Tomcat Catalina is vulnerable to Arbitrary Code Injection. The vulnerability exists in the report
function of JsonErrorReportValve.java
due to improper escaping of inputs from JsonErrorReportValve which allows an attacker to inject invalid input values.
github.com/advisories/GHSA-rq2w-37h9-vg94
github.com/apache/tomcat/commit/0cab3a56bd89f70e7481bb0d68395dc7e130dbbf
github.com/apache/tomcat/commit/1f50bff8daabb48c5f15398689988f26aac6ec56
github.com/apache/tomcat/commit/6a0ac6a438cbbb66b6e9c5223842f53bf0cb50aa
github.com/apache/tomcat/commit/b336f4e58893ea35114f1e4a415657f723b1298e
lists.apache.org/thread/yqkd183xrw3wqvnpcg3osbcryq85fkzj
security.gentoo.org/glsa/202305-37
tomcat.apache.org/security-10.html
tomcat.apache.org/security-8.html
tomcat.apache.org/security-9.html