Main Vulnerability Database SB2018031202

SB2018031202 - Information disclosure in Apache Tomcat JK ISAPI Connector

Published: March 12, 2018

Security Bulletin ID SB2018031202

CSH Severity

Low

Patch available

YES

Number of vulnerabilities 1

Exploitation vector Remote access

Highest impact Information disclosure

Breakdown by Severity

Low
Medium
High
Critical

Description

This security bulletin contains information about 1 vulnerability.

1) Information disclosure (CVE-ID: CVE-2018-1323)

CWE-ID: CWE-200 - Exposure of sensitive information to an unauthorized actor

CVSSv4: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:P/U:Clear

The vulnerability allows a remote attacker to obtain potentially sensitive information on the target system.

The weakness exists due to incorrect handling of some edge cases by the IIS/ISAPI specific code that normalised the requested path before matching it to the URI-worker map. A remote attacker can send a specially constructed request to expose application functionality through the reverse proxy that was not intended for clients accessing the application via the reverse proxy.

Remediation

Install update from vendor's website.

References

https://tomcat.apache.org/security-jk.html