CISA KEV 정보
| 취약점명 | Apache Tomcat Remote Code Execution Vulnerability |
|---|---|
| 설명 | Apache Tomcat contains an unspecified vulnerability that allows for remote code execution if JmxRemoteLifecycleListener is used and an attacker can reach Java Management Extension (JMX) ports. This CVE exists because this listener wasn't updated for consistency with the Oracle patched issues for CVE-2016-3427 which affected credential types. |
| 조치사항 | Apply updates per vendor instructions. |
| 랜섬웨어 캠페인 악용 | Unknown |
| CWE | CWE-284 |
| 등록일 (KEV) | 2023-05-12 |
| 조치 기한 | 2023-06-02 |
| 추가 참고 | https://tomcat.apache.org/security-9.html; https://nvd.nist.gov/vuln/detail/CVE-2016-8735 |
NVD 상세 정보
CVSS v3.1: 9.8 CRITICAL
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HCVSS v2.0: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P설명: Remote code execution is possible with Apache Tomcat before 6.0.48, 7.x before 7.0.73, 8.x before 8.0.39, 8.5.x before 8.5.7, and 9.x before 9.0.0.M12 if JmxRemoteLifecycleListener is used and an attacker can reach JMX ports. The issue exists because this listener wasn't updated for consistency with the CVE-2016-3427 Oracle patch that affected credential types.
참조
- http://rhn.redhat.com/errata/RHSA-2017-0457.html [Third Party Advisory]
- http://seclists.org/oss-sec/2016/q4/502 [Mailing List, Mitigation, Third Party Advisory]
- http://svn.apache.org/viewvc?view=revision&revision=1767644 [Broken Link, Patch]
- http://svn.apache.org/viewvc?view=revision&revision=1767656 [Broken Link, Patch]
- http://svn.apache.org/viewvc?view=revision&revision=1767676 [Broken Link, Patch]
- http://svn.apache.org/viewvc?view=revision&revision=1767684 [Broken Link, Patch]
- http://tomcat.apache.org/security-6.html [Release Notes, Vendor Advisory]
- http://tomcat.apache.org/security-7.html [Release Notes, Vendor Advisory]
- http://tomcat.apache.org/security-8.html [Release Notes, Vendor Advisory]
- http://tomcat.apache.org/security-9.html [Release Notes, Vendor Advisory]
- http://www.debian.org/security/2016/dsa-3738 [Mailing List, Third Party Advisory]
- http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html [Patch, Third Party Advisory]
- http://www.oracle.com/technetwork/security-advisory/cpujul2018-4258247.html [Patch, Third Party Advisory]
- http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html [Patch, Third Party Advisory]
- http://www.securityfocus.com/bid/94463 [Broken Link, Third Party Advisory, VDB Entry]
- ... 외 58건
This product uses the NVD API but is not endorsed or certified by the NVD.