GitHub Advisory DatabaseGHSA-JX7C-7MJ5-9438Apache Tomcat Race Condition vulnerability
3.7 Low
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N
0.002 Low
EPSS
Percentile
58.6%
The simplified implementation of blocking reads and writes introduced in Tomcat 10 and back-ported to Tomcat 9.0.47 onwards exposed a long standing (but extremely hard to trigger) concurrency bug in Apache Tomcat 10.1.0 to 10.1.0-M12, 10.0.0-M1 to 10.0.18, 9.0.0-M1 to 9.0.60 and 8.5.0 to 8.5.77 that could cause client connections to share an Http11Processor instance resulting in responses, or part responses, to be received by the wrong client.
Affected configurations
References
www.openwall.com/lists/oss-security/2022/09/28/1
github.com/advisories/GHSA-jx7c-7mj5-9438
github.com/apache/tomcat/commit/170e0f792bd18ff031677890ba2fe50eb7a376c1
github.com/apache/tomcat/commit/17f177eeb7df5938f67ef9ea580411b120195f13
github.com/apache/tomcat/commit/4a00b0c0890538b9d3107eef8f2e0afadd119beb
github.com/apache/tomcat/commit/9651b83a1d04583791525e5f0c4c9089f678d9fc
lists.apache.org/thread/3jjqbsp6j88b198x5rmg99b1qr8ht3g3
lists.debian.org/debian-lts-announce/2022/10/msg00029.html
nvd.nist.gov/vuln/detail/CVE-2021-43980
tomcat.apache.org/security-10.html
tomcat.apache.org/security-8.html
tomcat.apache.org/security-9.html
www.debian.org/security/2022/dsa-5265
Related
3.7 Low
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N
0.002 Low
EPSS
Percentile
58.6%