0367474bf@%3Cusers.tomcat.apache.org%3E",[33],[35],{"url":69,"sources":70,"tags":71},"https://ubuntu.com/security/notices/USN-5360-1",[33],[72],"Advisory",{"url":74,"sources":75,"tags":76},"https://www.cve.org/CVERecord?id=CVE-2021-25329",[33],[35],{"url":78,"sources":79,"tags":80},"https://ubuntu.com/security/notices/USN-6908-1",[33],[72],[],[],[84],{"source":33,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":85,"cvss_v4_0":9},{"baseScore":4,"baseSeverity":9,"vectorString":86,"impactScore":87,"exploitabilityScore":88},"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",9.8,2.6,[90,101,114,118],{"ecosystem":91,"name":92,"vendor":93,"product":92,"cpe_part":9,"purl_type":94,"purl_namespace":93,"purl_name":92,"source":9,"versions":95},"Ubuntu","tomcat6","ubuntu","deb",[96,100],{"version":97,"is_range":98,"range_type":99,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"all",true,"ecosystem",{"version":97,"is_range":98,"range_type":99,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"ecosystem":91,"name":102,"vendor":93,"product":102,"cpe_part":9,"purl_type":94,"purl_namespace":93,"purl_name":102,"source":9,"versions":103},"tomcat7",[104,108,111],{"version":105,"is_range":98,"range_type":99,"version_start":9,"version_start_type":9,"version_end":106,"version_end_type":107,"fixed_in":9},"lt7_0_52_1ubuntu0_16+esm1","7.0.52-1ubuntu0.16+esm1","excluding",{"version":109,"is_range":98,"range_type":99,"version_start":9,"version_start_type":9,"version_end":110,"version_end_type":107,"fixed_in":9},"lt7_0_68_1ubuntu0_4+esm2","7.0.68-1ubuntu0.4+esm2",{"version":112,"is_range":98,"range_type":99,"version_start":9,"version_start_type":9,"version_end":113,"version_end_type":107,"fixed_in":9},"lt7_0_78_1ubuntu0_1~esm1","7.0.78-1ubuntu0.1~esm1",{"ecosystem":91,"name":115,"vendor":93,"product":115,"cpe_part":9,"purl_type":94,"purl_namespace":93,"purl_name":115,"source":9,"versions":116},"tomcat8",[117],{"version":97,"is_range":98,"range_type":99,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"ecosystem":91,"name":119,"vendor":93,"product":119,"cpe_part":9,"purl_type":94,"purl_namespace":93,"purl_name":119,"source":9,"versions":120},"tomcat9",[121,124],{"version":122,"is_range":98,"range_type":99,"version_start":9,"version_start_type":9,"version_end":123,"version_end_type":107,"fixed_in":9},"lt9_0_16_3ubuntu0_18_04_2","9.0.16-3ubuntu0.18.04.2",{"version":125,"is_range":98,"range_type":99,"version_start":9,"version_start_type":9,"version_end":126,"version_end_type":107,"fixed_in":9},"lt9_0_31_1ubuntu0_2","9.0.31-1ubuntu0.2"]