Lucene search

K
nessusTenable700695.PASL
HistoryMay 13, 2019 - 12:00 a.m.

Apache Tomcat 8.5.x < 8.5.32 Multiple Vulnerabilities

2019-05-1300:00:00
Tenable
www.tenable.com
20

The version of Apache Tomcat installed on the remote host is version 8.5.x prior to 8.5.32. It is, therefore, affected by multiple vulnerabilities :

  • The defaults settings for the CORS filter are insecure and enable supportsCredentials for all origins. It is expected that users of the CORS filter will have configured it appropriately for their environment rather than using it in the default configuration. Therefore, it is expected that most users will not be impacted by this issue. (CVE-2018-8014)
  • The host name verification when using TLS with the WebSocket client was missing. It is now enabled by default. (CVE-2018-8034)
  • If an async request was completed by the application at the same time as the container triggered the async timeout, a race condition existed that could result in a user seeing a response intended for a different user. An additional issue was present in the NIO and NIO2 connectors that did not correctly track the closure of the connection when an async request was completed by the application and timed out by the container at the same time. This could also result in a user seeing a response intended for another user. (CVE-2018-8037)
Binary data 700695.pasl
VendorProductVersion
apachetomcat