How should we interpret CVSS severity scores?

CVSS estimates technical severity, but it does not automatically equal business risk. Prioritize using context like internet exposure, asset criticality, known exploitation, and whether compensating controls exist. A Medium CVSS on an exposed production system can be more urgent than a Critical on an isolated non-production host.

Vulnerability Database

Q: What is a Vulnerability (CVE) and why does it matter?

A security vulnerability is a weakness in software, hardware, or configuration that can be exploited to compromise confidentiality, integrity, or availability. Many vulnerabilities are tracked as CVEs (Common Vulnerabilities and Exposures), which provide a standardized identifier so teams can coordinate patching, mitigation, and risk assessment across tools and vendors.

Q: What's the difference between a vulnerability, an exploit, and a zero-day?

A vulnerability is the underlying weakness. An exploit is the method or code used to take advantage of it. A zero-day is a vulnerability that is unknown to the vendor or has no publicly available fix when attackers begin using it. Risk increases sharply when exploitation becomes reliable or widespread.

Q: Why do vulnerabilities keep reappearing in our environment?

Recurring findings usually come from incomplete asset discovery, inconsistent patch management, inherited images, and configuration drift. In modern environments, you also need to watch the software supply chain: dependencies, containers, build pipelines, and third-party services can reintroduce the same weakness even after you patch a single host.

Q: How do we prioritize remediation without burning out the team?

Use a repeatable triage model: focus first on externally exposed assets, high-value systems (identity, VPN, email, production), vulnerabilities with known exploits, and issues that enable remote code execution or privilege escalation. Then enforce patch SLAs and track progress so remediation is steady, not reactive.

Q: How can SynScan help reduce vulnerability risk over time?

SynScan combines attack surface monitoring and continuous security auditing to keep your inventory current, flag high-impact vulnerabilities early, and help you turn raw findings into a practical remediation plan.

346,350

Total vulnerabilities in the database

Vulnerabilities for products matching "tomcat"

Found 2 matching products. Filters apply to all results.

You can search for specific versions with /product/tomcat/1.2.3

apache / tomcat

8879 vulnerabilities found

Title	Severity	Date	Affected Version
CVE-2023-44487	High	October 10, 2023 10/10/23	== 11.0.0-milestone1 == 11.0.0-milestone2 == 11.0.0-milestone4 == 11.0.0-milestone3 == 11.0.0-milestone5 == 11.0.0-milestone7 == 11.0.0-milestone8 == 11.0.0-milestone9 == 11.0.0-milestone10 == 11.0.0-milestone6 == 11.0.0-milestone11 >= 9.0.0 <= 9.0.80 >= 8.5.0 <= 8.5.93 >= 10.1.0 <= 10.1.13
CVE-2023-41080	Medium	August 25, 2023 8/25/23	== 11.0.0-milestone1 == 11.0.0-milestone2 == 11.0.0-milestone4 == 11.0.0-milestone3 == 11.0.0-milestone5 == 11.0.0-milestone7 == 11.0.0-milestone8 == 11.0.0-milestone9 == 11.0.0-milestone10 >= 10.1.0 <= 10.1.12 >= 8.5.0 <= 8.5.92 >= 9.0.0 <= 9.0.79 == 11.0.0-milestone6
CVE-2023-34981	High	June 21, 2023 6/21/23	== 10.1.8 == 9.0.74 == 8.5.88 == 11.0.0-milestone5
CVE-2023-28709	High	May 22, 2023 5/22/23	== 11.0.0-milestone2 == 11.0.0-milestone4 == 11.0.0-milestone3 >= 10.1.5 <= 10.1.7 >= 9.0.71 <= 9.0.73 >= 8.5.85 <= 8.5.87
CVE-2023-28708	Low	March 22, 2023 3/22/23	== 11.0.0-milestone1 >= 10.1.0.x < 10.1.6 >= 9.0.0.x < 9.0.72 >= 8.5.0 < 8.5.86 == 11.0.0-milestone2
CVE-2022-45143	High	January 3, 2023 1/3/23	== 10.1.0-milestone3 == 10.1.0-milestone4 == 10.1.0-milestone5 == 10.1.0-milestone1 == 10.1.0-milestone2 == 10.1.0-milestone7 == 10.1.0-milestone8 == 10.1.0-milestone9 == 10.1.0-milestone6 == 10.1.0-milestone10 == 10.1.0-milestone11 == 10.1.0-milestone12 == 10.1.0-milestone13 == 10.1.0-milestone14 == 10.1.0-milestone16 == 10.1.0-milestone15 == 10.1.0-milestone17 == 10.1.1 >= 9.0.40 < 9.0.69 == 8.5.83
CVE-2022-42252	High	November 1, 2022 11/1/22	>= 10.1.0 < 10.1.1 >= 10.0.0 < 10.0.27 >= 9.0.0 < 9.0.68 >= 8.5.0 < 8.5.83
CVE-2021-43980	Low	September 28, 2022 9/28/22	== 10.1.0-milestone3 == 10.1.0-milestone4 == 10.1.0-milestone5 == 10.1.0-milestone1 == 10.1.0-milestone2 == 10.1.0-milestone7 == 10.1.0-milestone8 == 10.1.0-milestone9 == 10.1.0-milestone6 == 10.1.0-milestone10 == 10.1.0-milestone11 == 10.1.0-milestone12 >= 8.5.0 <= 8.5.77 >= 9.0.0 <= 9.0.60 >= 10.0.0 <= 10.0.18
CVE-2022-34305	Medium	June 23, 2022 6/23/22	== 10.1.0-milestone3 == 10.1.0-milestone4 == 10.1.0-milestone5 == 10.1.0-milestone1 == 10.1.0-milestone2 == 10.1.0-milestone7 == 10.1.0-milestone8 == 10.1.0-milestone9 == 10.1.0-milestone6 == 10.1.0-milestone10 == 10.1.0-milestone11 == 10.1.0-milestone12 == 10.1.0-milestone13 == 10.1.0-milestone14 == 10.1.0-milestone16 == 10.1.0-milestone15 >= 9.0.30 <= 9.0.64 >= 8.5.50 <= 8.5.81 >= 10.0.0 <= 10.0.22
CVE-2022-25762	High	May 13, 2022 5/13/22	>= 9.0.0 < 9.0.21 >= 8.5.0 < 8.5.76
CVE-2022-29885	High	May 12, 2022 5/12/22	== 10.1.0-milestone3 == 10.1.0-milestone4 == 10.1.0-milestone5 == 10.1.0-milestone1 == 10.1.0-milestone2 == 10.1.0-milestone7 == 10.1.0-milestone8 == 10.1.0-milestone9 == 10.1.0-milestone6 == 10.1.0-milestone10 == 10.1.0-milestone11 == 10.1.0-milestone12 == 10.1.0-milestone13 == 10.1.0-milestone14 >= 10.0.0 <= 10.0.20 >= 9.0.13 <= 9.0.62 >= 8.5.38 <= 8.5.78
CVE-2022-23181	High	January 27, 2022 1/27/22	== 10.0.0-milestone5 == 10.0.0-milestone6 == 10.0.0-milestone7 == 10.0.0-milestone8 == 10.0.0-milestone9 == 10.0.0-milestone10 == 10.1.0-milestone3 == 10.1.0-milestone4 == 10.1.0-milestone5 == 10.1.0-milestone1 == 10.1.0-milestone2 == 10.1.0-milestone7 == 10.1.0-milestone8 == 10.1.0-milestone6 >= 8.5.55 <= 8.5.73 >= 9.0.35 <= 9.0.56 >= 10.0.1 <= 10.0.14
CVE-2021-42340	High	October 14, 2021 10/14/21	== 10.0.0-milestone10 == 10.1.0-milestone3 == 10.1.0-milestone4 == 10.1.0-milestone5 == 10.1.0-milestone1 == 10.1.0-milestone2 >= 10.0.1 < 10.0.12 >= 8.5.60 < 8.5.72 >= 9.0.40 < 9.0.54
CVE-2021-41079	High	September 16, 2021 9/16/21	>= 10.0.0 <= 10.0.2 >= 9.0.0 < 9.0.44 >= 8.5.0 < 8.5.64
CVE-2021-30639	High	July 12, 2021 7/12/21	== 10.0.4 == 9.0.44 == 10.0.3 == 8.5.64
CVE-2021-30640	Medium	July 12, 2021 7/12/21	>= 10.0.0 < 10.0.6 >= 9.0.0 < 9.0.46 >= 7.0.0 < 7.0.109 >= 8.5.0 < 8.5.66
CVE-2021-33037	Medium	July 12, 2021 7/12/21	>= 9.0.0.x <= 9.0.46 >= 10.0.0.x <= 10.0.6 >= 8.5.0 <= 8.5.66
CVE-2021-25329	High	March 1, 2021 3/1/21	== 9.0.0-milestone1 == 9.0.0-milestone10 == 9.0.0-milestone11 == 9.0.0-milestone12 == 9.0.0-milestone13 == 9.0.0-milestone14 == 9.0.0-milestone15 == 9.0.0-milestone16 == 9.0.0-milestone17 == 9.0.0-milestone18 == 9.0.0-milestone19 == 9.0.0-milestone2 == 9.0.0-milestone20 == 9.0.0-milestone21 == 9.0.0-milestone22 == 9.0.0-milestone23 == 9.0.0-milestone24 == 9.0.0-milestone25 == 9.0.0-milestone26 == 9.0.0-milestone27 == 9.0.0-milestone3 == 9.0.0-milestone4 == 9.0.0-milestone5 == 9.0.0-milestone6 == 9.0.0-milestone7 == 9.0.0-milestone8 == 9.0.0-milestone9 == 10.0.0-milestone3 == 10.0.0-milestone4 == 10.0.0-milestone2 == 10.0.0-milestone1 == 10.0.0-milestone5 == 10.0.0-milestone6 == 10.0.0-milestone7 == 10.0.0-milestone8 == 10.0.0-milestone9 >= 9.0.0 <= 9.0.41 >= 8.5.0 <= 8.5.61 == 10.0.0-milestone10 == 10.0.0 >= 7.0.0 <= 7.0.107
CVE-2021-25122	High	March 1, 2021 3/1/21	== 9.0.0-milestone1 == 9.0.0-milestone10 == 9.0.0-milestone11 == 9.0.0-milestone12 == 9.0.0-milestone13 == 9.0.0-milestone14 == 9.0.0-milestone15 == 9.0.0-milestone16 == 9.0.0-milestone17 == 9.0.0-milestone18 == 9.0.0-milestone19 == 9.0.0-milestone2 == 9.0.0-milestone20 == 9.0.0-milestone21 == 9.0.0-milestone22 == 9.0.0-milestone23 == 9.0.0-milestone24 == 9.0.0-milestone25 == 9.0.0-milestone26 == 9.0.0-milestone27 == 9.0.0-milestone3 == 9.0.0-milestone4 == 9.0.0-milestone5 == 10.0.0-milestone3 == 10.0.0-milestone4 == 10.0.0-milestone2 == 10.0.0-milestone1 == 10.0.0-milestone5 == 10.0.0-milestone6 == 10.0.0-milestone7 == 10.0.0-milestone8 == 10.0.0-milestone9 >= 9.0.0 <= 9.0.41 >= 8.5.0 <= 8.5.61 == 10.0.0-milestone10 == 10.0.0
CVE-2021-24122	Medium	January 14, 2021 1/14/21	== 9.0.0-milestone1 == 9.0.0-milestone10 == 9.0.0-milestone11 == 9.0.0-milestone12 == 9.0.0-milestone13 == 9.0.0-milestone14 == 9.0.0-milestone15 == 9.0.0-milestone16 == 9.0.0-milestone17 == 9.0.0-milestone18 == 9.0.0-milestone19 == 9.0.0-milestone2 == 9.0.0-milestone20 == 9.0.0-milestone21 == 9.0.0-milestone22 == 9.0.0-milestone23 == 9.0.0-milestone24 == 9.0.0-milestone25 == 9.0.0-milestone26 == 9.0.0-milestone27 == 9.0.0-milestone3 == 9.0.0-milestone4 == 9.0.0-milestone5 == 9.0.0-milestone6 == 9.0.0-milestone7 == 9.0.0-milestone8 == 9.0.0-milestone9 == 10.0.0-milestone3 == 10.0.0-milestone4 == 10.0.0-milestone2 == 10.0.0-milestone1 == 10.0.0-milestone5 == 10.0.0-milestone6 == 10.0.0-milestone7 >= 8.5.0 <= 8.5.59 == 10.0.0-milestone8 == 10.0.0-milestone9 >= 9.0.1 <= 9.0.39 >= 7.0.0 <= 7.0.106
CVE-2020-17527	High	December 3, 2020 12/3/20	== 9.0.0-milestone10 == 9.0.0-milestone11 == 9.0.0-milestone12 == 9.0.0-milestone13 == 9.0.0-milestone14 == 9.0.0-milestone15 == 9.0.0-milestone16 == 9.0.0-milestone17 == 9.0.0-milestone18 == 9.0.0-milestone19 == 9.0.0-milestone20 == 9.0.0-milestone21 == 9.0.0-milestone22 == 9.0.0-milestone23 == 9.0.0-milestone24 == 9.0.0-milestone25 == 9.0.0-milestone26 == 9.0.0-milestone27 == 9.0.0-milestone5 == 9.0.0-milestone6 == 9.0.0-milestone7 == 9.0.0-milestone8 == 9.0.0-milestone9 == 10.0.0-milestone3 == 10.0.0-milestone4 == 10.0.0-milestone2 == 10.0.0-milestone1 == 10.0.0-milestone5 == 10.0.0-milestone6 == 9.0.36 == 9.0.37 == 9.0.38 == 9.0.39 == 10.0.0-milestone7 == 10.0.0-milestone8 == 10.0.0-milestone9 == 9.0.35-3.39.1 == 9.0.35-3.57.3 >= 9.0.1 <= 9.0.35 >= 8.5.1 <= 8.5.59
CVE-2020-13943	Low	October 12, 2020 10/12/20	== 8.5.2 == 8.5.9 == 8.5.4 == 8.5.0 == 8.5.15 == 8.5.10 == 8.5.13 == 8.5.14 == 8.5.5 == 8.5.3 == 8.5.6 == 8.5.7 == 8.5.8 == 8.5.12 == 8.5.11 == 8.5.1 == 8.5.16 == 8.5.17 == 8.5.18 == 8.5.19 == 8.5.20 == 8.5.21 == 8.5.22 == 9.0.1 == 9.0.2 == 9.0.3 == 9.0.4 == 9.0.0-milestone10 == 9.0.0-milestone11 == 9.0.0-milestone12 == 9.0.0-milestone13 == 9.0.0-milestone14 == 9.0.0-milestone15 == 9.0.0-milestone16 == 9.0.0-milestone17 == 9.0.0-milestone18 == 9.0.0-milestone19 == 9.0.0-milestone20 == 9.0.0-milestone21 == 9.0.0-milestone22 == 9.0.0-milestone23 == 9.0.0-milestone24 == 9.0.0-milestone25 == 9.0.0-milestone26 == 9.0.0-milestone27 == 9.0.0-milestone5 == 9.0.0-milestone6 == 9.0.0-milestone7 == 9.0.0-milestone8 == 9.0.0-milestone9 == 10.0.0-milestone3 == 10.0.0-milestone4 == 10.0.0-milestone2 == 10.0.0-milestone1 == 10.0.0-milestone5 == 10.0.0-milestone6 == 9.0.5 == 9.0.6 == 9.0.7 == 9.0.8 == 9.0.9 == 9.0.10 == 9.0.11 == 9.0.12 == 9.0.13 == 9.0.14 == 9.0.15 == 9.0.16 == 9.0.17 == 9.0.18 == 9.0.19 == 9.0.20 == 9.0.21 == 9.0.22 == 9.0.23 == 9.0.24 == 9.0.25 == 9.0.26 == 9.0.27 == 9.0.28 == 9.0.29 == 9.0.30 == 9.0.31 == 9.0.32 == 9.0.33 == 9.0.34 == 9.0.35 == 9.0.36 == 9.0.37 == 10.0.0-milestone7 == 8.5.23 == 8.5.24 == 8.5.25 == 8.5.26 == 8.5.27 == 8.5.28 == 8.5.29 == 8.5.30 == 8.5.31 == 8.5.32 == 8.5.33 == 8.5.34 == 8.5.35 == 8.5.36 == 8.5.37 == 8.5.38 == 8.5.39 == 8.5.40 == 8.5.41 == 8.5.42 == 8.5.43 == 8.5.44 == 8.5.45 == 8.5.46 == 8.5.47 == 8.5.48 == 8.5.49 == 8.5.50 == 8.5.51 == 8.5.52 == 8.5.53 == 8.5.54 == 8.5.55 == 8.5.56 == 8.5.57
CVE-2020-13934	High	July 14, 2020 7/14/20	== 9.0.0-milestone10 == 9.0.0-milestone11 == 9.0.0-milestone12 == 9.0.0-milestone13 == 9.0.0-milestone14 == 9.0.0-milestone15 == 9.0.0-milestone16 == 9.0.0-milestone17 == 9.0.0-milestone18 == 9.0.0-milestone19 == 9.0.0-milestone20 == 9.0.0-milestone21 == 9.0.0-milestone22 == 9.0.0-milestone23 == 9.0.0-milestone24 == 9.0.0-milestone25 == 9.0.0-milestone26 == 9.0.0-milestone27 == 9.0.0-milestone5 == 9.0.0-milestone6 == 9.0.0-milestone7 == 9.0.0-milestone8 == 9.0.0-milestone9 == 10.0.0-milestone3 == 10.0.0-milestone4 == 10.0.0-milestone2 == 10.0.0-milestone1 == 10.0.0-milestone5 == 10.0.0-milestone6 >= 9.0.1 <= 9.0.36 >= 8.5.1 <= 8.5.56
CVE-2020-13935	High	July 14, 2020 7/14/20	== 9.0.0-milestone1 == 9.0.0-milestone10 == 9.0.0-milestone11 == 9.0.0-milestone12 == 9.0.0-milestone13 == 9.0.0-milestone14 == 9.0.0-milestone15 == 9.0.0-milestone16 == 9.0.0-milestone17 == 9.0.0-milestone18 == 9.0.0-milestone19 == 9.0.0-milestone2 == 9.0.0-milestone20 == 9.0.0-milestone21 == 9.0.0-milestone22 == 9.0.0-milestone23 == 9.0.0-milestone24 == 9.0.0-milestone25 == 9.0.0-milestone26 == 9.0.0-milestone27 == 9.0.0-milestone3 == 9.0.0-milestone4 == 9.0.0-milestone5 == 9.0.0-milestone6 == 9.0.0-milestone7 == 9.0.0-milestone8 == 9.0.0-milestone9 == 10.0.0-milestone3 == 10.0.0-milestone4 == 10.0.0-milestone2 == 10.0.0-milestone1 == 10.0.0-milestone5 == 10.0.0-milestone6 >= 9.0.1 <= 9.0.36 >= 7.0.27 <= 7.0.104 >= 8.5.0 <= 8.5.56
CVE-2020-8022	High	June 29, 2020 6/29/20	< 8.0.53-29.32.1 < 9.0.35-3.39.1 < 9.0.35-3.57.3
CVE-2020-11996	High	June 26, 2020 6/26/20	== 9.0.0-milestone1 == 9.0.0-milestone10 == 9.0.0-milestone11 == 9.0.0-milestone12 == 9.0.0-milestone13 == 9.0.0-milestone14 == 9.0.0-milestone15 == 9.0.0-milestone16 == 9.0.0-milestone17 == 9.0.0-milestone18 == 9.0.0-milestone19 == 9.0.0-milestone2 == 9.0.0-milestone20 == 9.0.0-milestone21 == 9.0.0-milestone22 == 9.0.0-milestone23 == 9.0.0-milestone24 == 9.0.0-milestone25 == 9.0.0-milestone26 == 9.0.0-milestone27 == 9.0.0-milestone3 == 9.0.0-milestone4 == 9.0.0-milestone5 == 9.0.0-milestone6 == 9.0.0-milestone7 == 9.0.0-milestone8 == 9.0.0-milestone9 == 10.0.0-milestone3 == 10.0.0-milestone4 == 10.0.0-milestone2 == 10.0.0-milestone1 == 10.0.0-milestone5 >= 9.0.0 <= 9.0.35 >= 8.5.0 <= 8.5.55
CVE-2020-9484	High	May 20, 2020 5/20/20	== 9.0.0-milestone1 == 9.0.0-milestone10 == 9.0.0-milestone11 == 9.0.0-milestone12 == 9.0.0-milestone13 == 9.0.0-milestone14 == 9.0.0-milestone15 == 9.0.0-milestone16 == 9.0.0-milestone17 == 9.0.0-milestone18 == 9.0.0-milestone19 == 9.0.0-milestone2 == 9.0.0-milestone20 == 9.0.0-milestone21 == 9.0.0-milestone22 == 9.0.0-milestone23 == 9.0.0-milestone24 == 9.0.0-milestone25 == 9.0.0-milestone26 == 9.0.0-milestone27 == 9.0.0-milestone3 == 9.0.0-milestone4 == 9.0.0-milestone5 == 9.0.0-milestone6 == 9.0.0-milestone7 == 9.0.0-milestone8 == 9.0.0-milestone9 == 10.0.0-milestone3 == 10.0.0-milestone4 == 10.0.0-milestone2 == 10.0.0-milestone1 >= 7.0.0 < 7.0.108 >= 8.5.0 < 8.5.63 >= 9.0.1 < 9.0.43
CVE-2020-1938	Critical	February 24, 2020 2/24/20	>= 9.0.0 < 9.0.31 >= 7.0.0 < 7.0.100 >= 8.5.0 < 8.5.51
CVE-2019-17569	Low	February 24, 2020 2/24/20	>= 8.5.48 <= 8.5.50 >= 7.0.98 <= 7.0.99 >= 9.0.28 <= 9.0.30
CVE-2020-1935	Low	February 24, 2020 2/24/20	== 9.0.0-milestone1 == 9.0.0-milestone10 == 9.0.0-milestone11 == 9.0.0-milestone12 == 9.0.0-milestone13 == 9.0.0-milestone14 == 9.0.0-milestone15 == 9.0.0-milestone16 == 9.0.0-milestone17 == 9.0.0-milestone18 == 9.0.0-milestone19 == 9.0.0-milestone2 == 9.0.0-milestone20 == 9.0.0-milestone21 == 9.0.0-milestone22 == 9.0.0-milestone23 == 9.0.0-milestone24 == 9.0.0-milestone25 == 9.0.0-milestone26 == 9.0.0-milestone27 == 9.0.0-milestone3 == 9.0.0-milestone4 == 9.0.0-milestone5 == 9.0.0-milestone6 == 9.0.0-milestone7 == 9.0.0-milestone8 == 9.0.0-milestone9 >= 7.0.0 <= 7.0.99 >= 8.5.0 <= 8.5.50 >= 9.0.0 <= 9.0.30 == 9.0.0
CVE-2019-12418	High	December 23, 2019 12/23/19	>= 7.0.0 <= 7.0.97 >= 8.5.0 <= 8.5.47 >= 9.0.0 <= 9.0.28
CVE-2019-17563	High	December 23, 2019 12/23/19	>= 7.0.0 <= 7.0.98 >= 8.5.0 <= 8.5.49 >= 9.0.0 <= 9.0.29
CVE-2019-10072	Medium	June 21, 2019 6/21/19	>= 8.5.0 <= 8.5.40 >= 9.0.1 <= 9.0.19 == 9.0.0-milestone1 == 9.0.0-milestone10 == 9.0.0-milestone11 == 9.0.0-milestone12 == 9.0.0-milestone13 == 9.0.0-milestone14 == 9.0.0-milestone15 == 9.0.0-milestone16 == 9.0.0-milestone17 == 9.0.0-milestone18 == 9.0.0-milestone19 == 9.0.0-milestone2 == 9.0.0-milestone20 == 9.0.0-milestone21 == 9.0.0-milestone22 == 9.0.0-milestone23 == 9.0.0-milestone24 == 9.0.0-milestone25 == 9.0.0-milestone26 == 9.0.0-milestone27 == 9.0.0-milestone3 == 9.0.0-milestone4 == 9.0.0-milestone5 == 9.0.0-milestone6 == 9.0.0-milestone7 == 9.0.0-milestone8 == 9.0.0-milestone9
CVE-2019-0221	Low	May 28, 2019 5/28/19	>= 9.0.1 <= 9.0.17 >= 8.5.0 <= 8.5.39 >= 7.0.0 <= 7.0.93 == 9.0.0-milestone1 == 9.0.0-milestone10 == 9.0.0-milestone11 == 9.0.0-milestone12 == 9.0.0-milestone13 == 9.0.0-milestone14 == 9.0.0-milestone15 == 9.0.0-milestone16 == 9.0.0-milestone17 == 9.0.0-milestone18 == 9.0.0-milestone19 == 9.0.0-milestone2 == 9.0.0-milestone20 == 9.0.0-milestone21 == 9.0.0-milestone22 == 9.0.0-milestone23 == 9.0.0-milestone24 == 9.0.0-milestone25 == 9.0.0-milestone26 == 9.0.0-milestone27 == 9.0.0-milestone3 == 9.0.0-milestone4 == 9.0.0-milestone5 == 9.0.0-milestone6 == 9.0.0-milestone7 == 9.0.0-milestone8 == 9.0.0-milestone9
CVE-2019-2684	Medium	April 23, 2019 4/23/19	>= 7.0.0 <= 7.0.97 >= 8.5.0 <= 8.5.47 == 9.0.0-milestone1 == 9.0.0-milestone10 == 9.0.0-milestone11 == 9.0.0-milestone12 == 9.0.0-milestone13 == 9.0.0-milestone14 == 9.0.0-milestone15 == 9.0.0-milestone16 == 9.0.0-milestone17 == 9.0.0-milestone18 == 9.0.0-milestone19 == 9.0.0-milestone2 == 9.0.0-milestone20 == 9.0.0-milestone21 == 9.0.0-milestone22 == 9.0.0-milestone23 == 9.0.0-milestone24 == 9.0.0-milestone25 == 9.0.0-milestone26 == 9.0.0-milestone27 == 9.0.0-milestone3 == 9.0.0-milestone4 == 9.0.0-milestone5 == 9.0.0-milestone6 == 9.0.0-milestone7 == 9.0.0-milestone8 == 9.0.0-milestone9 >= 9.0.1 <= 9.0.28
CVE-2019-0232	High	April 15, 2019 4/15/19	>= 7.0.0 <= 7.0.93 >= 8.5.0 <= 8.5.39 >= 9.0.1 <= 9.0.17 == 9.0.0-milestone1 == 9.0.0-milestone10 == 9.0.0-milestone11 == 9.0.0-milestone12 == 9.0.0-milestone13 == 9.0.0-milestone14 == 9.0.0-milestone15 == 9.0.0-milestone16 == 9.0.0-milestone17 == 9.0.0-milestone18 == 9.0.0-milestone19 == 9.0.0-milestone2 == 9.0.0-milestone20 == 9.0.0-milestone21 == 9.0.0-milestone22 == 9.0.0-milestone23 == 9.0.0-milestone24 == 9.0.0-milestone25 == 9.0.0-milestone26 == 9.0.0-milestone3 == 9.0.0-milestone4 == 9.0.0-milestone5 == 9.0.0-milestone6 == 9.0.0-milestone7 == 9.0.0-milestone8 == 9.0.0-milestone9
CVE-2019-0199	Medium	April 10, 2019 4/10/19	>= 9.0.1 <= 9.0.14 >= 8.5.0 <= 8.5.37 == 9.0.0-milestone1 == 9.0.0-milestone10 == 9.0.0-milestone11 == 9.0.0-milestone12 == 9.0.0-milestone13 == 9.0.0-milestone14 == 9.0.0-milestone15 == 9.0.0-milestone16 == 9.0.0-milestone17 == 9.0.0-milestone18 == 9.0.0-milestone19 == 9.0.0-milestone2 == 9.0.0-milestone20 == 9.0.0-milestone21 == 9.0.0-milestone3 == 9.0.0-milestone4 == 9.0.0-milestone5 == 9.0.0-milestone6 == 9.0.0-milestone7 == 9.0.0-milestone8 == 9.0.0-milestone9
CVE-2018-11784	Low	October 4, 2018 10/4/18	== 9.0.0 >= 7.0.23 <= 7.0.90 >= 8.5.0 <= 8.5.33 >= 9.0.1 <= 9.0.11 == 9.0.0-milestone1 == 9.0.0-milestone10 == 9.0.0-milestone11 == 9.0.0-milestone12 == 9.0.0-milestone13 == 9.0.0-milestone14 == 9.0.0-milestone15 == 9.0.0-milestone16 == 9.0.0-milestone17 == 9.0.0-milestone18 == 9.0.0-milestone19 == 9.0.0-milestone2 == 9.0.0-milestone20 == 9.0.0-milestone21 == 9.0.0-milestone22 == 9.0.0-milestone23 == 9.0.0-milestone24 == 9.0.0-milestone25 == 9.0.0-milestone26 == 9.0.0-milestone27 == 9.0.0-milestone3 == 9.0.0-milestone4 == 9.0.0-milestone5 == 9.0.0-milestone6 == 9.0.0-milestone7 == 9.0.0-milestone8 == 9.0.0-milestone9
CVE-2018-1336	High	August 2, 2018 8/2/18	== 8.0.0-rc6 == 8.0.0-rc9 == 8.0.0-rc7 == 8.0.0-rc3 == 8.0.0-rc2 == 8.0.0-rc1 == 8.0.0-rc8 == 8.0.0-rc10 == 8.0.0-rc5 == 8.0.0-rc4 >= 8.0.0 <= 8.0.51 >= 8.5.0 <= 8.5.30 >= 9.0.1 <= 9.0.7 >= 7.0.28 <= 7.0.86 == 9.0.0-milestone10 == 9.0.0-milestone11 == 9.0.0-milestone12 == 9.0.0-milestone13 == 9.0.0-milestone14 == 9.0.0-milestone15 == 9.0.0-milestone16 == 9.0.0-milestone17 == 9.0.0-milestone18 == 9.0.0-milestone19 == 9.0.0-milestone20 == 9.0.0-milestone21 == 9.0.0-milestone22 == 9.0.0-milestone23 == 9.0.0-milestone24 == 9.0.0-milestone25 == 9.0.0-milestone26 == 9.0.0-milestone27 == 9.0.0-milestone9
CVE-2018-8037	Low	August 2, 2018 8/2/18	== 9.0.0 >= 8.5.5 <= 8.5.31 >= 9.0.1 <= 9.0.9 == 9.0.0-milestone10 == 9.0.0-milestone11 == 9.0.0-milestone12 == 9.0.0-milestone13 == 9.0.0-milestone14 == 9.0.0-milestone15 == 9.0.0-milestone16 == 9.0.0-milestone17 == 9.0.0-milestone18 == 9.0.0-milestone19 == 9.0.0-milestone20 == 9.0.0-milestone21 == 9.0.0-milestone22 == 9.0.0-milestone23 == 9.0.0-milestone24 == 9.0.0-milestone25 == 9.0.0-milestone26 == 9.0.0-milestone27 == 9.0.0-milestone9
CVE-2018-8034	High	August 1, 2018 8/1/18	== 8.0.0-rc6 == 8.0.0-rc9 == 8.0.0-rc7 == 8.0.0-rc3 == 8.0.0-rc2 == 8.0.0-rc1 == 8.0.0-rc8 == 8.0.0-rc10 == 8.0.0-rc5 == 8.0.0-rc4 >= 8.0.0 <= 8.0.52 >= 8.5.0 <= 8.5.31 >= 9.0.1 <= 9.0.9 >= 7.0.35 <= 7.0.88 == 9.0.0-milestone1 == 9.0.0-milestone10 == 9.0.0-milestone11 == 9.0.0-milestone12 == 9.0.0-milestone13 == 9.0.0-milestone14 == 9.0.0-milestone15 == 9.0.0-milestone16 == 9.0.0-milestone17 == 9.0.0-milestone18 == 9.0.0-milestone19 == 9.0.0-milestone2 == 9.0.0-milestone20 == 9.0.0-milestone21 == 9.0.0-milestone22 == 9.0.0-milestone23 == 9.0.0-milestone24 == 9.0.0-milestone25 == 9.0.0-milestone26 == 9.0.0-milestone27 == 9.0.0-milestone3 == 9.0.0-milestone4 == 9.0.0-milestone5 == 9.0.0-milestone6 == 9.0.0-milestone7 == 9.0.0-milestone8 == 9.0.0-milestone9
CVE-2018-8014	High	May 16, 2018 5/16/18	== 8.0.0-rc1 >= 8.0.0 <= 8.0.52 >= 9.0.0 <= 9.0.8 >= 8.5.0 <= 8.5.31 >= 7.0.41 <= 7.0.88 == 9.0.0-milestone1
CVE-2018-1304	Low	February 28, 2018 2/28/18	== 8.0.0-rc1 >= 8.5.0 <= 8.5.27 >= 8.0.0 <= 8.0.49 >= 9.0.0 <= 9.0.4 >= 7.0.0 <= 7.0.84 == 9.0.0-milestone1 == 9.0.0-milestone10 == 9.0.0-milestone11 == 9.0.0-milestone12 == 9.0.0-milestone13 == 9.0.0-milestone14 == 9.0.0-milestone15 == 9.0.0-milestone16 == 9.0.0-milestone17 == 9.0.0-milestone18 == 9.0.0-milestone19 == 9.0.0-milestone2 == 9.0.0-milestone20 == 9.0.0-milestone21 == 9.0.0-milestone22 == 9.0.0-milestone23 == 9.0.0-milestone24 == 9.0.0-milestone25 == 9.0.0-milestone26 == 9.0.0-milestone27 == 9.0.0-milestone3 == 9.0.0-milestone4 == 9.0.0-milestone5 == 9.0.0-milestone6 == 9.0.0-milestone7 == 9.0.0-milestone8 == 9.0.0-milestone9
CVE-2018-1305	Low	February 23, 2018 2/23/18	>= 7.0.0 <= 7.0.84 == 8.0.0-rc3 == 8.0.0-rc1 == 8.0.0-rc10 == 8.0.0-rc5 >= 8.0.0 <= 8.0.49 == 9.0.0 == 9.0.1 == 9.0.2 == 9.0.3 == 9.0.4 >= 8.5.0 <= 8.5.27 == 9.0.0-milestone1 == 9.0.0-milestone10 == 9.0.0-milestone11 == 9.0.0-milestone12 == 9.0.0-milestone13 == 9.0.0-milestone14 == 9.0.0-milestone15 == 9.0.0-milestone16 == 9.0.0-milestone17 == 9.0.0-milestone18 == 9.0.0-milestone19 == 9.0.0-milestone2 == 9.0.0-milestone20 == 9.0.0-milestone21 == 9.0.0-milestone22 == 9.0.0-milestone23 == 9.0.0-milestone24 == 9.0.0-milestone25 == 9.0.0-milestone26 == 9.0.0-milestone27 == 9.0.0-milestone3 == 9.0.0-milestone4 == 9.0.0-milestone5 == 9.0.0-milestone6 == 9.0.0-milestone7 == 9.0.0-milestone8 == 9.0.0-milestone9
CVE-2017-15706	Medium	January 31, 2018 1/31/18	>= 7.0.79 <= 7.0.82 >= 8.5.16 <= 8.5.23 == 9.0.1 >= 8.0.45 <= 8.0.47 == 9.0.0-milestone22 == 9.0.0-milestone25 == 9.0.0-milestone26 == 9.0.0-milestone27 == 9.0.0-milestone3 == 9.0.0-milestone4 == 9.0.0-milestone6 == 9.0.0-milestone8 == 9.0.0-milestone9
CVE-2017-12617	High	October 4, 2017 10/4/17	>= 7.0.0 < 7.0.82 >= 8.0 < 8.0.47 >= 8.5.0 < 8.5.23 >= 9.0.0 < 9.0.1
CVE-2017-12615	High	September 19, 2017 9/19/17	>= 7.0.0 <= 7.0.79
CVE-2017-12616	Medium	September 19, 2017 9/19/17	== 7.0.2-beta == 7.0.49 == 7.0.12 == 7.0.62 == 7.0.20 == 7.0.34 == 7.0.58 == 7.0.8 == 7.0.55 == 7.0.1 == 7.0.2 == 7.0.5 == 7.0.51 == 7.0.4-beta == 7.0.63 == 7.0.22 == 7.0.39 == 7.0.26 == 7.0.46 == 7.0.72 == 7.0.76 == 7.0.71 == 7.0.28 == 7.0.59 == 7.0.65 == 7.0.0 == 7.0.50 == 7.0.6 == 7.0.18 == 7.0.14 == 7.0.48 == 7.0.11 == 7.0.67 == 7.0.74 == 7.0.23 == 7.0.66 == 7.0.0-beta == 7.0.44 == 7.0.69 == 7.0.80 == 7.0.7 == 7.0.42 == 7.0.60 == 7.0.37 == 7.0.29 == 7.0.45 == 7.0.68 == 7.0.13 == 7.0.47 == 7.0.5-beta == 7.0.41 == 7.0.31 == 7.0.30 == 7.0.15 == 7.0.19 == 7.0.75 == 7.0.16 == 7.0.10 == 7.0.36 == 7.0.25 == 7.0.54 == 7.0.35 == 7.0.61 == 7.0.79 == 7.0.57 == 7.0.43 == 7.0.32 == 7.0.38 == 7.0.21 == 7.0.27 == 7.0.24 == 7.0.17 == 7.0.40 == 7.0.9 == 7.0.4 == 7.0.3 == 7.0.77 == 7.0.56 == 7.0.64 == 7.0.70 == 7.0.33 == 7.0.73
CVE-2016-6796	High	August 11, 2017 8/11/17	>= 6.0.0 <= 6.0.45 >= 7.0.0 <= 7.0.70 >= 8.0 <= 8.0.36 >= 8.5.0 <= 8.5.4 == 9.0.0-milestone1 == 9.0.0-milestone2 == 9.0.0-milestone3 == 9.0.0-milestone4 == 9.0.0-milestone5 == 9.0.0-milestone6 == 9.0.0-milestone7 == 9.0.0-milestone8 == 9.0.0-milestone9
CVE-2017-7674	Low	August 11, 2017 8/11/17	== 8.0.4 == 8.0.10 == 7.0.49 == 8.0.30 == 8.0.44 == 7.0.62 == 8.0.17 == 7.0.53 == 8.0.7 == 8.0.26 == 7.0.58 == 7.0.78 == 8.5.2 == 7.0.55 == 8.5.9 == 8.5.4 == 8.0.40 == 8.0.2 == 7.0.63 == 8.0.20 == 8.0.31 == 8.5.0 == 7.0.46 == 7.0.72 == 8.0.5 == 7.0.76 == 7.0.71 == 8.0.1 == 8.0.0-rc3 == 7.0.59 == 8.5.15 == 7.0.65 == 8.0.19 == 7.0.50 == 8.5.10 == 8.0 == 8.0.39 == 8.0.12 == 8.0.27 == 8.0.15 == 7.0.48 == 7.0.67 == 8.0.0-rc1 == 7.0.74 == 7.0.66 == 8.5.13 == 8.0.22 == 7.0.44 == 8.5.14 == 7.0.69 == 8.0.29 == 8.0.42 == 7.0.52 == 7.0.42 == 7.0.60 == 7.0.45 == 8.0.11 == 8.0.24 == 8.0.0-rc10 == 8.0.36 == 7.0.68 == 8.5.5 == 8.0.23 == 8.5.3 == 8.0.33 == 7.0.47 == 8.5.6 == 8.0.6 == 8.0.21 == 8.0.32 == 7.0.41 == 7.0.75 == 8.0.41 == 8.0.25 == 8.0.18 == 7.0.54 == 8.0.35 == 7.0.61 == 8.0.3 == 8.0.38 == 7.0.57 == 7.0.43 == 8.0.13 == 8.0.14 == 8.0.9 == 8.0.0-rc5 == 8.0.43 == 8.5.7 == 8.5.8 == 8.0.16 == 8.5.12 == 8.0.8 == 7.0.77 == 7.0.56 == 8.0.34 == 8.5.11 == 8.0.28 == 7.0.64 == 8.0.37 == 7.0.70 == 8.5.1 == 7.0.73 == 9.0.0-milestone1 == 9.0.0-milestone10 == 9.0.0-milestone11 == 9.0.0-milestone12 == 9.0.0-milestone13 == 9.0.0-milestone14 == 9.0.0-milestone15 == 9.0.0-milestone16 == 9.0.0-milestone17 == 9.0.0-milestone18 == 9.0.0-milestone19 == 9.0.0-milestone2 == 9.0.0-milestone20 == 9.0.0-milestone21 == 9.0.0-milestone3 == 9.0.0-milestone4 == 9.0.0-milestone5 == 9.0.0-milestone6 == 9.0.0-milestone7 == 9.0.0-milestone8 == 9.0.0-milestone9

org.apache.tomcat / tomcat

322 vulnerabilities found

Title	Severity	Date	Affected Version
CVE-2017-5647	Medium	April 17, 2017 4/17/17	>= 9.0.0.M1 < 9.0.0.M19 >= 8.5.0 < 8.5.13 >= 8.0.0 < 8.0.42 >= 7.0.0 < 7.0.77 >= 6.0.0 < 6.0.53
CVE-2017-5648	Medium	April 17, 2017 4/17/17	>= 9.0.0.M1 < 9.0.0.M18 >= 8.5.0 < 8.5.13 >= 8.0.0 < 8.0.42 >= 7.0.0 < 7.0.76
CVE-2017-5650	Medium	April 17, 2017 4/17/17	>= 9.0.0.M1 < 9.0.0.M19 >= 8.5.0 < 8.5.13
CVE-2017-5651	High	April 17, 2017 4/17/17	>= 9.0.0.M1 < 9.0.0.M19 >= 8.5.0 < 8.5.13
CVE-2016-6816	Medium	March 20, 2017 3/20/17	>= 9.0.0.M1 < 9.0.0.M12 >= 8.5.0 < 8.5.8 >= 8.0.0RC1 < 8.0.39 >= 7.0.0 < 7.0.73 >= 6.0.16 < 6.0.48
CVE-2016-0763	Medium	February 25, 2016 2/25/16	>= 7.0.0 < 7.0.68 >= 8.0.0 < 8.0.32 >= 9.0.0M1 < 9.0.0.M3
CVE-2016-0714	Medium	February 25, 2016 2/25/16	>= 9.0.0.M1 <= 9.0.0.m1 >= 9.0.0.M1 < 9.0.0.M2 >= 8.0.0.RC1 < 8.0.32 >= 7.0.0 < 7.0.70 >= 6.0.0 < 6.0.46
CVE-2016-0706	Low	February 25, 2016 2/25/16	>= 9.0.0.M1 <= 9.0.0.m1 >= 9.0.0.M1 < 9.0.0.M2 >= 8.0.0.RC1 < 8.0.31 >= 6.0.0 < 6.0.45
CVE-2015-5346	Medium	February 25, 2016 2/25/16	>= 9.0.0.M1 <= 9.0.0.m1 >= 9.0.0.M1 < 9.0.0.M2 >= 8.0.0.RC1 < 8.0.31 >= 7.0.0 < 7.0.66
CVE-2015-5345	Medium	February 25, 2016 2/25/16	>= 9.0.0.M1 <= 9.0.0.m1 >= 9.0.0.M1 < 9.0.0.M2 >= 8.0.0.RC1 < 8.0.30 >= 7.0.0 < 7.0.68 >= 6.0.0 < 6.0.45
CVE-2015-5174	Low	February 25, 2016 2/25/16	>= 8.0.0.RC1 < 8.0.27 >= 7.0.0 < 7.0.65 >= 6.0.0 < 6.0.45
CVE-2014-7810	Medium	June 7, 2015 6/7/15	>= 6.0.0 < 6.0.44 >= 7.0.0 < 7.0.58 >= 8.0.0 < 8.0.16
CVE-2014-0230	High	June 7, 2015 6/7/15	>= 6.0.0 < 6.0.44 >= 7.0.0 < 7.0.55 >= 8.0.0 < 8.0.9
CVE-2014-0227	Medium	February 16, 2015 2/16/15	>= 6.0.0 < 6.0.42 >= 7.0.0 < 7.0.55 >= 8.0.0 < 8.0.9
CVE-2014-0075	Medium	May 31, 2014 5/31/14	< 6.0.40 >= 7.0.0 < 7.0.53 >= 8.0.0 < 8.0.4
CVE-2014-0096	Low	May 31, 2014 5/31/14	< 6.0.40 >= 7.0.0 < 7.0.54 >= 8.0.0 < 8.0.6
CVE-2014-0099	Low	May 31, 2014 5/31/14	< 6.0.40 >= 7.0.0 < 7.0.54 >= 8.0.0 < 8.0.6
CVE-2014-0119	Low	May 31, 2014 5/31/14	< 6.0.40 >= 7.0.0 < 7.0.54 >= 8.0.0 < 8.0.6
CVE-2013-4590	Low	February 26, 2014 2/26/14	< 6.0.39 >= 7.0.0 < 7.0.50 >= 8.0.0-RC1 < 8.0.0-RC10
CVE-2014-0033	Low	February 26, 2014 2/26/14	>= 6.0.33 < 6.0.38
CVE-2013-2185	High	January 19, 2014 1/19/14	< 7.0.39
CVE-2013-2067	Medium	June 1, 2013 6/1/13	>= 6.0.21 < 6.0.37 >= 7.0.0 < 7.0.33
CVE-2013-2071	Low	June 1, 2013 6/1/13	>= 7.0.0 < 7.0.40
CVE-2012-3546	Low	December 19, 2012 12/19/12	>= 6.0.0 < 6.0.36 >= 7.0.0 < 7.0.30
CVE-2012-4431	Low	December 19, 2012 12/19/12	>= 6.0.0 < 6.0.36 >= 7.0.0 < 7.0.32
CVE-2012-5885	Medium	November 17, 2012 11/17/12	>= 5.5.0 < 5.5.36 >= 6.0.0 < 6.0.36 >= 7.0.0 < 7.0.30
CVE-2012-5886	Medium	November 17, 2012 11/17/12	>= 5.5.0 < 5.5.36 >= 6.0.0 < 6.0.36 >= 7.0.0 < 7.0.30
CVE-2012-5887	Medium	November 17, 2012 11/17/12	>= 5.5.0 < 5.5.36 >= 6.0.0 < 6.0.36 >= 7.0.0 < 7.0.30
CVE-2012-0022	Medium	January 19, 2012 1/19/12	>= 5.5.0 < 5.5.35 >= 6.0.0 < 6.0.34 >= 7.0.0 < 7.0.23
CVE-2011-1184	Medium	January 14, 2012 1/14/12	>= 5.5.0 < 5.5.34 >= 6.0.0 < 6.0.33 >= 7.0.0 < 7.0.12
CVE-2011-5062	Medium	January 14, 2012 1/14/12	>= 5.5.0 < 5.5.34 >= 6.0.0 < 6.0.33 >= 7.0.0 < 7.0.12
CVE-2011-5063	Low	January 14, 2012 1/14/12	>= 5.5.0 < 5.5.34 >= 6.0.0 < 6.0.33 >= 7.0.0 < 7.0.12
CVE-2011-5064	Low	January 14, 2012 1/14/12	>= 5.5.0 < 5.5.34 >= 6.0.0 < 6.0.33 >= 7.0.0 < 7.0.12
CVE-2011-4858	Medium	January 5, 2012 1/5/12	>= 5.5.0 < 5.5.35 >= 6.0.0 < 6.0.35 >= 7.0.0 < 7.0.23
CVE-2011-2481	Low	August 15, 2011 8/15/11	>= 7.0.0 < 7.0.17
CVE-2011-2526	Low	July 14, 2011 7/14/11	< 5.5.34 >= 6.0.0 < 6.0.33 >= 7.0.0 < 7.0.19
CVE-2011-2204	Low	June 29, 2011 6/29/11	>= 5.5.0 < 5.5.34 >= 6.0.0 < 6.0.33 >= 7.0.0 < 7.0.19
CVE-2011-1582	Low	May 20, 2011 5/20/11	>= 7.0.12 < 7.0.14
CVE-2011-1183	Medium	April 8, 2011 4/8/11	== 7.0.11 >= 7.0.11 < 7.0.12
CVE-2011-0013	Low	February 19, 2011 2/19/11	>= 5.5.0 < 5.5.32 >= 6.0.0 < 6.0.30 >= 7.0.0 < 7.0.6
CVE-2010-3718	Low	February 10, 2011 2/10/11	>= 7.0.0 < 7.0.4 >= 6.0.0 < 6.0.30 >= 5.5.0 < 5.5.30
CVE-2010-4172	Low	November 26, 2010 11/26/10	>= 7.0.0 < 7.0.5 >= 6.0.12 <= 6.0.29
CVE-2010-1157	Low	April 23, 2010 4/23/10	>= 5.5.0 < 5.5.30 >= 6.0.0 < 6.0.28
CVE-2009-2901	Low	January 28, 2010 1/28/10	>= 5.5.0 < 5.5.29 >= 6.0.0 < 6.0.24
CVE-2009-2902	Low	January 28, 2010 1/28/10	>= 5.5.0 < 5.5.29 >= 6.0.0 < 6.0.24
CVE-2008-5515	Medium	June 16, 2009 6/16/09	>= 4.1.0 < 4.1.40 >= 5.5.0 < 5.5.28 >= 6.0.0 < 6.0.20
CVE-2009-0580	Low	June 5, 2009 6/5/09	>= 4.1.0 < 4.1.40 >= 5.0.0 < 5.5.28 >= 6.0.0 < 6.0.19
CVE-2009-0783	Low	June 5, 2009 6/5/09	>= 4.1.0 <= 4.1.39 >= 5.5.0 <= 5.5.27 >= 6.0.0 < 6.0.20
CVE-2009-0781	Low	March 9, 2009 3/9/09	>= 4.1.0 <= 4.1.39 >= 5.5.0 <= 5.5.27 >= 6.0.0 < 6.0.20
CVE-2007-5333	Medium	February 12, 2008 2/12/08	>= 6.0.0 < 6.0.15 >= 5.5.0 < 5.5.26 >= 4.1.0 < 4.1.37

Showing vulnerabilities for 2 products matching "tomcat". Each product has independent pagination.

Deep Security Visibility Without the Complexity

SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.

No setup fees
5-min deployment
Cancel anytime

Book a Demo

Frequently Asked Questions

What is a Vulnerability (CVE) and why does it matter?

A security vulnerability is a weakness in software, hardware, or configuration that can be exploited to compromise confidentiality, integrity, or availability. Many vulnerabilities are tracked as CVEs (Common Vulnerabilities and Exposures), which provide a standardized identifier so teams can coordinate patching, mitigation, and risk assessment across tools and vendors.

CVSS (Common Vulnerability Scoring System) estimates technical severity, but it doesn't automatically equal business risk. Prioritize using context like internet exposure, affected asset criticality, known exploitation (proof-of-concept or in-the-wild), and whether compensating controls exist. A "Medium" CVSS on an exposed, production system can be more urgent than a "Critical" on an isolated, non-production host.

A vulnerability is the underlying weakness. An exploit is the method or code used to take advantage of it. A zero-day is a vulnerability that is unknown to the vendor or has no publicly available fix when attackers begin using it. In practice, risk increases sharply when exploitation becomes reliable or widespread.

Recurring findings usually come from incomplete Asset Discovery, inconsistent patch management, inherited images, and configuration drift. In modern environments, you also need to watch the software supply chain: dependencies, containers, build pipelines, and third-party services can reintroduce the same weakness even after you patch a single host. Unknown or unmanaged assets (often called Shadow IT) are a common reason the same issues resurface.

Use a simple, repeatable triage model: focus first on externally exposed assets, high-value systems (identity, VPN, email, production), vulnerabilities with known exploits, and issues that enable remote code execution or privilege escalation. Then enforce patch SLAs and track progress using consistent metrics so remediation is steady, not reactive.

SynScan combines attack surface monitoring and continuous security auditing to keep your inventory current, flag high-impact vulnerabilities early, and help you turn raw findings into a practical remediation plan.