WID-SEC-W-2023-3020
Vulnerability from csaf_certbund
Published
2023-11-28 23:00
Modified
2024-09-25 22:00
Summary
Apache Tomcat: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung
Apache Tomcat ist ein Web-Applikationsserver für verschiedene Plattformen.
Angriff
Ein entfernter, anonymer Angreifer kann eine Schwachstelle in Apache Tomcat ausnutzen, um Sicherheitsvorkehrungen zu umgehen.
Betroffene Betriebssysteme
- Linux
- MacOS X
- Sonstiges
- UNIX
- Windows
{ document: { aggregate_severity: { text: "mittel", }, category: "csaf_base", csaf_version: "2.0", distribution: { tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "de-DE", notes: [ { category: "legal_disclaimer", text: "Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.", }, { category: "description", text: "Apache Tomcat ist ein Web-Applikationsserver für verschiedene Plattformen.", title: "Produktbeschreibung", }, { category: "summary", text: "Ein entfernter, anonymer Angreifer kann eine Schwachstelle in Apache Tomcat ausnutzen, um Sicherheitsvorkehrungen zu umgehen.", title: "Angriff", }, { category: "general", text: "- Linux\n- MacOS X\n- Sonstiges\n- UNIX\n- Windows", title: "Betroffene Betriebssysteme", }, ], publisher: { category: "other", contact_details: "csaf-provider@cert-bund.de", name: "Bundesamt für Sicherheit in der Informationstechnik", namespace: "https://www.bsi.bund.de", }, references: [ { category: "self", summary: "WID-SEC-W-2023-3020 - CSAF Version", url: "https://wid.cert-bund.de/.well-known/csaf/white/2023/wid-sec-w-2023-3020.json", }, { category: "self", summary: "WID-SEC-2023-3020 - Portal Version", url: "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2023-3020", }, { category: "external", summary: "SUSE Security Update SUSE-SU-2024:0206-1 vom 2024-01-24", url: "https://lists.suse.com/pipermail/sle-security-updates/2024-January/017752.html", }, { category: "external", summary: "SUSE Security Update SUSE-SU-2024:0209-1 vom 2024-01-24", url: "https://lists.suse.com/pipermail/sle-security-updates/2024-January/017750.html", }, { category: "external", summary: "SUSE Security Update SUSE-SU-2024:0208-1 vom 2024-01-24", url: "https://lists.suse.com/pipermail/sle-security-updates/2024-January/017751.html", }, { category: "external", summary: "Rocky Linux Security Advisory RLSA-2024:0539 vom 2024-02-12", url: "https://errata.build.resf.org/RLSA-2024:0539", }, { category: "external", summary: "Debian Security Advisory DLA-3707 vom 2024-01-05", url: "https://lists.debian.org/debian-lts-announce/2024/01/msg00001.html", }, { category: "external", summary: "Red Hat Security Advisory RHSA-2024:1134 vom 2024-03-05", url: "https://access.redhat.com/errata/RHSA-2024:1134", }, { category: "external", summary: "Red Hat Security Advisory RHSA-2024:1092 vom 2024-03-05", url: "https://access.redhat.com/errata/RHSA-2024:1092", }, { category: "external", summary: "Red Hat Security Advisory RHSA-2024:0532 vom 2024-01-29", url: "https://access.redhat.com/errata/RHSA-2024:0532", }, { category: "external", summary: "Red Hat Security Advisory RHSA-2024:0539 vom 2024-01-29", url: "https://access.redhat.com/errata/RHSA-2024:0539", }, { category: "external", summary: "Hitachi Vulnerability Information HITACHI-SEC-2024-107 vom 2024-01-30", url: "https://www.hitachi.com/products/it/software/security/info/vuls/hitachi-sec-2024-107/index.html", }, { category: "external", summary: "Oracle Linux Security Advisory ELSA-2024-0539 vom 2024-01-30", url: "https://linux.oracle.com/errata/ELSA-2024-0539.html", }, { category: "external", summary: "SUSE Security Update SUSE-SU-2024:0472-1 vom 2024-02-14", url: "https://lists.suse.com/pipermail/sle-security-updates/2024-February/017913.html", }, { category: "external", summary: "IBM Security Bulletin 7099297 vom 2023-12-18", url: "https://www.ibm.com/support/pages/node/7099297", }, { category: "external", summary: "IBM Security Bulletin 7107754 vom 2024-01-16", url: "https://www.ibm.com/support/pages/node/7107754", }, { category: "external", summary: "IBM Security Bulletin 7118625 vom 2024-02-19 vom 2024-02-18", url: "https://www.ibm.com/support/pages/node/7118625", }, { category: "external", summary: "Oracle Linux Security Advisory ELSA-2024-1134 vom 2024-03-07", url: "https://linux.oracle.com/errata/ELSA-2024-1134.html", }, { category: "external", summary: "Jira Security Advisory", url: "https://jira.atlassian.com/browse/JSWSERVER-25502", }, { category: "external", summary: "Atlassian Security Bulletin Februar 2024", url: "https://confluence.atlassian.com/security/security-bulletin-february-20-2024-1354501606.html", }, { category: "external", summary: "Amazon Linux Security Advisory ALAS-2024-1909 vom 2024-01-23", url: "https://alas.aws.amazon.com/ALAS-2024-1909.html", }, { category: "external", summary: "IBM Security Bulletin 7105133 vom 2024-01-05", url: "http://www.ibm.com/support/pages/node/7105133", }, { category: "external", summary: "GitHub Advisory Database vom 2023-11-28", url: "https://github.com/advisories/GHSA-fccv-jmmp-qg76", }, { category: "external", summary: "Apache Mailing List vom 2023-11-28", url: "https://lists.apache.org/thread/0rqq6ktozqc42ro8hhxdmmdjm1k1tpxr", }, { category: "external", summary: "Red Hat Security Advisory RHSA-2024:1319 vom 2024-03-18", url: "https://access.redhat.com/errata/RHSA-2024:1319", }, { category: "external", summary: "Red Hat Security Advisory RHSA-2024:1318 vom 2024-03-18", url: "https://access.redhat.com/errata/RHSA-2024:1318", }, { category: "external", summary: "Amazon Linux Security Advisory ALASTOMCAT8.5-2024-018 vom 2024-03-19", url: "https://alas.aws.amazon.com/AL2/ALASTOMCAT8.5-2024-018.html", }, { category: "external", summary: "Red Hat Security Advisory RHSA-2024:1325 vom 2024-03-18", url: "https://access.redhat.com/errata/RHSA-2024:1325", }, { category: "external", summary: "Red Hat Security Advisory RHSA-2024:1324 vom 2024-03-18", url: "https://access.redhat.com/errata/RHSA-2024:1324", }, { category: "external", summary: "Debian Security Advisory DSA-5665 vom 2024-04-18", url: "https://lists.debian.org/debian-security-announce/2024/msg00074.html", }, { category: "external", summary: "Debian Security Advisory DSA-5667 vom 2024-04-19", url: "https://lists.debian.org/debian-security-announce/2024/msg00076.html", }, { category: "external", summary: "IBM Security Bulletin 7114769 vom 2024-04-30", url: "https://www.ibm.com/support/pages/node/7114769", }, { category: "external", summary: "Dell Security Advisory DSA-2024-208 vom 2024-05-07", url: "https://www.dell.com/support/kbdoc/000224800/dsa-2024-=", }, { category: "external", summary: "Red Hat Security Advisory RHSA-2024:3354 vom 2024-05-24", url: "https://access.redhat.com/errata/RHSA-2024:3354", }, { category: "external", summary: "Dell Security Advisory DSA-2024-248 vom 2024-06-11", url: "https://www.dell.com/support/kbdoc/de-de/000225945/dsa-2024-248-security-update-for-dell-networker-multiple-component-vulnerabilities", }, { category: "external", summary: "Hitachi Vulnerability Information HITACHI-SEC-2024-134 vom 2024-07-02", url: "https://www.hitachi.com/products/it/software/security/info/vuls/hitachi-sec-2024-134/index.html", }, { category: "external", summary: "HCL Security Bulletin vom 2024-09-03", url: "https://support.hcltechsw.com/community?id=community_blog&sys_id=4aa57cab1b1412d4534c4159cc4bcb93", }, { category: "external", summary: "Ubuntu Security Notice USN-7032-1 vom 2024-09-25", url: "https://ubuntu.com/security/notices/USN-7032-1", }, ], source_lang: "en-US", title: "Apache Tomcat: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen", tracking: { current_release_date: "2024-09-25T22:00:00.000+00:00", generator: { date: "2024-09-26T08:42:48.761+00:00", engine: { name: "BSI-WID", version: "1.3.8", }, }, id: "WID-SEC-W-2023-3020", initial_release_date: "2023-11-28T23:00:00.000+00:00", revision_history: [ { date: "2023-11-28T23:00:00.000+00:00", number: "1", summary: "Initiale Fassung", }, { date: "2023-12-18T23:00:00.000+00:00", number: "2", summary: "Neue Updates von IBM aufgenommen", }, { date: "2024-01-04T23:00:00.000+00:00", number: "3", summary: "Neue Updates von IBM und IBM-APAR aufgenommen", }, { date: "2024-01-07T23:00:00.000+00:00", number: "4", summary: "Neue Updates von Debian aufgenommen", }, { date: "2024-01-15T23:00:00.000+00:00", number: "5", summary: "Neue Updates von IBM aufgenommen", }, { date: "2024-01-22T23:00:00.000+00:00", number: "6", summary: "Neue Updates von Amazon aufgenommen", }, { date: "2024-01-24T23:00:00.000+00:00", number: "7", summary: "Neue Updates von SUSE aufgenommen", }, { date: "2024-01-28T23:00:00.000+00:00", number: "8", summary: "Neue Updates von Red Hat aufgenommen", }, { date: "2024-01-29T23:00:00.000+00:00", number: "9", summary: "Neue Updates von HITACHI aufgenommen", }, { date: "2024-02-12T23:00:00.000+00:00", number: "10", summary: "Neue Updates von Rocky Enterprise Software Foundation aufgenommen", }, { date: "2024-02-14T23:00:00.000+00:00", number: "11", summary: "Neue Updates von SUSE aufgenommen", }, { date: "2024-02-18T23:00:00.000+00:00", number: "12", summary: "Neue Updates von IBM aufgenommen", }, { date: "2024-02-20T23:00:00.000+00:00", number: "13", summary: "Neue Updates von Atlassian aufgenommen", }, { date: "2024-03-05T23:00:00.000+00:00", number: "14", summary: "Neue Updates von Red Hat aufgenommen", }, { date: "2024-03-07T23:00:00.000+00:00", number: "15", summary: "Neue Updates von Oracle Linux aufgenommen", }, { date: "2024-03-17T23:00:00.000+00:00", number: "16", summary: "Neue Updates von Red Hat aufgenommen", }, { date: "2024-03-18T23:00:00.000+00:00", number: "17", summary: "Neue Updates von Amazon und Red Hat aufgenommen", }, { date: "2024-04-17T22:00:00.000+00:00", number: "18", summary: "Neue Updates von Debian aufgenommen", }, { date: "2024-04-21T22:00:00.000+00:00", number: "19", summary: "Neue Updates von Debian aufgenommen", }, { date: "2024-05-01T22:00:00.000+00:00", number: "20", summary: "Neue Updates von IBM aufgenommen", }, { date: "2024-05-06T22:00:00.000+00:00", number: "21", summary: "Neue Updates von Dell aufgenommen", }, { date: "2024-05-23T22:00:00.000+00:00", number: "22", summary: "Neue Updates von Red Hat aufgenommen", }, { date: "2024-06-11T22:00:00.000+00:00", number: "23", summary: "Neue Updates von Dell aufgenommen", }, { date: "2024-07-01T22:00:00.000+00:00", number: "24", summary: "Neue Updates von HITACHI aufgenommen", }, { date: "2024-09-03T22:00:00.000+00:00", number: "25", summary: "Neue Updates aufgenommen", }, { date: "2024-09-25T22:00:00.000+00:00", number: "26", summary: "Neue Updates von Ubuntu aufgenommen", }, ], status: "final", version: "26", }, }, product_tree: { branches: [ { branches: [ { category: "product_name", name: "Amazon Linux 2", product: { name: "Amazon Linux 2", product_id: "398363", product_identification_helper: { cpe: "cpe:/o:amazon:linux_2:-", }, }, }, ], category: "vendor", name: "Amazon", }, { branches: [ { branches: [ { category: "product_version_range", name: "<11.0.0-M11", product: { name: "Apache Tomcat <11.0.0-M11", product_id: "T031379", }, }, { category: "product_version", name: "11.0.0-M11", product: { name: "Apache Tomcat 11.0.0-M11", product_id: "T031379-fixed", product_identification_helper: { cpe: "cpe:/a:apache:tomcat:11.0.0-m11", }, }, }, { category: "product_version_range", name: "<10.1.16", product: { name: "Apache Tomcat <10.1.16", product_id: "T031380", }, }, { category: "product_version", name: "10.1.16", product: { name: "Apache Tomcat 10.1.16", product_id: "T031380-fixed", product_identification_helper: { cpe: "cpe:/a:apache:tomcat:10.1.16", }, }, }, { category: "product_version_range", name: "<9.0.83", product: { name: "Apache Tomcat <9.0.83", product_id: "T031381", }, }, { category: "product_version", name: "9.0.83", product: { name: "Apache Tomcat 9.0.83", product_id: "T031381-fixed", product_identification_helper: { cpe: "cpe:/a:apache:tomcat:9.0.83", }, }, }, { category: "product_version_range", name: "<8.5.96", product: { name: "Apache Tomcat <8.5.96", product_id: "T031382", }, }, { category: "product_version", name: "8.5.96", product: { name: "Apache Tomcat 8.5.96", product_id: "T031382-fixed", product_identification_helper: { cpe: "cpe:/a:apache:tomcat:8.5.96", }, }, }, ], category: "product_name", name: "Tomcat", }, ], category: "vendor", name: "Apache", }, { branches: [ { branches: [ { category: "product_version_range", name: "<7.19.18", product: { name: "Atlassian Confluence <7.19.18", product_id: "T032051", }, }, { category: "product_version", name: "7.19.18", product: { name: "Atlassian Confluence 7.19.18", product_id: "T032051-fixed", product_identification_helper: { cpe: "cpe:/a:atlassian:confluence:7.19.18", }, }, }, { category: "product_version_range", name: "<8.5.5", product: { name: "Atlassian Confluence <8.5.5", product_id: "T032052", }, }, { category: "product_version", name: "8.5.5", product: { name: "Atlassian Confluence 8.5.5", product_id: "T032052-fixed", product_identification_helper: { cpe: "cpe:/a:atlassian:confluence:8.5.5", }, }, }, { category: "product_version_range", name: "<8.7.2", product: { name: "Atlassian Confluence <8.7.2", product_id: "T032053", }, }, { category: "product_version", name: "8.7.2", product: { name: "Atlassian Confluence 8.7.2", product_id: "T032053-fixed", product_identification_helper: { cpe: "cpe:/a:atlassian:confluence:8.7.2", }, }, }, { category: "product_version_range", name: "<8.8.0", product: { name: "Atlassian Confluence <8.8.0", product_id: "T033011", }, }, { category: "product_version", name: "8.8.0", product: { name: "Atlassian Confluence 8.8.0", product_id: "T033011-fixed", product_identification_helper: { cpe: "cpe:/a:atlassian:confluence:8.8.0", }, }, }, ], category: "product_name", name: "Confluence", }, { branches: [ { category: "product_version_range", name: "<9.4.15", product: { name: "Atlassian Jira Software <9.4.15", product_id: "T032975", }, }, { category: "product_version", name: "9.4.15", product: { name: "Atlassian Jira Software 9.4.15", product_id: "T032975-fixed", product_identification_helper: { cpe: "cpe:/a:atlassian:jira_software:9.4.15", }, }, }, { category: "product_version_range", name: "<9.12.2", product: { name: "Atlassian Jira Software <9.12.2", product_id: "T032976", }, }, { category: "product_version", name: "9.12.2", product: { name: "Atlassian Jira Software 9.12.2", product_id: "T032976-fixed", product_identification_helper: { cpe: "cpe:/a:atlassian:jira_software:9.12.2", }, }, }, ], category: "product_name", name: "Jira Software", }, ], category: "vendor", name: "Atlassian", }, { branches: [ { category: "product_name", name: "Debian Linux", product: { name: "Debian Linux", product_id: "2951", product_identification_helper: { cpe: "cpe:/o:debian:debian_linux:-", }, }, }, ], category: "vendor", name: "Debian", }, { branches: [ { branches: [ { category: "product_name", name: "Dell NetWorker", product: { name: "Dell NetWorker", product_id: "T024663", product_identification_helper: { cpe: "cpe:/a:dell:networker:-", }, }, }, { category: "product_version_range", name: "Server <19.9.0.6", product: { name: "Dell NetWorker Server <19.9.0.6", product_id: "T034567", }, }, { category: "product_version", name: "Server 19.9.0.6", product: { name: "Dell NetWorker Server 19.9.0.6", product_id: "T034567-fixed", product_identification_helper: { cpe: "cpe:/a:dell:networker:server__19.9.0.6", }, }, }, ], category: "product_name", name: "NetWorker", }, ], category: "vendor", name: "Dell", }, { branches: [ { category: "product_name", name: "HCL Commerce", product: { name: "HCL Commerce", product_id: "T019293", product_identification_helper: { cpe: "cpe:/a:hcltechsw:commerce:-", }, }, }, ], category: "vendor", name: "HCL", }, { branches: [ { category: "product_name", name: "Hitachi Ops Center", product: { name: "Hitachi Ops Center", product_id: "T017562", product_identification_helper: { cpe: "cpe:/a:hitachi:ops_center:-", }, }, }, ], category: "vendor", name: "Hitachi", }, { branches: [ { category: "product_name", name: "IBM App Connect Enterprise", product: { name: "IBM App Connect Enterprise", product_id: "T032495", product_identification_helper: { cpe: "cpe:/a:ibm:app_connect_enterprise:-", }, }, }, { category: "product_name", name: "IBM FlashSystem", product: { name: "IBM FlashSystem", product_id: "T025159", product_identification_helper: { cpe: "cpe:/a:ibm:flashsystem:-", }, }, }, { branches: [ { category: "product_version", name: "10.1-10.1.0.2", product: { name: "IBM Integration Bus 10.1-10.1.0.2", product_id: "T031084", product_identification_helper: { cpe: "cpe:/a:ibm:integration_bus:10.1_-_10.1.0.2", }, }, }, ], category: "product_name", name: "Integration Bus", }, { category: "product_name", name: "IBM Power Hardware Management Console", product: { name: "IBM Power Hardware Management Console", product_id: "T023373", product_identification_helper: { cpe: "cpe:/a:ibm:hardware_management_console:v10", }, }, }, { branches: [ { category: "product_version", name: "7.5", product: { name: "IBM QRadar SIEM 7.5", product_id: "T022954", product_identification_helper: { cpe: "cpe:/a:ibm:qradar_siem:7.5", }, }, }, ], category: "product_name", name: "QRadar SIEM", }, { category: "product_name", name: "IBM SAN Volume Controller", product: { name: "IBM SAN Volume Controller", product_id: "T002782", product_identification_helper: { cpe: "cpe:/a:ibm:san_volume_controller:-", }, }, }, { category: "product_name", name: "IBM Storwize", product: { name: "IBM Storwize", product_id: "T021621", product_identification_helper: { cpe: "cpe:/a:ibm:storwize:-", }, }, }, ], category: "vendor", name: "IBM", }, { branches: [ { category: "product_name", name: "Oracle Linux", product: { name: "Oracle Linux", product_id: "T004914", product_identification_helper: { cpe: "cpe:/o:oracle:linux:-", }, }, }, ], category: "vendor", name: "Oracle", }, { branches: [ { category: "product_name", name: "RESF Rocky Linux", product: { name: "RESF Rocky Linux", product_id: "T032255", product_identification_helper: { cpe: "cpe:/o:resf:rocky_linux:-", }, }, }, ], category: "vendor", name: "RESF", }, { branches: [ { category: "product_name", name: "Red Hat Enterprise Linux", product: { name: "Red Hat Enterprise Linux", product_id: "67646", product_identification_helper: { cpe: "cpe:/o:redhat:enterprise_linux:-", }, }, }, ], category: "vendor", name: "Red Hat", }, { branches: [ { category: "product_name", name: "SUSE Linux", product: { name: "SUSE Linux", product_id: "T002207", product_identification_helper: { cpe: "cpe:/o:suse:suse_linux:-", }, }, }, ], category: "vendor", name: "SUSE", }, { branches: [ { category: "product_name", name: "Ubuntu Linux", product: { name: "Ubuntu Linux", product_id: "T000126", product_identification_helper: { cpe: "cpe:/o:canonical:ubuntu_linux:-", }, }, }, ], category: "vendor", name: "Ubuntu", }, ], }, vulnerabilities: [ { cve: "CVE-2023-46589", notes: [ { category: "description", text: "Es besteht eine Schwachstelle in Apache Tomcat. Dieser Fehler besteht aufgrund einer unsachgemäßen Validierung von Benutzereingaben, die zum Schmuggeln von HTTP-Anfragen führt. Durch die Erstellung missgestalteter HTTP-Anfragen kann ein entfernter, anonymer Angreifer diese Schwachstelle ausnutzen, um Sicherheitsmaßnahmen zu umgehen.", }, ], product_status: { known_affected: [ "T034567", "T031379", "67646", "T019293", "T004914", "T033011", "T024663", "398363", "T025159", "T023373", "T002782", "T032975", "T032976", "T032052", "T031380", "T032053", "T031382", "T031084", "T032051", "T031381", "T032255", "T017562", "T032495", "T022954", "T021621", "2951", "T002207", "T000126", ], }, release_date: "2023-11-28T23:00:00.000+00:00", title: "CVE-2023-46589", }, ], }
Log in or create an account to share your comment.
Security Advisory comment format.
This schema specifies the format of a comment related to a security advisory.
Title of the comment
Description of the comment
Loading…
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.