|
1 | 1 | { |
2 | 2 | "schema_version": "1.4.0", |
3 | 3 | "id": "GHSA-8mc5-53m5-3qj2", |
4 | | - "modified": "2026-04-10T22:07:39Z", |
| 4 | + "modified": "2026-04-15T22:53:15Z", |
5 | 5 | "published": "2026-04-09T21:31:29Z", |
6 | 6 | "aliases": [ |
7 | 7 | "CVE-2026-32990" |
|
22 | 22 | { |
23 | 23 | "package": { |
24 | 24 | "ecosystem": "Maven", |
25 | | - "name": "org.apache.tomcat:tomcat-catalina" |
| 25 | + "name": "org.apache.tomcat:tomcat-coyote" |
26 | 26 | }, |
27 | 27 | "ranges": [ |
28 | 28 | { |
|
41 | 41 | { |
42 | 42 | "package": { |
43 | 43 | "ecosystem": "Maven", |
44 | | - "name": "org.apache.tomcat:tomcat-catalina" |
| 44 | + "name": "org.apache.tomcat:tomcat-coyote" |
45 | 45 | }, |
46 | 46 | "ranges": [ |
47 | 47 | { |
|
60 | 60 | { |
61 | 61 | "package": { |
62 | 62 | "ecosystem": "Maven", |
63 | | - "name": "org.apache.tomcat:tomcat-catalina" |
| 63 | + "name": "org.apache.tomcat:tomcat-coyote" |
64 | 64 | }, |
65 | 65 | "ranges": [ |
66 | 66 | { |
|
74 | 74 | } |
75 | 75 | ] |
76 | 76 | } |
77 | | - ] |
| 77 | + ], |
| 78 | + "database_specific": { |
| 79 | + "last_known_affected_version_range": "<= 11.0.18" |
| 80 | + } |
78 | 81 | }, |
79 | 82 | { |
80 | 83 | "package": { |
|
131 | 134 | } |
132 | 135 | ] |
133 | 136 | } |
134 | | - ] |
| 137 | + ], |
| 138 | + "database_specific": { |
| 139 | + "last_known_affected_version_range": "<= 11.0.18" |
| 140 | + } |
135 | 141 | }, |
136 | 142 | { |
137 | 143 | "package": { |
|
196 | 202 | "type": "ADVISORY", |
197 | 203 | "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-32990" |
198 | 204 | }, |
| 205 | + { |
| 206 | + "type": "WEB", |
| 207 | + "url": "https://github.com/apache/tomcat/commit/021d1f833e38b683a44688f7b28f1f27e8e37c36" |
| 208 | + }, |
| 209 | + { |
| 210 | + "type": "WEB", |
| 211 | + "url": "https://github.com/apache/tomcat/commit/4d0615a5c718c260d6d4e0b944a050f09a490c02" |
| 212 | + }, |
| 213 | + { |
| 214 | + "type": "WEB", |
| 215 | + "url": "https://github.com/apache/tomcat/commit/95f7778248cac46d03e6af04de9c72a598be3a53" |
| 216 | + }, |
199 | 217 | { |
200 | 218 | "type": "PACKAGE", |
201 | 219 | "url": "https://github.com/apache/tomcat" |
202 | 220 | }, |
203 | 221 | { |
204 | 222 | "type": "WEB", |
205 | 223 | "url": "https://lists.apache.org/thread/1nl9zqft0ksqlhlkd3j4obyjz1ghoyn7" |
| 224 | + }, |
| 225 | + { |
| 226 | + "type": "WEB", |
| 227 | + "url": "https://tomcat.apache.org/security-10.html#Fixed_in_Apache_Tomcat_10.1.53" |
| 228 | + }, |
| 229 | + { |
| 230 | + "type": "WEB", |
| 231 | + "url": "https://tomcat.apache.org/security-11.html#Fixed_in_Apache_Tomcat_11.0.20" |
| 232 | + }, |
| 233 | + { |
| 234 | + "type": "WEB", |
| 235 | + "url": "https://tomcat.apache.org/security-9.html#Fixed_in_Apache_Tomcat_9.0.116" |
| 236 | + }, |
| 237 | + { |
| 238 | + "type": "WEB", |
| 239 | + "url": "https://www.herodevs.com/vulnerability-directory/cve-2026-32990" |
206 | 240 | } |
207 | 241 | ], |
208 | 242 | "database_specific": { |
|
![advisory-database[bot]](https://avatars.githubusercontent.com/in/21409?v=4&size=40){kind=avatar}
0 commit comments