csaf_suse - suse-su-2021:0989-1

suse-su-2021:0989-1

Vulnerability from csaf_suse

Published

2021-03-30 15:58

Modified

2021-03-30 15:58

Summary

Security update for tomcat

Notes

Title of the patch

Security update for tomcat

Description of the patch

This update for tomcat fixes the following issues: - Fixed CVEs: * CVE-2021-25122: Apache Tomcat h2c request mix-up (bsc#1182912) * CVE-2021-25329: Complete fix for CVE-2020-9484 (bsc#1182909) - Log if file access is blocked due to symlinks: CVE-2021-24122 (bsc#1180947)

Patchnames

SUSE-2021-989,SUSE-SLE-Product-HPC-15-2021-989,SUSE-SLE-Product-SLES-15-2021-989,SUSE-SLE-Product-SLES_SAP-15-2021-989

CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://www.suse.com/support/security/rating/",
      "text": "important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright 2024 SUSE LLC. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Security update for tomcat",
        "title": "Title of the patch"
      },
      {
        "category": "description",
        "text": "This update for tomcat fixes the following issues:\n\n- Fixed CVEs:\n  * CVE-2021-25122: Apache Tomcat h2c request mix-up (bsc#1182912)\n  * CVE-2021-25329: Complete fix for CVE-2020-9484 (bsc#1182909)\n- Log if file access is blocked due to symlinks: CVE-2021-24122 (bsc#1180947)\n",
        "title": "Description of the patch"
      },
      {
        "category": "details",
        "text": "SUSE-2021-989,SUSE-SLE-Product-HPC-15-2021-989,SUSE-SLE-Product-SLES-15-2021-989,SUSE-SLE-Product-SLES_SAP-15-2021-989",
        "title": "Patchnames"
      },
      {
        "category": "legal_disclaimer",
        "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
        "title": "Terms of use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://www.suse.com/support/security/contact/",
      "name": "SUSE Product Security Team",
      "namespace": "https://www.suse.com/"
    },
    "references": [
      {
        "category": "external",
        "summary": "SUSE ratings",
        "url": "https://www.suse.com/support/security/rating/"
      },
      {
        "category": "self",
        "summary": "URL of this CSAF notice",
        "url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2021_0989-1.json"
      },
      {
        "category": "self",
        "summary": "URL for SUSE-SU-2021:0989-1",
        "url": "https://www.suse.com/support/update/announcement/2021/suse-su-20210989-1/"
      },
      {
        "category": "self",
        "summary": "E-Mail link for SUSE-SU-2021:0989-1",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2021-March/008570.html"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1180947",
        "url": "https://bugzilla.suse.com/1180947"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1182909",
        "url": "https://bugzilla.suse.com/1182909"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1182912",
        "url": "https://bugzilla.suse.com/1182912"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-24122 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-24122/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-25122 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-25122/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-25329 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-25329/"
      }
    ],
    "title": "Security update for tomcat",
    "tracking": {
      "current_release_date": "2021-03-30T15:58:52Z",
      "generator": {
        "date": "2021-03-30T15:58:52Z",
        "engine": {
          "name": "cve-database.git:bin/generate-csaf.pl",
          "version": "1"
        }
      },
      "id": "SUSE-SU-2021:0989-1",
      "initial_release_date": "2021-03-30T15:58:52Z",
      "revision_history": [
        {
          "date": "2021-03-30T15:58:52Z",
          "number": "1",
          "summary": "Current version"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "tomcat-9.0.36-3.79.1.noarch",
                "product": {
                  "name": "tomcat-9.0.36-3.79.1.noarch",
                  "product_id": "tomcat-9.0.36-3.79.1.noarch"
                }
              },
              {
                "category": "product_version",
                "name": "tomcat-admin-webapps-9.0.36-3.79.1.noarch",
                "product": {
                  "name": "tomcat-admin-webapps-9.0.36-3.79.1.noarch",
                  "product_id": "tomcat-admin-webapps-9.0.36-3.79.1.noarch"
                }
              },
              {
                "category": "product_version",
                "name": "tomcat-docs-webapp-9.0.36-3.79.1.noarch",
                "product": {
                  "name": "tomcat-docs-webapp-9.0.36-3.79.1.noarch",
                  "product_id": "tomcat-docs-webapp-9.0.36-3.79.1.noarch"
                }
              },
              {
                "category": "product_version",
                "name": "tomcat-el-3_0-api-9.0.36-3.79.1.noarch",
                "product": {
                  "name": "tomcat-el-3_0-api-9.0.36-3.79.1.noarch",
                  "product_id": "tomcat-el-3_0-api-9.0.36-3.79.1.noarch"
                }
              },
              {
                "category": "product_version",
                "name": "tomcat-embed-9.0.36-3.79.1.noarch",
                "product": {
                  "name": "tomcat-embed-9.0.36-3.79.1.noarch",
                  "product_id": "tomcat-embed-9.0.36-3.79.1.noarch"
                }
              },
              {
                "category": "product_version",
                "name": "tomcat-javadoc-9.0.36-3.79.1.noarch",
                "product": {
                  "name": "tomcat-javadoc-9.0.36-3.79.1.noarch",
                  "product_id": "tomcat-javadoc-9.0.36-3.79.1.noarch"
                }
              },
              {
                "category": "product_version",
                "name": "tomcat-jsp-2_3-api-9.0.36-3.79.1.noarch",
                "product": {
                  "name": "tomcat-jsp-2_3-api-9.0.36-3.79.1.noarch",
                  "product_id": "tomcat-jsp-2_3-api-9.0.36-3.79.1.noarch"
                }
              },
              {
                "category": "product_version",
                "name": "tomcat-jsvc-9.0.36-3.79.1.noarch",
                "product": {
                  "name": "tomcat-jsvc-9.0.36-3.79.1.noarch",
                  "product_id": "tomcat-jsvc-9.0.36-3.79.1.noarch"
                }
              },
              {
                "category": "product_version",
                "name": "tomcat-lib-9.0.36-3.79.1.noarch",
                "product": {
                  "name": "tomcat-lib-9.0.36-3.79.1.noarch",
                  "product_id": "tomcat-lib-9.0.36-3.79.1.noarch"
                }
              },
              {
                "category": "product_version",
                "name": "tomcat-servlet-4_0-api-9.0.36-3.79.1.noarch",
                "product": {
                  "name": "tomcat-servlet-4_0-api-9.0.36-3.79.1.noarch",
                  "product_id": "tomcat-servlet-4_0-api-9.0.36-3.79.1.noarch"
                }
              },
              {
                "category": "product_version",
                "name": "tomcat-webapps-9.0.36-3.79.1.noarch",
                "product": {
                  "name": "tomcat-webapps-9.0.36-3.79.1.noarch",
                  "product_id": "tomcat-webapps-9.0.36-3.79.1.noarch"
                }
              }
            ],
            "category": "architecture",
            "name": "noarch"
          },
          {
            "branches": [
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise High Performance Computing 15-ESPOS",
                "product": {
                  "name": "SUSE Linux Enterprise High Performance Computing 15-ESPOS",
                  "product_id": "SUSE Linux Enterprise High Performance Computing 15-ESPOS",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sle_hpc-espos:15"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise High Performance Computing 15-LTSS",
                "product": {
                  "name": "SUSE Linux Enterprise High Performance Computing 15-LTSS",
                  "product_id": "SUSE Linux Enterprise High Performance Computing 15-LTSS",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sle_hpc-ltss:15"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Server 15-LTSS",
                "product": {
                  "name": "SUSE Linux Enterprise Server 15-LTSS",
                  "product_id": "SUSE Linux Enterprise Server 15-LTSS",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sles-ltss:15"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Server for SAP Applications 15",
                "product": {
                  "name": "SUSE Linux Enterprise Server for SAP Applications 15",
                  "product_id": "SUSE Linux Enterprise Server for SAP Applications 15",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sles_sap:15"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "SUSE Linux Enterprise"
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "tomcat-9.0.36-3.79.1.noarch as component of SUSE Linux Enterprise High Performance Computing 15-ESPOS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15-ESPOS:tomcat-9.0.36-3.79.1.noarch"
        },
        "product_reference": "tomcat-9.0.36-3.79.1.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-ESPOS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "tomcat-admin-webapps-9.0.36-3.79.1.noarch as component of SUSE Linux Enterprise High Performance Computing 15-ESPOS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15-ESPOS:tomcat-admin-webapps-9.0.36-3.79.1.noarch"
        },
        "product_reference": "tomcat-admin-webapps-9.0.36-3.79.1.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-ESPOS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "tomcat-el-3_0-api-9.0.36-3.79.1.noarch as component of SUSE Linux Enterprise High Performance Computing 15-ESPOS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15-ESPOS:tomcat-el-3_0-api-9.0.36-3.79.1.noarch"
        },
        "product_reference": "tomcat-el-3_0-api-9.0.36-3.79.1.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-ESPOS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "tomcat-jsp-2_3-api-9.0.36-3.79.1.noarch as component of SUSE Linux Enterprise High Performance Computing 15-ESPOS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15-ESPOS:tomcat-jsp-2_3-api-9.0.36-3.79.1.noarch"
        },
        "product_reference": "tomcat-jsp-2_3-api-9.0.36-3.79.1.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-ESPOS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "tomcat-lib-9.0.36-3.79.1.noarch as component of SUSE Linux Enterprise High Performance Computing 15-ESPOS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15-ESPOS:tomcat-lib-9.0.36-3.79.1.noarch"
        },
        "product_reference": "tomcat-lib-9.0.36-3.79.1.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-ESPOS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "tomcat-servlet-4_0-api-9.0.36-3.79.1.noarch as component of SUSE Linux Enterprise High Performance Computing 15-ESPOS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15-ESPOS:tomcat-servlet-4_0-api-9.0.36-3.79.1.noarch"
        },
        "product_reference": "tomcat-servlet-4_0-api-9.0.36-3.79.1.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-ESPOS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "tomcat-webapps-9.0.36-3.79.1.noarch as component of SUSE Linux Enterprise High Performance Computing 15-ESPOS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15-ESPOS:tomcat-webapps-9.0.36-3.79.1.noarch"
        },
        "product_reference": "tomcat-webapps-9.0.36-3.79.1.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-ESPOS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "tomcat-9.0.36-3.79.1.noarch as component of SUSE Linux Enterprise High Performance Computing 15-LTSS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15-LTSS:tomcat-9.0.36-3.79.1.noarch"
        },
        "product_reference": "tomcat-9.0.36-3.79.1.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "tomcat-admin-webapps-9.0.36-3.79.1.noarch as component of SUSE Linux Enterprise High Performance Computing 15-LTSS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15-LTSS:tomcat-admin-webapps-9.0.36-3.79.1.noarch"
        },
        "product_reference": "tomcat-admin-webapps-9.0.36-3.79.1.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "tomcat-el-3_0-api-9.0.36-3.79.1.noarch as component of SUSE Linux Enterprise High Performance Computing 15-LTSS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15-LTSS:tomcat-el-3_0-api-9.0.36-3.79.1.noarch"
        },
        "product_reference": "tomcat-el-3_0-api-9.0.36-3.79.1.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "tomcat-jsp-2_3-api-9.0.36-3.79.1.noarch as component of SUSE Linux Enterprise High Performance Computing 15-LTSS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15-LTSS:tomcat-jsp-2_3-api-9.0.36-3.79.1.noarch"
        },
        "product_reference": "tomcat-jsp-2_3-api-9.0.36-3.79.1.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "tomcat-lib-9.0.36-3.79.1.noarch as component of SUSE Linux Enterprise High Performance Computing 15-LTSS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15-LTSS:tomcat-lib-9.0.36-3.79.1.noarch"
        },
        "product_reference": "tomcat-lib-9.0.36-3.79.1.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "tomcat-servlet-4_0-api-9.0.36-3.79.1.noarch as component of SUSE Linux Enterprise High Performance Computing 15-LTSS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15-LTSS:tomcat-servlet-4_0-api-9.0.36-3.79.1.noarch"
        },
        "product_reference": "tomcat-servlet-4_0-api-9.0.36-3.79.1.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "tomcat-webapps-9.0.36-3.79.1.noarch as component of SUSE Linux Enterprise High Performance Computing 15-LTSS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15-LTSS:tomcat-webapps-9.0.36-3.79.1.noarch"
        },
        "product_reference": "tomcat-webapps-9.0.36-3.79.1.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "tomcat-9.0.36-3.79.1.noarch as component of SUSE Linux Enterprise Server 15-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15-LTSS:tomcat-9.0.36-3.79.1.noarch"
        },
        "product_reference": "tomcat-9.0.36-3.79.1.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "tomcat-admin-webapps-9.0.36-3.79.1.noarch as component of SUSE Linux Enterprise Server 15-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15-LTSS:tomcat-admin-webapps-9.0.36-3.79.1.noarch"
        },
        "product_reference": "tomcat-admin-webapps-9.0.36-3.79.1.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "tomcat-el-3_0-api-9.0.36-3.79.1.noarch as component of SUSE Linux Enterprise Server 15-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15-LTSS:tomcat-el-3_0-api-9.0.36-3.79.1.noarch"
        },
        "product_reference": "tomcat-el-3_0-api-9.0.36-3.79.1.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "tomcat-jsp-2_3-api-9.0.36-3.79.1.noarch as component of SUSE Linux Enterprise Server 15-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15-LTSS:tomcat-jsp-2_3-api-9.0.36-3.79.1.noarch"
        },
        "product_reference": "tomcat-jsp-2_3-api-9.0.36-3.79.1.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "tomcat-lib-9.0.36-3.79.1.noarch as component of SUSE Linux Enterprise Server 15-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15-LTSS:tomcat-lib-9.0.36-3.79.1.noarch"
        },
        "product_reference": "tomcat-lib-9.0.36-3.79.1.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "tomcat-servlet-4_0-api-9.0.36-3.79.1.noarch as component of SUSE Linux Enterprise Server 15-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15-LTSS:tomcat-servlet-4_0-api-9.0.36-3.79.1.noarch"
        },
        "product_reference": "tomcat-servlet-4_0-api-9.0.36-3.79.1.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "tomcat-webapps-9.0.36-3.79.1.noarch as component of SUSE Linux Enterprise Server 15-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15-LTSS:tomcat-webapps-9.0.36-3.79.1.noarch"
        },
        "product_reference": "tomcat-webapps-9.0.36-3.79.1.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "tomcat-9.0.36-3.79.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 15",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 15:tomcat-9.0.36-3.79.1.noarch"
        },
        "product_reference": "tomcat-9.0.36-3.79.1.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "tomcat-admin-webapps-9.0.36-3.79.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 15",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 15:tomcat-admin-webapps-9.0.36-3.79.1.noarch"
        },
        "product_reference": "tomcat-admin-webapps-9.0.36-3.79.1.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "tomcat-el-3_0-api-9.0.36-3.79.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 15",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 15:tomcat-el-3_0-api-9.0.36-3.79.1.noarch"
        },
        "product_reference": "tomcat-el-3_0-api-9.0.36-3.79.1.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "tomcat-jsp-2_3-api-9.0.36-3.79.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 15",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 15:tomcat-jsp-2_3-api-9.0.36-3.79.1.noarch"
        },
        "product_reference": "tomcat-jsp-2_3-api-9.0.36-3.79.1.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "tomcat-lib-9.0.36-3.79.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 15",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 15:tomcat-lib-9.0.36-3.79.1.noarch"
        },
        "product_reference": "tomcat-lib-9.0.36-3.79.1.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "tomcat-servlet-4_0-api-9.0.36-3.79.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 15",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 15:tomcat-servlet-4_0-api-9.0.36-3.79.1.noarch"
        },
        "product_reference": "tomcat-servlet-4_0-api-9.0.36-3.79.1.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "tomcat-webapps-9.0.36-3.79.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 15",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 15:tomcat-webapps-9.0.36-3.79.1.noarch"
        },
        "product_reference": "tomcat-webapps-9.0.36-3.79.1.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2021-24122",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-24122"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "When serving resources from a network location using the NTFS file system, Apache Tomcat versions 10.0.0-M1 to 10.0.0-M9, 9.0.0.M1 to 9.0.39, 8.5.0 to 8.5.59 and 7.0.0 to 7.0.106 were susceptible to JSP source code disclosure in some configurations. The root cause was the unexpected behaviour of the JRE API File.getCanonicalPath() which in turn was caused by the inconsistent behaviour of the Windows API (FindFirstFileW) in some circumstances.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:tomcat-9.0.36-3.79.1.noarch",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:tomcat-admin-webapps-9.0.36-3.79.1.noarch",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:tomcat-el-3_0-api-9.0.36-3.79.1.noarch",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:tomcat-jsp-2_3-api-9.0.36-3.79.1.noarch",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:tomcat-lib-9.0.36-3.79.1.noarch",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:tomcat-servlet-4_0-api-9.0.36-3.79.1.noarch",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:tomcat-webapps-9.0.36-3.79.1.noarch",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:tomcat-9.0.36-3.79.1.noarch",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:tomcat-admin-webapps-9.0.36-3.79.1.noarch",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:tomcat-el-3_0-api-9.0.36-3.79.1.noarch",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:tomcat-jsp-2_3-api-9.0.36-3.79.1.noarch",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:tomcat-lib-9.0.36-3.79.1.noarch",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:tomcat-servlet-4_0-api-9.0.36-3.79.1.noarch",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:tomcat-webapps-9.0.36-3.79.1.noarch",
          "SUSE Linux Enterprise Server 15-LTSS:tomcat-9.0.36-3.79.1.noarch",
          "SUSE Linux Enterprise Server 15-LTSS:tomcat-admin-webapps-9.0.36-3.79.1.noarch",
          "SUSE Linux Enterprise Server 15-LTSS:tomcat-el-3_0-api-9.0.36-3.79.1.noarch",
          "SUSE Linux Enterprise Server 15-LTSS:tomcat-jsp-2_3-api-9.0.36-3.79.1.noarch",
          "SUSE Linux Enterprise Server 15-LTSS:tomcat-lib-9.0.36-3.79.1.noarch",
          "SUSE Linux Enterprise Server 15-LTSS:tomcat-servlet-4_0-api-9.0.36-3.79.1.noarch",
          "SUSE Linux Enterprise Server 15-LTSS:tomcat-webapps-9.0.36-3.79.1.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 15:tomcat-9.0.36-3.79.1.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 15:tomcat-admin-webapps-9.0.36-3.79.1.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 15:tomcat-el-3_0-api-9.0.36-3.79.1.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 15:tomcat-jsp-2_3-api-9.0.36-3.79.1.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 15:tomcat-lib-9.0.36-3.79.1.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 15:tomcat-servlet-4_0-api-9.0.36-3.79.1.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 15:tomcat-webapps-9.0.36-3.79.1.noarch"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-24122",
          "url": "https://www.suse.com/security/cve/CVE-2021-24122"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1180947 for CVE-2021-24122",
          "url": "https://bugzilla.suse.com/1180947"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:tomcat-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:tomcat-admin-webapps-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:tomcat-el-3_0-api-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:tomcat-jsp-2_3-api-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:tomcat-lib-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:tomcat-servlet-4_0-api-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:tomcat-webapps-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:tomcat-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:tomcat-admin-webapps-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:tomcat-el-3_0-api-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:tomcat-jsp-2_3-api-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:tomcat-lib-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:tomcat-servlet-4_0-api-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:tomcat-webapps-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise Server 15-LTSS:tomcat-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise Server 15-LTSS:tomcat-admin-webapps-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise Server 15-LTSS:tomcat-el-3_0-api-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise Server 15-LTSS:tomcat-jsp-2_3-api-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise Server 15-LTSS:tomcat-lib-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise Server 15-LTSS:tomcat-servlet-4_0-api-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise Server 15-LTSS:tomcat-webapps-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15:tomcat-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15:tomcat-admin-webapps-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15:tomcat-el-3_0-api-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15:tomcat-jsp-2_3-api-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15:tomcat-lib-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15:tomcat-servlet-4_0-api-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15:tomcat-webapps-9.0.36-3.79.1.noarch"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.9,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:tomcat-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:tomcat-admin-webapps-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:tomcat-el-3_0-api-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:tomcat-jsp-2_3-api-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:tomcat-lib-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:tomcat-servlet-4_0-api-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:tomcat-webapps-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:tomcat-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:tomcat-admin-webapps-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:tomcat-el-3_0-api-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:tomcat-jsp-2_3-api-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:tomcat-lib-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:tomcat-servlet-4_0-api-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:tomcat-webapps-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise Server 15-LTSS:tomcat-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise Server 15-LTSS:tomcat-admin-webapps-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise Server 15-LTSS:tomcat-el-3_0-api-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise Server 15-LTSS:tomcat-jsp-2_3-api-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise Server 15-LTSS:tomcat-lib-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise Server 15-LTSS:tomcat-servlet-4_0-api-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise Server 15-LTSS:tomcat-webapps-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15:tomcat-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15:tomcat-admin-webapps-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15:tomcat-el-3_0-api-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15:tomcat-jsp-2_3-api-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15:tomcat-lib-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15:tomcat-servlet-4_0-api-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15:tomcat-webapps-9.0.36-3.79.1.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2021-03-30T15:58:52Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2021-24122"
    },
    {
      "cve": "CVE-2021-25122",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-25122"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "When responding to new h2c connection requests, Apache Tomcat versions 10.0.0-M1 to 10.0.0, 9.0.0.M1 to 9.0.41 and 8.5.0 to 8.5.61 could duplicate request headers and a limited amount of request body from one request to another meaning user A and user B could both see the results of user A\u0027s request.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:tomcat-9.0.36-3.79.1.noarch",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:tomcat-admin-webapps-9.0.36-3.79.1.noarch",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:tomcat-el-3_0-api-9.0.36-3.79.1.noarch",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:tomcat-jsp-2_3-api-9.0.36-3.79.1.noarch",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:tomcat-lib-9.0.36-3.79.1.noarch",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:tomcat-servlet-4_0-api-9.0.36-3.79.1.noarch",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:tomcat-webapps-9.0.36-3.79.1.noarch",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:tomcat-9.0.36-3.79.1.noarch",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:tomcat-admin-webapps-9.0.36-3.79.1.noarch",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:tomcat-el-3_0-api-9.0.36-3.79.1.noarch",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:tomcat-jsp-2_3-api-9.0.36-3.79.1.noarch",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:tomcat-lib-9.0.36-3.79.1.noarch",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:tomcat-servlet-4_0-api-9.0.36-3.79.1.noarch",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:tomcat-webapps-9.0.36-3.79.1.noarch",
          "SUSE Linux Enterprise Server 15-LTSS:tomcat-9.0.36-3.79.1.noarch",
          "SUSE Linux Enterprise Server 15-LTSS:tomcat-admin-webapps-9.0.36-3.79.1.noarch",
          "SUSE Linux Enterprise Server 15-LTSS:tomcat-el-3_0-api-9.0.36-3.79.1.noarch",
          "SUSE Linux Enterprise Server 15-LTSS:tomcat-jsp-2_3-api-9.0.36-3.79.1.noarch",
          "SUSE Linux Enterprise Server 15-LTSS:tomcat-lib-9.0.36-3.79.1.noarch",
          "SUSE Linux Enterprise Server 15-LTSS:tomcat-servlet-4_0-api-9.0.36-3.79.1.noarch",
          "SUSE Linux Enterprise Server 15-LTSS:tomcat-webapps-9.0.36-3.79.1.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 15:tomcat-9.0.36-3.79.1.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 15:tomcat-admin-webapps-9.0.36-3.79.1.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 15:tomcat-el-3_0-api-9.0.36-3.79.1.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 15:tomcat-jsp-2_3-api-9.0.36-3.79.1.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 15:tomcat-lib-9.0.36-3.79.1.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 15:tomcat-servlet-4_0-api-9.0.36-3.79.1.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 15:tomcat-webapps-9.0.36-3.79.1.noarch"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-25122",
          "url": "https://www.suse.com/security/cve/CVE-2021-25122"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1182912 for CVE-2021-25122",
          "url": "https://bugzilla.suse.com/1182912"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1188549 for CVE-2021-25122",
          "url": "https://bugzilla.suse.com/1188549"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:tomcat-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:tomcat-admin-webapps-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:tomcat-el-3_0-api-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:tomcat-jsp-2_3-api-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:tomcat-lib-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:tomcat-servlet-4_0-api-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:tomcat-webapps-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:tomcat-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:tomcat-admin-webapps-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:tomcat-el-3_0-api-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:tomcat-jsp-2_3-api-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:tomcat-lib-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:tomcat-servlet-4_0-api-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:tomcat-webapps-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise Server 15-LTSS:tomcat-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise Server 15-LTSS:tomcat-admin-webapps-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise Server 15-LTSS:tomcat-el-3_0-api-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise Server 15-LTSS:tomcat-jsp-2_3-api-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise Server 15-LTSS:tomcat-lib-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise Server 15-LTSS:tomcat-servlet-4_0-api-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise Server 15-LTSS:tomcat-webapps-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15:tomcat-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15:tomcat-admin-webapps-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15:tomcat-el-3_0-api-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15:tomcat-jsp-2_3-api-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15:tomcat-lib-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15:tomcat-servlet-4_0-api-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15:tomcat-webapps-9.0.36-3.79.1.noarch"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:tomcat-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:tomcat-admin-webapps-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:tomcat-el-3_0-api-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:tomcat-jsp-2_3-api-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:tomcat-lib-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:tomcat-servlet-4_0-api-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:tomcat-webapps-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:tomcat-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:tomcat-admin-webapps-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:tomcat-el-3_0-api-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:tomcat-jsp-2_3-api-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:tomcat-lib-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:tomcat-servlet-4_0-api-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:tomcat-webapps-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise Server 15-LTSS:tomcat-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise Server 15-LTSS:tomcat-admin-webapps-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise Server 15-LTSS:tomcat-el-3_0-api-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise Server 15-LTSS:tomcat-jsp-2_3-api-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise Server 15-LTSS:tomcat-lib-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise Server 15-LTSS:tomcat-servlet-4_0-api-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise Server 15-LTSS:tomcat-webapps-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15:tomcat-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15:tomcat-admin-webapps-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15:tomcat-el-3_0-api-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15:tomcat-jsp-2_3-api-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15:tomcat-lib-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15:tomcat-servlet-4_0-api-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15:tomcat-webapps-9.0.36-3.79.1.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2021-03-30T15:58:52Z",
          "details": "important"
        }
      ],
      "title": "CVE-2021-25122"
    },
    {
      "cve": "CVE-2021-25329",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-25329"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The fix for CVE-2020-9484 was incomplete. When using Apache Tomcat 10.0.0-M1 to 10.0.0, 9.0.0.M1 to 9.0.41, 8.5.0 to 8.5.61 or 7.0.0. to 7.0.107 with a configuration edge case that was highly unlikely to be used, the Tomcat instance was still vulnerable to CVE-2020-9494. Note that both the previously published prerequisites for CVE-2020-9484 and the previously published mitigations for CVE-2020-9484 also apply to this issue.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:tomcat-9.0.36-3.79.1.noarch",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:tomcat-admin-webapps-9.0.36-3.79.1.noarch",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:tomcat-el-3_0-api-9.0.36-3.79.1.noarch",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:tomcat-jsp-2_3-api-9.0.36-3.79.1.noarch",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:tomcat-lib-9.0.36-3.79.1.noarch",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:tomcat-servlet-4_0-api-9.0.36-3.79.1.noarch",
          "SUSE Linux Enterprise High Performance Computing 15-ESPOS:tomcat-webapps-9.0.36-3.79.1.noarch",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:tomcat-9.0.36-3.79.1.noarch",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:tomcat-admin-webapps-9.0.36-3.79.1.noarch",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:tomcat-el-3_0-api-9.0.36-3.79.1.noarch",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:tomcat-jsp-2_3-api-9.0.36-3.79.1.noarch",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:tomcat-lib-9.0.36-3.79.1.noarch",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:tomcat-servlet-4_0-api-9.0.36-3.79.1.noarch",
          "SUSE Linux Enterprise High Performance Computing 15-LTSS:tomcat-webapps-9.0.36-3.79.1.noarch",
          "SUSE Linux Enterprise Server 15-LTSS:tomcat-9.0.36-3.79.1.noarch",
          "SUSE Linux Enterprise Server 15-LTSS:tomcat-admin-webapps-9.0.36-3.79.1.noarch",
          "SUSE Linux Enterprise Server 15-LTSS:tomcat-el-3_0-api-9.0.36-3.79.1.noarch",
          "SUSE Linux Enterprise Server 15-LTSS:tomcat-jsp-2_3-api-9.0.36-3.79.1.noarch",
          "SUSE Linux Enterprise Server 15-LTSS:tomcat-lib-9.0.36-3.79.1.noarch",
          "SUSE Linux Enterprise Server 15-LTSS:tomcat-servlet-4_0-api-9.0.36-3.79.1.noarch",
          "SUSE Linux Enterprise Server 15-LTSS:tomcat-webapps-9.0.36-3.79.1.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 15:tomcat-9.0.36-3.79.1.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 15:tomcat-admin-webapps-9.0.36-3.79.1.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 15:tomcat-el-3_0-api-9.0.36-3.79.1.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 15:tomcat-jsp-2_3-api-9.0.36-3.79.1.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 15:tomcat-lib-9.0.36-3.79.1.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 15:tomcat-servlet-4_0-api-9.0.36-3.79.1.noarch",
          "SUSE Linux Enterprise Server for SAP Applications 15:tomcat-webapps-9.0.36-3.79.1.noarch"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-25329",
          "url": "https://www.suse.com/security/cve/CVE-2021-25329"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1182909 for CVE-2021-25329",
          "url": "https://bugzilla.suse.com/1182909"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1200696 for CVE-2021-25329",
          "url": "https://bugzilla.suse.com/1200696"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:tomcat-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:tomcat-admin-webapps-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:tomcat-el-3_0-api-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:tomcat-jsp-2_3-api-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:tomcat-lib-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:tomcat-servlet-4_0-api-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:tomcat-webapps-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:tomcat-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:tomcat-admin-webapps-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:tomcat-el-3_0-api-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:tomcat-jsp-2_3-api-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:tomcat-lib-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:tomcat-servlet-4_0-api-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:tomcat-webapps-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise Server 15-LTSS:tomcat-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise Server 15-LTSS:tomcat-admin-webapps-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise Server 15-LTSS:tomcat-el-3_0-api-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise Server 15-LTSS:tomcat-jsp-2_3-api-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise Server 15-LTSS:tomcat-lib-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise Server 15-LTSS:tomcat-servlet-4_0-api-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise Server 15-LTSS:tomcat-webapps-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15:tomcat-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15:tomcat-admin-webapps-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15:tomcat-el-3_0-api-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15:tomcat-jsp-2_3-api-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15:tomcat-lib-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15:tomcat-servlet-4_0-api-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15:tomcat-webapps-9.0.36-3.79.1.noarch"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:tomcat-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:tomcat-admin-webapps-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:tomcat-el-3_0-api-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:tomcat-jsp-2_3-api-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:tomcat-lib-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:tomcat-servlet-4_0-api-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-ESPOS:tomcat-webapps-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:tomcat-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:tomcat-admin-webapps-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:tomcat-el-3_0-api-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:tomcat-jsp-2_3-api-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:tomcat-lib-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:tomcat-servlet-4_0-api-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise High Performance Computing 15-LTSS:tomcat-webapps-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise Server 15-LTSS:tomcat-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise Server 15-LTSS:tomcat-admin-webapps-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise Server 15-LTSS:tomcat-el-3_0-api-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise Server 15-LTSS:tomcat-jsp-2_3-api-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise Server 15-LTSS:tomcat-lib-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise Server 15-LTSS:tomcat-servlet-4_0-api-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise Server 15-LTSS:tomcat-webapps-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15:tomcat-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15:tomcat-admin-webapps-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15:tomcat-el-3_0-api-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15:tomcat-jsp-2_3-api-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15:tomcat-lib-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15:tomcat-servlet-4_0-api-9.0.36-3.79.1.noarch",
            "SUSE Linux Enterprise Server for SAP Applications 15:tomcat-webapps-9.0.36-3.79.1.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2021-03-30T15:58:52Z",
          "details": "important"
        }
      ],
      "title": "CVE-2021-25329"
    }
  ]
}

CVE-2021-25329 (GCVE-0-2021-25329)

Vulnerability from cvelistv5

Published

2021-03-01 12:00

Modified

2025-02-13 16:27

Severity ?

CWE

Remote code execution via session persistence

Summary

The fix for CVE-2020-9484 was incomplete. When using Apache Tomcat 10.0.0-M1 to 10.0.0, 9.0.0.M1 to 9.0.41, 8.5.0 to 8.5.61 or 7.0.0. to 7.0.107 with a configuration edge case that was highly unlikely to be used, the Tomcat instance was still vulnerable to CVE-2020-9494. Note that both the previously published prerequisites for CVE-2020-9484 and the previously published mitigations for CVE-2020-9484 also apply to this issue.

References

►

URL

Tags

	https://lists.apache.org/thread.html/rfe62fbf9d4c314f166fe8c668e50e5d9dd882a99447f26f0367474bf%40%3Cannounce.tomcat.apache.org%3E	x_refsource_MISC
	https://lists.apache.org/thread.html/rfe62fbf9d4c314f166fe8c668e50e5d9dd882a99447f26f0367474bf%40%3Cdev.tomcat.apache.org%3E	mailing-list, x_refsource_MLIST
	https://lists.apache.org/thread.html/rfe62fbf9d4c314f166fe8c668e50e5d9dd882a99447f26f0367474bf%40%3Cannounce.apache.org%3E	mailing-list, x_refsource_MLIST
	https://lists.apache.org/thread.html/rfe62fbf9d4c314f166fe8c668e50e5d9dd882a99447f26f0367474bf%40%3Cusers.tomcat.apache.org%3E	mailing-list, x_refsource_MLIST
	https://lists.apache.org/thread.html/rf6d5d57b114678d8898005faef31e9fd6d7c981fcc4ccfc3bc272fc9%40%3Cdev.tomcat.apache.org%3E	mailing-list, x_refsource_MLIST
	https://lists.apache.org/thread.html/rfe62fbf9d4c314f166fe8c668e50e5d9dd882a99447f26f0367474bf%40%3Cannounce.tomcat.apache.org%3E	mailing-list, x_refsource_MLIST
	http://www.openwall.com/lists/oss-security/2021/03/01/2	mailing-list, x_refsource_MLIST
	https://lists.debian.org/debian-lts-announce/2021/03/msg00018.html	mailing-list, x_refsource_MLIST
	https://www.debian.org/security/2021/dsa-4891	vendor-advisory, x_refsource_DEBIAN
	https://lists.apache.org/thread.html/r8a2ac0e476dbfc1e6440b09dcc782d444ad635d6da26f0284725a5dc%40%3Cusers.tomcat.apache.org%3E	mailing-list, x_refsource_MLIST
	https://lists.apache.org/thread.html/rb51ccd58b2152fc75125b2406fc93e04ca9d34e737263faa6ff0f41f%40%3Cusers.tomcat.apache.org%3E	mailing-list, x_refsource_MLIST
	https://lists.apache.org/thread.html/r732b2ca289dc02df2de820e8775559abd6c207f159e39f559547a085%40%3Cusers.tomcat.apache.org%3E	mailing-list, x_refsource_MLIST
	https://lists.apache.org/thread.html/r11ce01e8a4c7269b88f88212f21830edf73558997ac7744f37769b77%40%3Cusers.tomcat.apache.org%3E	mailing-list, x_refsource_MLIST
	https://www.oracle.com//security-alerts/cpujul2021.html	x_refsource_MISC
	https://security.netapp.com/advisory/ntap-20210409-0002/	x_refsource_CONFIRM
	https://www.oracle.com/security-alerts/cpuoct2021.html	x_refsource_MISC
	https://www.oracle.com/security-alerts/cpujan2022.html	x_refsource_MISC
	https://security.gentoo.org/glsa/202208-34	vendor-advisory, x_refsource_GENTOO

Impacted products

	Vendor	Product	Version
	Apache Software Foundation	Apache Tomcat	Version: Apache Tomcat 10 < 10.0.0 Version: Apache Tomcat 9 < 9.0.41 Version: Apache Tomcat 8.5 < 8.5.61 Version: Apache Tomcat 7 < 7.0.107

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-03T20:03:05.850Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://lists.apache.org/thread.html/rfe62fbf9d4c314f166fe8c668e50e5d9dd882a99447f26f0367474bf%40%3Cannounce.tomcat.apache.org%3E"
          },
          {
            "name": "[tomcat-dev] 20210301 [SECURITY] CVE-2021-25329 Apache Tomcat Incomplete fix for CVE-2020-9484 (RCE via session persistence)",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "https://lists.apache.org/thread.html/rfe62fbf9d4c314f166fe8c668e50e5d9dd882a99447f26f0367474bf%40%3Cdev.tomcat.apache.org%3E"
          },
          {
            "name": "[announce] 20210301 [SECURITY] CVE-2021-25329 Apache Tomcat Incomplete fix for CVE-2020-9484 (RCE via session persistence)",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "https://lists.apache.org/thread.html/rfe62fbf9d4c314f166fe8c668e50e5d9dd882a99447f26f0367474bf%40%3Cannounce.apache.org%3E"
          },
          {
            "name": "[tomcat-users] 20210301 [SECURITY] CVE-2021-25329 Apache Tomcat Incomplete fix for CVE-2020-9484 (RCE via session persistence)",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "https://lists.apache.org/thread.html/rfe62fbf9d4c314f166fe8c668e50e5d9dd882a99447f26f0367474bf%40%3Cusers.tomcat.apache.org%3E"
          },
          {
            "name": "[tomcat-dev] 20210301 svn commit: r1887027 - in /tomcat/site/trunk: docs/security-10.html docs/security-7.html docs/security-8.html docs/security-9.html xdocs/security-10.xml xdocs/security-7.xml xdocs/security-8.xml xdocs/security-9.xml",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "https://lists.apache.org/thread.html/rf6d5d57b114678d8898005faef31e9fd6d7c981fcc4ccfc3bc272fc9%40%3Cdev.tomcat.apache.org%3E"
          },
          {
            "name": "[tomcat-announce] 20210301 [SECURITY] CVE-2021-25329 Apache Tomcat Incomplete fix for CVE-2020-9484 (RCE via session persistence)",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "https://lists.apache.org/thread.html/rfe62fbf9d4c314f166fe8c668e50e5d9dd882a99447f26f0367474bf%40%3Cannounce.tomcat.apache.org%3E"
          },
          {
            "name": "[oss-security] 20210301 CVE-2021-25329: Apache Tomcat Incomplete fix for CVE-2020-9484",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "http://www.openwall.com/lists/oss-security/2021/03/01/2"
          },
          {
            "name": "[debian-lts-announce] 20210316 [SECURITY] [DLA 2596-1] tomcat8 security update",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2021/03/msg00018.html"
          },
          {
            "name": "DSA-4891",
            "tags": [
              "vendor-advisory",
              "x_refsource_DEBIAN",
              "x_transferred"
            ],
            "url": "https://www.debian.org/security/2021/dsa-4891"
          },
          {
            "name": "[tomcat-users] 20210701 What is \"h2c\"? What is CVE-2021-25329? Re: Most recent security-related update to 8.5",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "https://lists.apache.org/thread.html/r8a2ac0e476dbfc1e6440b09dcc782d444ad635d6da26f0284725a5dc%40%3Cusers.tomcat.apache.org%3E"
          },
          {
            "name": "[tomcat-users] 20210701 Re: What is \"h2c\"? What is CVE-2021-25329? Re: Most recent security-related update to 8.5",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "https://lists.apache.org/thread.html/rb51ccd58b2152fc75125b2406fc93e04ca9d34e737263faa6ff0f41f%40%3Cusers.tomcat.apache.org%3E"
          },
          {
            "name": "[tomcat-users] 20210702 Re: What is \"h2c\"? What is CVE-2021-25329? Re: Most recent security-related update to 8.5",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "https://lists.apache.org/thread.html/r732b2ca289dc02df2de820e8775559abd6c207f159e39f559547a085%40%3Cusers.tomcat.apache.org%3E"
          },
          {
            "name": "[tomcat-users] 20210702 Re: CVE-2021-25329, was Re: Most recent security-related update to 8.5",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "https://lists.apache.org/thread.html/r11ce01e8a4c7269b88f88212f21830edf73558997ac7744f37769b77%40%3Cusers.tomcat.apache.org%3E"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://www.oracle.com//security-alerts/cpujul2021.html"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://security.netapp.com/advisory/ntap-20210409-0002/"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://www.oracle.com/security-alerts/cpuoct2021.html"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://www.oracle.com/security-alerts/cpujan2022.html"
          },
          {
            "name": "GLSA-202208-34",
            "tags": [
              "vendor-advisory",
              "x_refsource_GENTOO",
              "x_transferred"
            ],
            "url": "https://security.gentoo.org/glsa/202208-34"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "Apache Tomcat",
          "vendor": "Apache Software Foundation",
          "versions": [
            {
              "lessThan": "10.0.0",
              "status": "affected",
              "version": "Apache Tomcat 10",
              "versionType": "custom"
            },
            {
              "lessThan": "9.0.41",
              "status": "affected",
              "version": "Apache Tomcat 9",
              "versionType": "custom"
            },
            {
              "lessThan": "8.5.61",
              "status": "affected",
              "version": "Apache Tomcat 8.5",
              "versionType": "custom"
            },
            {
              "lessThan": "7.0.107",
              "status": "affected",
              "version": "Apache Tomcat 7",
              "versionType": "custom"
            }
          ]
        }
      ],
      "credits": [
        {
          "lang": "en",
          "value": "This issue was identified by Trung Pham of Viettel Cyber Security."
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "The fix for CVE-2020-9484 was incomplete. When using Apache Tomcat 10.0.0-M1 to 10.0.0, 9.0.0.M1 to 9.0.41, 8.5.0 to 8.5.61 or 7.0.0. to 7.0.107 with a configuration edge case that was highly unlikely to be used, the Tomcat instance was still vulnerable to CVE-2020-9494. Note that both the previously published prerequisites for CVE-2020-9484 and the previously published mitigations for CVE-2020-9484 also apply to this issue."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "Remote code execution via session persistence",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2024-08-03T20:04:38.000Z",
        "orgId": "f0158376-9dc2-43b6-827c-5f631a4d8d09",
        "shortName": "apache"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://lists.apache.org/thread.html/rfe62fbf9d4c314f166fe8c668e50e5d9dd882a99447f26f0367474bf%40%3Cannounce.tomcat.apache.org%3E"
        },
        {
          "name": "[tomcat-dev] 20210301 [SECURITY] CVE-2021-25329 Apache Tomcat Incomplete fix for CVE-2020-9484 (RCE via session persistence)",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "https://lists.apache.org/thread.html/rfe62fbf9d4c314f166fe8c668e50e5d9dd882a99447f26f0367474bf%40%3Cdev.tomcat.apache.org%3E"
        },
        {
          "name": "[announce] 20210301 [SECURITY] CVE-2021-25329 Apache Tomcat Incomplete fix for CVE-2020-9484 (RCE via session persistence)",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "https://lists.apache.org/thread.html/rfe62fbf9d4c314f166fe8c668e50e5d9dd882a99447f26f0367474bf%40%3Cannounce.apache.org%3E"
        },
        {
          "name": "[tomcat-users] 20210301 [SECURITY] CVE-2021-25329 Apache Tomcat Incomplete fix for CVE-2020-9484 (RCE via session persistence)",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "https://lists.apache.org/thread.html/rfe62fbf9d4c314f166fe8c668e50e5d9dd882a99447f26f0367474bf%40%3Cusers.tomcat.apache.org%3E"
        },
        {
          "name": "[tomcat-dev] 20210301 svn commit: r1887027 - in /tomcat/site/trunk: docs/security-10.html docs/security-7.html docs/security-8.html docs/security-9.html xdocs/security-10.xml xdocs/security-7.xml xdocs/security-8.xml xdocs/security-9.xml",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "https://lists.apache.org/thread.html/rf6d5d57b114678d8898005faef31e9fd6d7c981fcc4ccfc3bc272fc9%40%3Cdev.tomcat.apache.org%3E"
        },
        {
          "name": "[tomcat-announce] 20210301 [SECURITY] CVE-2021-25329 Apache Tomcat Incomplete fix for CVE-2020-9484 (RCE via session persistence)",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "https://lists.apache.org/thread.html/rfe62fbf9d4c314f166fe8c668e50e5d9dd882a99447f26f0367474bf%40%3Cannounce.tomcat.apache.org%3E"
        },
        {
          "name": "[oss-security] 20210301 CVE-2021-25329: Apache Tomcat Incomplete fix for CVE-2020-9484",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "http://www.openwall.com/lists/oss-security/2021/03/01/2"
        },
        {
          "name": "[debian-lts-announce] 20210316 [SECURITY] [DLA 2596-1] tomcat8 security update",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "https://lists.debian.org/debian-lts-announce/2021/03/msg00018.html"
        },
        {
          "name": "DSA-4891",
          "tags": [
            "vendor-advisory",
            "x_refsource_DEBIAN"
          ],
          "url": "https://www.debian.org/security/2021/dsa-4891"
        },
        {
          "name": "[tomcat-users] 20210701 What is \"h2c\"? What is CVE-2021-25329? Re: Most recent security-related update to 8.5",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "https://lists.apache.org/thread.html/r8a2ac0e476dbfc1e6440b09dcc782d444ad635d6da26f0284725a5dc%40%3Cusers.tomcat.apache.org%3E"
        },
        {
          "name": "[tomcat-users] 20210701 Re: What is \"h2c\"? What is CVE-2021-25329? Re: Most recent security-related update to 8.5",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "https://lists.apache.org/thread.html/rb51ccd58b2152fc75125b2406fc93e04ca9d34e737263faa6ff0f41f%40%3Cusers.tomcat.apache.org%3E"
        },
        {
          "name": "[tomcat-users] 20210702 Re: What is \"h2c\"? What is CVE-2021-25329? Re: Most recent security-related update to 8.5",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "https://lists.apache.org/thread.html/r732b2ca289dc02df2de820e8775559abd6c207f159e39f559547a085%40%3Cusers.tomcat.apache.org%3E"
        },
        {
          "name": "[tomcat-users] 20210702 Re: CVE-2021-25329, was Re: Most recent security-related update to 8.5",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "https://lists.apache.org/thread.html/r11ce01e8a4c7269b88f88212f21830edf73558997ac7744f37769b77%40%3Cusers.tomcat.apache.org%3E"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://www.oracle.com//security-alerts/cpujul2021.html"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://security.netapp.com/advisory/ntap-20210409-0002/"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://www.oracle.com/security-alerts/cpuoct2021.html"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://www.oracle.com/security-alerts/cpujan2022.html"
        },
        {
          "name": "GLSA-202208-34",
          "tags": [
            "vendor-advisory",
            "x_refsource_GENTOO"
          ],
          "url": "https://security.gentoo.org/glsa/202208-34"
        }
      ],
      "source": {
        "discovery": "UNKNOWN"
      },
      "title": "Incomplete fix for CVE-2020-9484",
      "x_generator": {
        "engine": "Vulnogram 0.0.9"
      },
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "security@apache.org",
          "ID": "CVE-2021-25329",
          "STATE": "PUBLIC",
          "TITLE": "Incomplete fix for CVE-2020-9484"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "Apache Tomcat",
                      "version": {
                        "version_data": [
                          {
                            "version_affected": "\u003c",
                            "version_name": "Apache Tomcat 10",
                            "version_value": "10.0.0"
                          },
                          {
                            "version_affected": "\u003c",
                            "version_name": "Apache Tomcat 9",
                            "version_value": "9.0.41"
                          },
                          {
                            "version_affected": "\u003c",
                            "version_name": "Apache Tomcat 8.5",
                            "version_value": "8.5.61"
                          },
                          {
                            "version_affected": "\u003c",
                            "version_name": "Apache Tomcat 7",
                            "version_value": "7.0.107"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "Apache Software Foundation"
              }
            ]
          }
        },
        "credit": [
          {
            "lang": "eng",
            "value": "This issue was identified by Trung Pham of Viettel Cyber Security."
          }
        ],
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "The fix for CVE-2020-9484 was incomplete. When using Apache Tomcat 10.0.0-M1 to 10.0.0, 9.0.0.M1 to 9.0.41, 8.5.0 to 8.5.61 or 7.0.0. to 7.0.107 with a configuration edge case that was highly unlikely to be used, the Tomcat instance was still vulnerable to CVE-2020-9494. Note that both the previously published prerequisites for CVE-2020-9484 and the previously published mitigations for CVE-2020-9484 also apply to this issue."
            }
          ]
        },
        "generator": {
          "engine": "Vulnogram 0.0.9"
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "Remote code execution via session persistence"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://lists.apache.org/thread.html/rfe62fbf9d4c314f166fe8c668e50e5d9dd882a99447f26f0367474bf%40%3Cannounce.tomcat.apache.org%3E",
              "refsource": "MISC",
              "url": "https://lists.apache.org/thread.html/rfe62fbf9d4c314f166fe8c668e50e5d9dd882a99447f26f0367474bf%40%3Cannounce.tomcat.apache.org%3E"
            },
            {
              "name": "[tomcat-dev] 20210301 [SECURITY] CVE-2021-25329 Apache Tomcat Incomplete fix for CVE-2020-9484 (RCE via session persistence)",
              "refsource": "MLIST",
              "url": "https://lists.apache.org/thread.html/rfe62fbf9d4c314f166fe8c668e50e5d9dd882a99447f26f0367474bf@%3Cdev.tomcat.apache.org%3E"
            },
            {
              "name": "[announce] 20210301 [SECURITY] CVE-2021-25329 Apache Tomcat Incomplete fix for CVE-2020-9484 (RCE via session persistence)",
              "refsource": "MLIST",
              "url": "https://lists.apache.org/thread.html/rfe62fbf9d4c314f166fe8c668e50e5d9dd882a99447f26f0367474bf@%3Cannounce.apache.org%3E"
            },
            {
              "name": "[tomcat-users] 20210301 [SECURITY] CVE-2021-25329 Apache Tomcat Incomplete fix for CVE-2020-9484 (RCE via session persistence)",
              "refsource": "MLIST",
              "url": "https://lists.apache.org/thread.html/rfe62fbf9d4c314f166fe8c668e50e5d9dd882a99447f26f0367474bf@%3Cusers.tomcat.apache.org%3E"
            },
            {
              "name": "[tomcat-dev] 20210301 svn commit: r1887027 - in /tomcat/site/trunk: docs/security-10.html docs/security-7.html docs/security-8.html docs/security-9.html xdocs/security-10.xml xdocs/security-7.xml xdocs/security-8.xml xdocs/security-9.xml",
              "refsource": "MLIST",
              "url": "https://lists.apache.org/thread.html/rf6d5d57b114678d8898005faef31e9fd6d7c981fcc4ccfc3bc272fc9@%3Cdev.tomcat.apache.org%3E"
            },
            {
              "name": "[tomcat-announce] 20210301 [SECURITY] CVE-2021-25329 Apache Tomcat Incomplete fix for CVE-2020-9484 (RCE via session persistence)",
              "refsource": "MLIST",
              "url": "https://lists.apache.org/thread.html/rfe62fbf9d4c314f166fe8c668e50e5d9dd882a99447f26f0367474bf@%3Cannounce.tomcat.apache.org%3E"
            },
            {
              "name": "[oss-security] 20210301 CVE-2021-25329: Apache Tomcat Incomplete fix for CVE-2020-9484",
              "refsource": "MLIST",
              "url": "http://www.openwall.com/lists/oss-security/2021/03/01/2"
            },
            {
              "name": "[debian-lts-announce] 20210316 [SECURITY] [DLA 2596-1] tomcat8 security update",
              "refsource": "MLIST",
              "url": "https://lists.debian.org/debian-lts-announce/2021/03/msg00018.html"
            },
            {
              "name": "DSA-4891",
              "refsource": "DEBIAN",
              "url": "https://www.debian.org/security/2021/dsa-4891"
            },
            {
              "name": "[tomcat-users] 20210701 What is \"h2c\"? What is CVE-2021-25329? Re: Most recent security-related update to 8.5",
              "refsource": "MLIST",
              "url": "https://lists.apache.org/thread.html/r8a2ac0e476dbfc1e6440b09dcc782d444ad635d6da26f0284725a5dc@%3Cusers.tomcat.apache.org%3E"
            },
            {
              "name": "[tomcat-users] 20210701 Re: What is \"h2c\"? What is CVE-2021-25329? Re: Most recent security-related update to 8.5",
              "refsource": "MLIST",
              "url": "https://lists.apache.org/thread.html/rb51ccd58b2152fc75125b2406fc93e04ca9d34e737263faa6ff0f41f@%3Cusers.tomcat.apache.org%3E"
            },
            {
              "name": "[tomcat-users] 20210702 Re: What is \"h2c\"? What is CVE-2021-25329? Re: Most recent security-related update to 8.5",
              "refsource": "MLIST",
              "url": "https://lists.apache.org/thread.html/r732b2ca289dc02df2de820e8775559abd6c207f159e39f559547a085@%3Cusers.tomcat.apache.org%3E"
            },
            {
              "name": "[tomcat-users] 20210702 Re: CVE-2021-25329, was Re: Most recent security-related update to 8.5",
              "refsource": "MLIST",
              "url": "https://lists.apache.org/thread.html/r11ce01e8a4c7269b88f88212f21830edf73558997ac7744f37769b77@%3Cusers.tomcat.apache.org%3E"
            },
            {
              "name": "https://www.oracle.com//security-alerts/cpujul2021.html",
              "refsource": "MISC",
              "url": "https://www.oracle.com//security-alerts/cpujul2021.html"
            },
            {
              "name": "https://security.netapp.com/advisory/ntap-20210409-0002/",
              "refsource": "CONFIRM",
              "url": "https://security.netapp.com/advisory/ntap-20210409-0002/"
            },
            {
              "name": "https://www.oracle.com/security-alerts/cpuoct2021.html",
              "refsource": "MISC",
              "url": "https://www.oracle.com/security-alerts/cpuoct2021.html"
            },
            {
              "name": "https://www.oracle.com/security-alerts/cpujan2022.html",
              "refsource": "MISC",
              "url": "https://www.oracle.com/security-alerts/cpujan2022.html"
            },
            {
              "name": "GLSA-202208-34",
              "refsource": "GENTOO",
              "url": "https://security.gentoo.org/glsa/202208-34"
            }
          ]
        },
        "source": {
          "discovery": "UNKNOWN"
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "f0158376-9dc2-43b6-827c-5f631a4d8d09",
    "assignerShortName": "apache",
    "cveId": "CVE-2021-25329",
    "datePublished": "2021-03-01T12:00:20.000Z",
    "dateReserved": "2021-01-19T00:00:00.000Z",
    "dateUpdated": "2025-02-13T16:27:48.719Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2021-24122 (GCVE-0-2021-24122)

Vulnerability from cvelistv5

Published

2021-01-14 14:45

Modified

2025-02-13 16:27

Severity ?

CWE

CWE-200 - Information Exposure

Summary

When serving resources from a network location using the NTFS file system, Apache Tomcat versions 10.0.0-M1 to 10.0.0-M9, 9.0.0.M1 to 9.0.39, 8.5.0 to 8.5.59 and 7.0.0 to 7.0.106 were susceptible to JSP source code disclosure in some configurations. The root cause was the unexpected behaviour of the JRE API File.getCanonicalPath() which in turn was caused by the inconsistent behaviour of the Windows API (FindFirstFileW) in some circumstances.

References

►

URL

Tags

	https://lists.apache.org/thread.html/r1595889b083e05986f42b944dc43060d6b083022260b6ea64d2cec52%40%3Cannounce.tomcat.apache.org%3E	x_refsource_MISC
	https://lists.apache.org/thread.html/r1595889b083e05986f42b944dc43060d6b083022260b6ea64d2cec52%40%3Cannounce.tomcat.apache.org%3E	mailing-list, x_refsource_MLIST
	https://lists.apache.org/thread.html/rca833c6d42b7b9ce1563488c0929f29fcc95947d86e5e740258c8937%40%3Cdev.tomcat.apache.org%3E	mailing-list, x_refsource_MLIST
	https://lists.apache.org/thread.html/r776c64337495bf28b7d5597268114a888e3fad6045c40a0da0c66d4d%40%3Cdev.tomee.apache.org%3E	mailing-list, x_refsource_MLIST
	http://www.openwall.com/lists/oss-security/2021/01/14/1	mailing-list, x_refsource_MLIST
	https://lists.apache.org/thread.html/r1595889b083e05986f42b944dc43060d6b083022260b6ea64d2cec52%40%3Cannounce.apache.org%3E	mailing-list, x_refsource_MLIST
	https://lists.apache.org/thread.html/r7e0bb9ea415724550e2b325e143b23e269579e54d66fcd7754bd0c20%40%3Cdev.tomcat.apache.org%3E	mailing-list, x_refsource_MLIST
	https://lists.apache.org/thread.html/rb32a73b7cb919d4f44a2596b6b951274c0004fc8b0e393d6829a45f9%40%3Cusers.tomcat.apache.org%3E	mailing-list, x_refsource_MLIST
	https://lists.apache.org/thread.html/r7382e1e35b9bc7c8f320b90ad77e74c13172d08034e20c18000fe710%40%3Cdev.tomee.apache.org%3E	mailing-list, x_refsource_MLIST
	https://lists.debian.org/debian-lts-announce/2021/03/msg00018.html	mailing-list, x_refsource_MLIST
	https://www.oracle.com//security-alerts/cpujul2021.html	x_refsource_MISC
	https://security.netapp.com/advisory/ntap-20210212-0008/	x_refsource_CONFIRM

Impacted products

	Vendor	Product	Version
	Apache Software Foundation	Apache Tomcat	Version: Apache Tomcat 10 < 10.0.0-M10 Version: Apache Tomcat 9 < 9.0.40 Version: Apache Tomcat 8.5 < 8.5.60 Version: Apache Tomcat 7 < 7.0.106

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-03T19:21:18.637Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://lists.apache.org/thread.html/r1595889b083e05986f42b944dc43060d6b083022260b6ea64d2cec52%40%3Cannounce.tomcat.apache.org%3E"
          },
          {
            "name": "[tomcat-announce] 20210114 [SECURITY] CVE-2021-24122 Apache Tomcat Information Disclosure",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "https://lists.apache.org/thread.html/r1595889b083e05986f42b944dc43060d6b083022260b6ea64d2cec52%40%3Cannounce.tomcat.apache.org%3E"
          },
          {
            "name": "[tomcat-dev] 20210114 svn commit: r1885488 - in /tomcat/site/trunk: docs/security-10.html docs/security-7.html docs/security-8.html docs/security-9.html xdocs/security-10.xml xdocs/security-7.xml xdocs/security-8.xml xdocs/security-9.xml",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "https://lists.apache.org/thread.html/rca833c6d42b7b9ce1563488c0929f29fcc95947d86e5e740258c8937%40%3Cdev.tomcat.apache.org%3E"
          },
          {
            "name": "[tomee-dev] 20210114 Re: Releases?",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "https://lists.apache.org/thread.html/r776c64337495bf28b7d5597268114a888e3fad6045c40a0da0c66d4d%40%3Cdev.tomee.apache.org%3E"
          },
          {
            "name": "[oss-security] 20210114 [SECURITY] CVE-2021-24122 Apache Tomcat Information Disclosure",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "http://www.openwall.com/lists/oss-security/2021/01/14/1"
          },
          {
            "name": "[announce] 20210114 [SECURITY] CVE-2021-24122 Apache Tomcat Information Disclosure",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "https://lists.apache.org/thread.html/r1595889b083e05986f42b944dc43060d6b083022260b6ea64d2cec52%40%3Cannounce.apache.org%3E"
          },
          {
            "name": "[tomcat-dev] 20210114 [SECURITY] CVE-2021-24122 Apache Tomcat Information Disclosure",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "https://lists.apache.org/thread.html/r7e0bb9ea415724550e2b325e143b23e269579e54d66fcd7754bd0c20%40%3Cdev.tomcat.apache.org%3E"
          },
          {
            "name": "[tomcat-users] 20210114 [SECURITY] CVE-2021-24122 Apache Tomcat Information Disclosure",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "https://lists.apache.org/thread.html/rb32a73b7cb919d4f44a2596b6b951274c0004fc8b0e393d6829a45f9%40%3Cusers.tomcat.apache.org%3E"
          },
          {
            "name": "[tomee-dev] 20210115 CVE-2021-24122 NTFS Information Disclosure Bug",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "https://lists.apache.org/thread.html/r7382e1e35b9bc7c8f320b90ad77e74c13172d08034e20c18000fe710%40%3Cdev.tomee.apache.org%3E"
          },
          {
            "name": "[debian-lts-announce] 20210316 [SECURITY] [DLA 2596-1] tomcat8 security update",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2021/03/msg00018.html"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://www.oracle.com//security-alerts/cpujul2021.html"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://security.netapp.com/advisory/ntap-20210212-0008/"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "Apache Tomcat",
          "vendor": "Apache Software Foundation",
          "versions": [
            {
              "lessThan": "10.0.0-M10",
              "status": "affected",
              "version": "Apache Tomcat 10",
              "versionType": "custom"
            },
            {
              "lessThan": "9.0.40",
              "status": "affected",
              "version": "Apache Tomcat 9",
              "versionType": "custom"
            },
            {
              "lessThan": "8.5.60",
              "status": "affected",
              "version": "Apache Tomcat 8.5",
              "versionType": "custom"
            },
            {
              "lessThan": "7.0.106",
              "status": "affected",
              "version": "Apache Tomcat 7",
              "versionType": "custom"
            }
          ]
        }
      ],
      "credits": [
        {
          "lang": "en",
          "value": "This issue was identified by Ilja Brander."
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "When serving resources from a network location using the NTFS file system, Apache Tomcat versions 10.0.0-M1 to 10.0.0-M9, 9.0.0.M1 to 9.0.39, 8.5.0 to 8.5.59 and 7.0.0 to 7.0.106 were susceptible to JSP source code disclosure in some configurations. The root cause was the unexpected behaviour of the JRE API File.getCanonicalPath() which in turn was caused by the inconsistent behaviour of the Windows API (FindFirstFileW) in some circumstances."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-200",
              "description": "CWE-200 Information Exposure",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2024-08-03T19:22:50.000Z",
        "orgId": "f0158376-9dc2-43b6-827c-5f631a4d8d09",
        "shortName": "apache"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://lists.apache.org/thread.html/r1595889b083e05986f42b944dc43060d6b083022260b6ea64d2cec52%40%3Cannounce.tomcat.apache.org%3E"
        },
        {
          "name": "[tomcat-announce] 20210114 [SECURITY] CVE-2021-24122 Apache Tomcat Information Disclosure",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "https://lists.apache.org/thread.html/r1595889b083e05986f42b944dc43060d6b083022260b6ea64d2cec52%40%3Cannounce.tomcat.apache.org%3E"
        },
        {
          "name": "[tomcat-dev] 20210114 svn commit: r1885488 - in /tomcat/site/trunk: docs/security-10.html docs/security-7.html docs/security-8.html docs/security-9.html xdocs/security-10.xml xdocs/security-7.xml xdocs/security-8.xml xdocs/security-9.xml",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "https://lists.apache.org/thread.html/rca833c6d42b7b9ce1563488c0929f29fcc95947d86e5e740258c8937%40%3Cdev.tomcat.apache.org%3E"
        },
        {
          "name": "[tomee-dev] 20210114 Re: Releases?",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "https://lists.apache.org/thread.html/r776c64337495bf28b7d5597268114a888e3fad6045c40a0da0c66d4d%40%3Cdev.tomee.apache.org%3E"
        },
        {
          "name": "[oss-security] 20210114 [SECURITY] CVE-2021-24122 Apache Tomcat Information Disclosure",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "http://www.openwall.com/lists/oss-security/2021/01/14/1"
        },
        {
          "name": "[announce] 20210114 [SECURITY] CVE-2021-24122 Apache Tomcat Information Disclosure",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "https://lists.apache.org/thread.html/r1595889b083e05986f42b944dc43060d6b083022260b6ea64d2cec52%40%3Cannounce.apache.org%3E"
        },
        {
          "name": "[tomcat-dev] 20210114 [SECURITY] CVE-2021-24122 Apache Tomcat Information Disclosure",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "https://lists.apache.org/thread.html/r7e0bb9ea415724550e2b325e143b23e269579e54d66fcd7754bd0c20%40%3Cdev.tomcat.apache.org%3E"
        },
        {
          "name": "[tomcat-users] 20210114 [SECURITY] CVE-2021-24122 Apache Tomcat Information Disclosure",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "https://lists.apache.org/thread.html/rb32a73b7cb919d4f44a2596b6b951274c0004fc8b0e393d6829a45f9%40%3Cusers.tomcat.apache.org%3E"
        },
        {
          "name": "[tomee-dev] 20210115 CVE-2021-24122 NTFS Information Disclosure Bug",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "https://lists.apache.org/thread.html/r7382e1e35b9bc7c8f320b90ad77e74c13172d08034e20c18000fe710%40%3Cdev.tomee.apache.org%3E"
        },
        {
          "name": "[debian-lts-announce] 20210316 [SECURITY] [DLA 2596-1] tomcat8 security update",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "https://lists.debian.org/debian-lts-announce/2021/03/msg00018.html"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://www.oracle.com//security-alerts/cpujul2021.html"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://security.netapp.com/advisory/ntap-20210212-0008/"
        }
      ],
      "source": {
        "discovery": "UNKNOWN"
      },
      "title": "Apache Tomcat information disclosure",
      "x_generator": {
        "engine": "Vulnogram 0.0.9"
      },
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "security@apache.org",
          "ID": "CVE-2021-24122",
          "STATE": "PUBLIC",
          "TITLE": "Apache Tomcat information disclosure"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "Apache Tomcat",
                      "version": {
                        "version_data": [
                          {
                            "version_affected": "\u003c",
                            "version_name": "Apache Tomcat 10",
                            "version_value": "10.0.0-M10"
                          },
                          {
                            "version_affected": "\u003c",
                            "version_name": "Apache Tomcat 9",
                            "version_value": "9.0.40"
                          },
                          {
                            "version_affected": "\u003c",
                            "version_name": "Apache Tomcat 8.5",
                            "version_value": "8.5.60"
                          },
                          {
                            "version_affected": "\u003c",
                            "version_name": "Apache Tomcat 7",
                            "version_value": "7.0.106"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "Apache Software Foundation"
              }
            ]
          }
        },
        "credit": [
          {
            "lang": "eng",
            "value": "This issue was identified by Ilja Brander."
          }
        ],
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "When serving resources from a network location using the NTFS file system, Apache Tomcat versions 10.0.0-M1 to 10.0.0-M9, 9.0.0.M1 to 9.0.39, 8.5.0 to 8.5.59 and 7.0.0 to 7.0.106 were susceptible to JSP source code disclosure in some configurations. The root cause was the unexpected behaviour of the JRE API File.getCanonicalPath() which in turn was caused by the inconsistent behaviour of the Windows API (FindFirstFileW) in some circumstances."
            }
          ]
        },
        "generator": {
          "engine": "Vulnogram 0.0.9"
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "CWE-200 Information Exposure"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://lists.apache.org/thread.html/r1595889b083e05986f42b944dc43060d6b083022260b6ea64d2cec52%40%3Cannounce.tomcat.apache.org%3E",
              "refsource": "MISC",
              "url": "https://lists.apache.org/thread.html/r1595889b083e05986f42b944dc43060d6b083022260b6ea64d2cec52%40%3Cannounce.tomcat.apache.org%3E"
            },
            {
              "name": "[tomcat-announce] 20210114 [SECURITY] CVE-2021-24122 Apache Tomcat Information Disclosure",
              "refsource": "MLIST",
              "url": "https://lists.apache.org/thread.html/r1595889b083e05986f42b944dc43060d6b083022260b6ea64d2cec52@%3Cannounce.tomcat.apache.org%3E"
            },
            {
              "name": "[tomcat-dev] 20210114 svn commit: r1885488 - in /tomcat/site/trunk: docs/security-10.html docs/security-7.html docs/security-8.html docs/security-9.html xdocs/security-10.xml xdocs/security-7.xml xdocs/security-8.xml xdocs/security-9.xml",
              "refsource": "MLIST",
              "url": "https://lists.apache.org/thread.html/rca833c6d42b7b9ce1563488c0929f29fcc95947d86e5e740258c8937@%3Cdev.tomcat.apache.org%3E"
            },
            {
              "name": "[tomee-dev] 20210114 Re: Releases?",
              "refsource": "MLIST",
              "url": "https://lists.apache.org/thread.html/r776c64337495bf28b7d5597268114a888e3fad6045c40a0da0c66d4d@%3Cdev.tomee.apache.org%3E"
            },
            {
              "name": "[oss-security] 20210114 [SECURITY] CVE-2021-24122 Apache Tomcat Information Disclosure",
              "refsource": "MLIST",
              "url": "http://www.openwall.com/lists/oss-security/2021/01/14/1"
            },
            {
              "name": "[announce] 20210114 [SECURITY] CVE-2021-24122 Apache Tomcat Information Disclosure",
              "refsource": "MLIST",
              "url": "https://lists.apache.org/thread.html/r1595889b083e05986f42b944dc43060d6b083022260b6ea64d2cec52@%3Cannounce.apache.org%3E"
            },
            {
              "name": "[tomcat-dev] 20210114 [SECURITY] CVE-2021-24122 Apache Tomcat Information Disclosure",
              "refsource": "MLIST",
              "url": "https://lists.apache.org/thread.html/r7e0bb9ea415724550e2b325e143b23e269579e54d66fcd7754bd0c20@%3Cdev.tomcat.apache.org%3E"
            },
            {
              "name": "[tomcat-users] 20210114 [SECURITY] CVE-2021-24122 Apache Tomcat Information Disclosure",
              "refsource": "MLIST",
              "url": "https://lists.apache.org/thread.html/rb32a73b7cb919d4f44a2596b6b951274c0004fc8b0e393d6829a45f9@%3Cusers.tomcat.apache.org%3E"
            },
            {
              "name": "[tomee-dev] 20210115 CVE-2021-24122 NTFS Information Disclosure Bug",
              "refsource": "MLIST",
              "url": "https://lists.apache.org/thread.html/r7382e1e35b9bc7c8f320b90ad77e74c13172d08034e20c18000fe710@%3Cdev.tomee.apache.org%3E"
            },
            {
              "name": "[debian-lts-announce] 20210316 [SECURITY] [DLA 2596-1] tomcat8 security update",
              "refsource": "MLIST",
              "url": "https://lists.debian.org/debian-lts-announce/2021/03/msg00018.html"
            },
            {
              "name": "https://www.oracle.com//security-alerts/cpujul2021.html",
              "refsource": "MISC",
              "url": "https://www.oracle.com//security-alerts/cpujul2021.html"
            },
            {
              "name": "https://security.netapp.com/advisory/ntap-20210212-0008/",
              "refsource": "CONFIRM",
              "url": "https://security.netapp.com/advisory/ntap-20210212-0008/"
            }
          ]
        },
        "source": {
          "discovery": "UNKNOWN"
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "f0158376-9dc2-43b6-827c-5f631a4d8d09",
    "assignerShortName": "apache",
    "cveId": "CVE-2021-24122",
    "datePublished": "2021-01-14T14:45:18.000Z",
    "dateReserved": "2021-01-14T00:00:00.000Z",
    "dateUpdated": "2025-02-13T16:27:47.566Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2021-25122 (GCVE-0-2021-25122)

Vulnerability from cvelistv5

Published

2021-03-01 12:00

Modified

2025-02-13 16:27

Severity ?

CWE

CWE-200 - Information Exposure

Summary

When responding to new h2c connection requests, Apache Tomcat versions 10.0.0-M1 to 10.0.0, 9.0.0.M1 to 9.0.41 and 8.5.0 to 8.5.61 could duplicate request headers and a limited amount of request body from one request to another meaning user A and user B could both see the results of user A's request.

References

►

URL

Tags

	https://lists.apache.org/thread.html/r7b95bc248603360501f18c8eb03bb6001ec0ee3296205b34b07105b7%40%3Cannounce.tomcat.apache.org%3E	x_refsource_MISC
	https://lists.apache.org/thread.html/r7b95bc248603360501f18c8eb03bb6001ec0ee3296205b34b07105b7%40%3Cannounce.tomcat.apache.org%3E	mailing-list, x_refsource_MLIST
	https://lists.apache.org/thread.html/r7b95bc248603360501f18c8eb03bb6001ec0ee3296205b34b07105b7%40%3Cusers.tomcat.apache.org%3E	mailing-list, x_refsource_MLIST
	https://lists.apache.org/thread.html/r7b95bc248603360501f18c8eb03bb6001ec0ee3296205b34b07105b7%40%3Cdev.tomcat.apache.org%3E	mailing-list, x_refsource_MLIST
	https://lists.apache.org/thread.html/rf6d5d57b114678d8898005faef31e9fd6d7c981fcc4ccfc3bc272fc9%40%3Cdev.tomcat.apache.org%3E	mailing-list, x_refsource_MLIST
	https://lists.apache.org/thread.html/r7b95bc248603360501f18c8eb03bb6001ec0ee3296205b34b07105b7%40%3Cannounce.apache.org%3E	mailing-list, x_refsource_MLIST
	http://www.openwall.com/lists/oss-security/2021/03/01/1	mailing-list, x_refsource_MLIST
	https://lists.apache.org/thread.html/rcd90bf36b1877e1310b87ecd14ed7bbb15da52b297efd9f0e7253a3b%40%3Cusers.tomcat.apache.org%3E	mailing-list, x_refsource_MLIST
	https://lists.apache.org/thread.html/rd0463f9a5cbc02a485404c4b990f0da452e5ac5c237808edba11c947%40%3Cusers.tomcat.apache.org%3E	mailing-list, x_refsource_MLIST
	https://lists.debian.org/debian-lts-announce/2021/03/msg00018.html	mailing-list, x_refsource_MLIST
	https://www.debian.org/security/2021/dsa-4891	vendor-advisory, x_refsource_DEBIAN
	https://www.oracle.com//security-alerts/cpujul2021.html	x_refsource_MISC
	https://security.netapp.com/advisory/ntap-20210409-0002/	x_refsource_CONFIRM
	https://www.oracle.com/security-alerts/cpuoct2021.html	x_refsource_MISC
	https://www.oracle.com/security-alerts/cpujan2022.html	x_refsource_MISC
	https://security.gentoo.org/glsa/202208-34	vendor-advisory, x_refsource_GENTOO

Impacted products

	Vendor	Product	Version
	Apache Software Foundation	Apache Tomcat	Version: Apache Tomcat 10 < 10.0.2 Version: Apache Tomcat 9 < 9.0.42 Version: Apache Tomcat 8.5 < 8.5.62

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-03T19:56:10.384Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://lists.apache.org/thread.html/r7b95bc248603360501f18c8eb03bb6001ec0ee3296205b34b07105b7%40%3Cannounce.tomcat.apache.org%3E"
          },
          {
            "name": "[tomcat-announce] 20210301 [SECURITY] CVE-2021-25122 Apache Tomcat h2c request mix-up",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "https://lists.apache.org/thread.html/r7b95bc248603360501f18c8eb03bb6001ec0ee3296205b34b07105b7%40%3Cannounce.tomcat.apache.org%3E"
          },
          {
            "name": "[tomcat-users] 20210301 [SECURITY] CVE-2021-25122 Apache Tomcat h2c request mix-up",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "https://lists.apache.org/thread.html/r7b95bc248603360501f18c8eb03bb6001ec0ee3296205b34b07105b7%40%3Cusers.tomcat.apache.org%3E"
          },
          {
            "name": "[tomcat-dev] 20210301 [SECURITY] CVE-2021-25122 Apache Tomcat h2c request mix-up",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "https://lists.apache.org/thread.html/r7b95bc248603360501f18c8eb03bb6001ec0ee3296205b34b07105b7%40%3Cdev.tomcat.apache.org%3E"
          },
          {
            "name": "[tomcat-dev] 20210301 svn commit: r1887027 - in /tomcat/site/trunk: docs/security-10.html docs/security-7.html docs/security-8.html docs/security-9.html xdocs/security-10.xml xdocs/security-7.xml xdocs/security-8.xml xdocs/security-9.xml",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "https://lists.apache.org/thread.html/rf6d5d57b114678d8898005faef31e9fd6d7c981fcc4ccfc3bc272fc9%40%3Cdev.tomcat.apache.org%3E"
          },
          {
            "name": "[announce] 20210301 [SECURITY] CVE-2021-25122 Apache Tomcat h2c request mix-up",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "https://lists.apache.org/thread.html/r7b95bc248603360501f18c8eb03bb6001ec0ee3296205b34b07105b7%40%3Cannounce.apache.org%3E"
          },
          {
            "name": "[oss-security] 20210301 CVE-2021-25122: Apache Tomcat h2c request mix-up",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "http://www.openwall.com/lists/oss-security/2021/03/01/1"
          },
          {
            "name": "[tomcat-users] 20210305 RE: [SECURITY] CVE-2021-25122 Apache Tomcat h2c request mix-up",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "https://lists.apache.org/thread.html/rcd90bf36b1877e1310b87ecd14ed7bbb15da52b297efd9f0e7253a3b%40%3Cusers.tomcat.apache.org%3E"
          },
          {
            "name": "[tomcat-users] 20210305 Re: [SECURITY] CVE-2021-25122 Apache Tomcat h2c request mix-up",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "https://lists.apache.org/thread.html/rd0463f9a5cbc02a485404c4b990f0da452e5ac5c237808edba11c947%40%3Cusers.tomcat.apache.org%3E"
          },
          {
            "name": "[debian-lts-announce] 20210316 [SECURITY] [DLA 2596-1] tomcat8 security update",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2021/03/msg00018.html"
          },
          {
            "name": "DSA-4891",
            "tags": [
              "vendor-advisory",
              "x_refsource_DEBIAN",
              "x_transferred"
            ],
            "url": "https://www.debian.org/security/2021/dsa-4891"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://www.oracle.com//security-alerts/cpujul2021.html"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://security.netapp.com/advisory/ntap-20210409-0002/"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://www.oracle.com/security-alerts/cpuoct2021.html"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://www.oracle.com/security-alerts/cpujan2022.html"
          },
          {
            "name": "GLSA-202208-34",
            "tags": [
              "vendor-advisory",
              "x_refsource_GENTOO",
              "x_transferred"
            ],
            "url": "https://security.gentoo.org/glsa/202208-34"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "Apache Tomcat",
          "vendor": "Apache Software Foundation",
          "versions": [
            {
              "lessThan": "10.0.2",
              "status": "affected",
              "version": "Apache Tomcat 10",
              "versionType": "custom"
            },
            {
              "lessThan": "9.0.42",
              "status": "affected",
              "version": "Apache Tomcat 9",
              "versionType": "custom"
            },
            {
              "lessThan": "8.5.62",
              "status": "affected",
              "version": "Apache Tomcat 8.5",
              "versionType": "custom"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "When responding to new h2c connection requests, Apache Tomcat versions 10.0.0-M1 to 10.0.0, 9.0.0.M1 to 9.0.41 and 8.5.0 to 8.5.61 could duplicate request headers and a limited amount of request body from one request to another meaning user A and user B could both see the results of user A\u0027s request."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-200",
              "description": "CWE-200 Information Exposure",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2024-08-03T19:56:19.000Z",
        "orgId": "f0158376-9dc2-43b6-827c-5f631a4d8d09",
        "shortName": "apache"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://lists.apache.org/thread.html/r7b95bc248603360501f18c8eb03bb6001ec0ee3296205b34b07105b7%40%3Cannounce.tomcat.apache.org%3E"
        },
        {
          "name": "[tomcat-announce] 20210301 [SECURITY] CVE-2021-25122 Apache Tomcat h2c request mix-up",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "https://lists.apache.org/thread.html/r7b95bc248603360501f18c8eb03bb6001ec0ee3296205b34b07105b7%40%3Cannounce.tomcat.apache.org%3E"
        },
        {
          "name": "[tomcat-users] 20210301 [SECURITY] CVE-2021-25122 Apache Tomcat h2c request mix-up",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "https://lists.apache.org/thread.html/r7b95bc248603360501f18c8eb03bb6001ec0ee3296205b34b07105b7%40%3Cusers.tomcat.apache.org%3E"
        },
        {
          "name": "[tomcat-dev] 20210301 [SECURITY] CVE-2021-25122 Apache Tomcat h2c request mix-up",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "https://lists.apache.org/thread.html/r7b95bc248603360501f18c8eb03bb6001ec0ee3296205b34b07105b7%40%3Cdev.tomcat.apache.org%3E"
        },
        {
          "name": "[tomcat-dev] 20210301 svn commit: r1887027 - in /tomcat/site/trunk: docs/security-10.html docs/security-7.html docs/security-8.html docs/security-9.html xdocs/security-10.xml xdocs/security-7.xml xdocs/security-8.xml xdocs/security-9.xml",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "https://lists.apache.org/thread.html/rf6d5d57b114678d8898005faef31e9fd6d7c981fcc4ccfc3bc272fc9%40%3Cdev.tomcat.apache.org%3E"
        },
        {
          "name": "[announce] 20210301 [SECURITY] CVE-2021-25122 Apache Tomcat h2c request mix-up",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "https://lists.apache.org/thread.html/r7b95bc248603360501f18c8eb03bb6001ec0ee3296205b34b07105b7%40%3Cannounce.apache.org%3E"
        },
        {
          "name": "[oss-security] 20210301 CVE-2021-25122: Apache Tomcat h2c request mix-up",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "http://www.openwall.com/lists/oss-security/2021/03/01/1"
        },
        {
          "name": "[tomcat-users] 20210305 RE: [SECURITY] CVE-2021-25122 Apache Tomcat h2c request mix-up",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "https://lists.apache.org/thread.html/rcd90bf36b1877e1310b87ecd14ed7bbb15da52b297efd9f0e7253a3b%40%3Cusers.tomcat.apache.org%3E"
        },
        {
          "name": "[tomcat-users] 20210305 Re: [SECURITY] CVE-2021-25122 Apache Tomcat h2c request mix-up",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "https://lists.apache.org/thread.html/rd0463f9a5cbc02a485404c4b990f0da452e5ac5c237808edba11c947%40%3Cusers.tomcat.apache.org%3E"
        },
        {
          "name": "[debian-lts-announce] 20210316 [SECURITY] [DLA 2596-1] tomcat8 security update",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "https://lists.debian.org/debian-lts-announce/2021/03/msg00018.html"
        },
        {
          "name": "DSA-4891",
          "tags": [
            "vendor-advisory",
            "x_refsource_DEBIAN"
          ],
          "url": "https://www.debian.org/security/2021/dsa-4891"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://www.oracle.com//security-alerts/cpujul2021.html"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://security.netapp.com/advisory/ntap-20210409-0002/"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://www.oracle.com/security-alerts/cpuoct2021.html"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://www.oracle.com/security-alerts/cpujan2022.html"
        },
        {
          "name": "GLSA-202208-34",
          "tags": [
            "vendor-advisory",
            "x_refsource_GENTOO"
          ],
          "url": "https://security.gentoo.org/glsa/202208-34"
        }
      ],
      "source": {
        "discovery": "UNKNOWN"
      },
      "title": "Apache Tomcat h2c request mix-up",
      "x_generator": {
        "engine": "Vulnogram 0.0.9"
      },
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "security@apache.org",
          "ID": "CVE-2021-25122",
          "STATE": "PUBLIC",
          "TITLE": "Apache Tomcat h2c request mix-up"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "Apache Tomcat",
                      "version": {
                        "version_data": [
                          {
                            "version_affected": "\u003c",
                            "version_name": "Apache Tomcat 10",
                            "version_value": "10.0.2"
                          },
                          {
                            "version_affected": "\u003c",
                            "version_name": "Apache Tomcat 9",
                            "version_value": "9.0.42"
                          },
                          {
                            "version_affected": "\u003c",
                            "version_name": "Apache Tomcat 8.5",
                            "version_value": "8.5.62"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "Apache Software Foundation"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "When responding to new h2c connection requests, Apache Tomcat versions 10.0.0-M1 to 10.0.0, 9.0.0.M1 to 9.0.41 and 8.5.0 to 8.5.61 could duplicate request headers and a limited amount of request body from one request to another meaning user A and user B could both see the results of user A\u0027s request."
            }
          ]
        },
        "generator": {
          "engine": "Vulnogram 0.0.9"
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "CWE-200 Information Exposure"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://lists.apache.org/thread.html/r7b95bc248603360501f18c8eb03bb6001ec0ee3296205b34b07105b7%40%3Cannounce.tomcat.apache.org%3E",
              "refsource": "MISC",
              "url": "https://lists.apache.org/thread.html/r7b95bc248603360501f18c8eb03bb6001ec0ee3296205b34b07105b7%40%3Cannounce.tomcat.apache.org%3E"
            },
            {
              "name": "[tomcat-announce] 20210301 [SECURITY] CVE-2021-25122 Apache Tomcat h2c request mix-up",
              "refsource": "MLIST",
              "url": "https://lists.apache.org/thread.html/r7b95bc248603360501f18c8eb03bb6001ec0ee3296205b34b07105b7@%3Cannounce.tomcat.apache.org%3E"
            },
            {
              "name": "[tomcat-users] 20210301 [SECURITY] CVE-2021-25122 Apache Tomcat h2c request mix-up",
              "refsource": "MLIST",
              "url": "https://lists.apache.org/thread.html/r7b95bc248603360501f18c8eb03bb6001ec0ee3296205b34b07105b7@%3Cusers.tomcat.apache.org%3E"
            },
            {
              "name": "[tomcat-dev] 20210301 [SECURITY] CVE-2021-25122 Apache Tomcat h2c request mix-up",
              "refsource": "MLIST",
              "url": "https://lists.apache.org/thread.html/r7b95bc248603360501f18c8eb03bb6001ec0ee3296205b34b07105b7@%3Cdev.tomcat.apache.org%3E"
            },
            {
              "name": "[tomcat-dev] 20210301 svn commit: r1887027 - in /tomcat/site/trunk: docs/security-10.html docs/security-7.html docs/security-8.html docs/security-9.html xdocs/security-10.xml xdocs/security-7.xml xdocs/security-8.xml xdocs/security-9.xml",
              "refsource": "MLIST",
              "url": "https://lists.apache.org/thread.html/rf6d5d57b114678d8898005faef31e9fd6d7c981fcc4ccfc3bc272fc9@%3Cdev.tomcat.apache.org%3E"
            },
            {
              "name": "[announce] 20210301 [SECURITY] CVE-2021-25122 Apache Tomcat h2c request mix-up",
              "refsource": "MLIST",
              "url": "https://lists.apache.org/thread.html/r7b95bc248603360501f18c8eb03bb6001ec0ee3296205b34b07105b7@%3Cannounce.apache.org%3E"
            },
            {
              "name": "[oss-security] 20210301 CVE-2021-25122: Apache Tomcat h2c request mix-up",
              "refsource": "MLIST",
              "url": "http://www.openwall.com/lists/oss-security/2021/03/01/1"
            },
            {
              "name": "[tomcat-users] 20210305 RE: [SECURITY] CVE-2021-25122 Apache Tomcat h2c request mix-up",
              "refsource": "MLIST",
              "url": "https://lists.apache.org/thread.html/rcd90bf36b1877e1310b87ecd14ed7bbb15da52b297efd9f0e7253a3b@%3Cusers.tomcat.apache.org%3E"
            },
            {
              "name": "[tomcat-users] 20210305 Re: [SECURITY] CVE-2021-25122 Apache Tomcat h2c request mix-up",
              "refsource": "MLIST",
              "url": "https://lists.apache.org/thread.html/rd0463f9a5cbc02a485404c4b990f0da452e5ac5c237808edba11c947@%3Cusers.tomcat.apache.org%3E"
            },
            {
              "name": "[debian-lts-announce] 20210316 [SECURITY] [DLA 2596-1] tomcat8 security update",
              "refsource": "MLIST",
              "url": "https://lists.debian.org/debian-lts-announce/2021/03/msg00018.html"
            },
            {
              "name": "DSA-4891",
              "refsource": "DEBIAN",
              "url": "https://www.debian.org/security/2021/dsa-4891"
            },
            {
              "name": "https://www.oracle.com//security-alerts/cpujul2021.html",
              "refsource": "MISC",
              "url": "https://www.oracle.com//security-alerts/cpujul2021.html"
            },
            {
              "name": "https://security.netapp.com/advisory/ntap-20210409-0002/",
              "refsource": "CONFIRM",
              "url": "https://security.netapp.com/advisory/ntap-20210409-0002/"
            },
            {
              "name": "https://www.oracle.com/security-alerts/cpuoct2021.html",
              "refsource": "MISC",
              "url": "https://www.oracle.com/security-alerts/cpuoct2021.html"
            },
            {
              "name": "https://www.oracle.com/security-alerts/cpujan2022.html",
              "refsource": "MISC",
              "url": "https://www.oracle.com/security-alerts/cpujan2022.html"
            },
            {
              "name": "GLSA-202208-34",
              "refsource": "GENTOO",
              "url": "https://security.gentoo.org/glsa/202208-34"
            }
          ]
        },
        "source": {
          "discovery": "UNKNOWN"
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "f0158376-9dc2-43b6-827c-5f631a4d8d09",
    "assignerShortName": "apache",
    "cveId": "CVE-2021-25122",
    "datePublished": "2021-03-01T12:00:20.000Z",
    "dateReserved": "2021-01-14T00:00:00.000Z",
    "dateUpdated": "2025-02-13T16:27:48.175Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Tags

Taxonomy of the tags.

All sightings related to this event Export sightings related to this event

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted

suse-su-2021:0989-1

Vulnerability from csaf_suse

CVE-2021-25329 (GCVE-0-2021-25329)

Vulnerability from cvelistv5

CVE-2021-24122 (GCVE-0-2021-24122)

Vulnerability from cvelistv5

CVE-2021-25122 (GCVE-0-2021-25122)

Vulnerability from cvelistv5

Tags

Sightings

Nomenclature