Open Redirect

Affecting org.apache.tomcat:tomcat-catalina artifact, versions [7.0.23, 7.0.91) || [8.5.0, 8.5.34) || [9.0.0, 9.0.12)

Do your applications use this vulnerable package? Test your applications

Overview

org.apache.tomcat:tomcat-catalina is a Tomcat Servlet Engine Core Classes and Standard implementations.

Affected versions of this package are vulnerable to Open Redirect. When the default servlet returned a redirect to a directory (e.g. redirecting to '/foo/' when the user requested '/foo') a specially crafted URL could be used to cause the redirect to be generated to any URI of the attackers choice.

Remediation

Upgrade org.apache.tomcat:tomcat-catalina to version 7.0.91, 8.5.34, 9.0.12 or higher.

References

CVSS Score

5.6
medium severity
  • Attack Vector
    Network
  • Attack Complexity
    High
  • Privileges Required
    None
  • User Interaction
    None
  • Scope
    Unchanged
  • Confidentiality
    Low
  • Integrity
    Low
  • Availability
    Low
CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L
Credit
Sergey Bobrov
CVE
CVE-2018-11784
CWE
CWE-601
Snyk ID
SNYK-JAVA-ORGAPACHETOMCAT-459632
Disclosed
03 Oct, 2018
Published
09 Oct, 2018