{"schema_version":"1.6.0","id":"ROOT-APP-MAVEN-CVE-2025-55754","modified":"2026-06-24T13:58:26Z","published":"2026-06-24T13:58:26Z","upstream":["CVE-2025-55754"],"summary":"CVE-2025-55754 in io.root.org.apache.tomcat.embed:tomcat-embed-core - Patched by Root","details":"Root has patched CVE-2025-55754 in the io.root.org.apache.tomcat.embed:tomcat-embed-core package for Root:Maven. Multiple fixed versions available.","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"}],"affected":[{"package":{"name":"io.root.org.apache.tomcat.embed:tomcat-embed-core","ecosystem":"Root:Maven"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"10.1.39-root.io.18"},{"fixed":"10.1.16-root.io.10"},{"fixed":"10.1.34-root.io.5"},{"fixed":"10.1.30-root.io.10"},{"fixed":"10.1.34-root.io.6"}]}],"database_specific":{"all_fixed_versions":["10.1.39-root.io.18","10.1.16-root.io.10","10.1.34-root.io.5","10.1.30-root.io.10","10.1.34-root.io.6"],"root_patch_version":"root.io.6","root_patched":true,"total_fixed_versions":5,"upstream_version":"10.1.34"}},{"package":{"name":"org.apache.tomcat.embed:tomcat-embed-core","ecosystem":"Root:Maven"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"10.1.16-aikido.10"},{"fixed":"10.1.34-aikido.5"},{"fixed":"10.1.39-aikido.18"},{"fixed":"10.1.30-aikido.10"},{"fixed":"10.1.34-aikido.6"}]}],"database_specific":{"all_fixed_versions":["10.1.16-aikido.10","10.1.34-aikido.5","10.1.39-aikido.18","10.1.30-aikido.10","10.1.34-aikido.6"],"root_patch_version":"","root_patched":true,"total_fixed_versions":5,"upstream_version":"10.1.34-aikido.6"}},{"package":{"name":"io.root.org.apache.tomcat:tomcat-catalina","ecosystem":"Root:Maven"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"11.0.11-root.io.1"},{"fixed":"11.0.11-root.io.2"},{"fixed":"11.0.11-root.io.3"},{"fixed":"11.0.11-root.io.4"}]}],"database_specific":{"all_fixed_versions":["11.0.11-root.io.1","11.0.11-root.io.2","11.0.11-root.io.3","11.0.11-root.io.4"],"root_patch_version":"root.io.4","root_patched":true,"total_fixed_versions":4,"upstream_version":"11.0.11"}},{"package":{"name":"org.apache.tomcat:tomcat-catalina","ecosystem":"Root:Maven"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"11.0.11-aikido.4"}]}],"database_specific":{"all_fixed_versions":["11.0.11-aikido.4"],"root_patch_version":"","root_patched":true,"total_fixed_versions":1,"upstream_version":"11.0.11-aikido.4"}}],"database_specific":{"distro":"maven","distro_version":"","severity":"MEDIUM","source":"Root"}}
