Description

org/apache/catalina/core/DefaultInstanceManager.java in Apache Tomcat 7.x before 7.0.22 does not properly restrict ContainerServlets in the Manager application, which allows local users to gain privileges by using an untrusted web application to access the Manager application's functionality.

Remediation

References

http://svn.apache.org/viewvc/tomcat/tc7.0.x/trunk/java/org/apache/catalina/core/DefaultInstanceManager.java?r1=1176588&r2=1176587&pathrev=1176588

http://svn.apache.org/viewvc?view=revision&revision=1176588

http://tomcat.apache.org/security-7.html

http://www.securityfocus.com/bid/50603

Related Vulnerabilities

CVE-2022-42003 Vulnerability in maven package com.fasterxml.jackson.core:jackson-databind

CVE-2016-2510 Vulnerability in maven package org.apache-extras.beanshell:bsh

CVE-2023-37478 Vulnerability in npm package @pnpm/macos-x64

CVE-2016-1000345 Vulnerability in maven package org.bouncycastle:bcprov-jdk15on

CVE-2023-50730 Vulnerability in maven package edu.gemini:gsp-graphql-core_native0.4_2.13

Severity

Critical

Classification

CWE-264

Tags

Patch Vendor Advisory