Lucene search

GitHub Advisory DatabaseGHSA-QRCX-P4RR-G48H

HistoryMay 01, 2022 - 2:31 a.m.

Apache Tomcat allows remote attackers to read JSP source files

2022-05-0102:31:23

CWE-200

GitHub Advisory Database

github.com

apache tomcat

remote attackers

jsp source files

sensitive information

software

CVSS2

7.8

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:C/I:N/A:N

EPSS

0.001

Percentile

43.5%

JSON

The HTTP/1.1 connector in Apache Tomcat 4.1.15 through 4.1.40 does not reject NULL bytes in a URL when allowLinking is configured, which allows remote attackers to read JSP source files and obtain sensitive information.

Affected configurations

Vulners

Node

org.apache.tomcat\Matchtomcat

References

tomcat.apache.org/security-4.html

www.securityfocus.com/bid/28483

github.com/advisories/GHSA-qrcx-p4rr-g48h

lists.apache.org/thread.html/29dc6c2b625789e70a9c4756b5a327e6547273ff8bde7e0327af48c5@%3Cdev.tomcat.apache.org%3E

lists.apache.org/thread.html/c62b0e3a7bf23342352a5810c640a94b6db69957c5c19db507004d74@%3Cdev.tomcat.apache.org%3E

lists.apache.org/thread.html/rb71997f506c6cc8b530dd845c084995a9878098846c7b4eacfae8db3@%3Cdev.tomcat.apache.org%3E

nvd.nist.gov/vuln/detail/CVE-2005-4836

CVSS2

7.8

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:C/I:N/A:N

EPSS

0.001

Percentile

43.5%

JSON

Related for GHSA-QRCX-P4RR-G48H