Description

Remote code execution is possible with Apache Tomcat before 6.0.48, 7.x before 7.0.73, 8.x before 8.0.39, 8.5.x before 8.5.7, and 9.x before 9.0.0.M12 if JmxRemoteLifecycleListener is used and an attacker can reach JMX ports. The issue exists because this listener wasn't updated for consistency with the CVE-2016-3427 Oracle patch that affected credential types.

Remediation

References

CVE-2016-8735

Related Vulnerabilities

WordPress Plugin YITH Maintenance Mode Cross-Site Scripting (1.3.7)

WordPress Plugin Comment Attachment Cross-Site Scripting (1.5.5)

WordPress Plugin Modula Image Gallery Cross-Site Scripting (2.2.4)

Ruby on Rails URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2021-44528)

Drupal Core 9.3.x Multiple Vulnerabilities (9.3.0 - 9.3.7)

Severity

Critical

Classification

CVE-2016-8735 CWE-284 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Tags

Missing Update Known Vulnerabilities