CVE-2022-23181 - NVD | ByteOS Network

NVD Vulnerability Details :

CVE-2022-23181

Analyzed

More Info Official Page

Source-security@apache.org

Published At-27 Jan, 2022 | 13:15

Updated At-07 Nov, 2022 | 18:49

The fix for bug CVE-2020-9484 introduced a time of check, time of use vulnerability into Apache Tomcat 10.1.0-M1 to 10.1.0-M8, 10.0.0-M5 to 10.0.14, 9.0.35 to 9.0.56 and 8.5.55 to 8.5.73 that allowed a local attacker to perform actions with the privileges of the user that the Tomcat process is using. This issue is only exploitable when Tomcat is configured to persist sessions using the FileStore.

Metrics

Type	Version	Base score	Base severity	Vector
Primary	3.1	7.0	HIGH	CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
Primary	2.0	3.7	LOW	AV:L/AC:H/Au:N/C:P/I:P/A:P

Type: Primary

Version: 3.1

Base score: 7.0

Base severity: HIGH

Vector:

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Type: Primary

Version: 2.0

Base score: 3.7

Base severity: LOW

Vector:

AV:L/AC:H/Au:N/C:P/I:P/A:P

CPE Matches

The Apache Software Foundation

>>tomcat>>Versions from 8.5.55(inclusive) to 8.5.73(inclusive)

cpe:2.3:a:apache:tomcat:*:*:*:*:*:*:*:*

The Apache Software Foundation

>>tomcat>>Versions from 9.0.35(inclusive) to 9.0.56(inclusive)

cpe:2.3:a:apache:tomcat:*:*:*:*:*:*:*:*

The Apache Software Foundation

>>tomcat>>Versions from 10.0.1(inclusive) to 10.0.14(inclusive)

cpe:2.3:a:apache:tomcat:*:*:*:*:*:*:*:*

The Apache Software Foundation

>>tomcat>>10.0.0

cpe:2.3:a:apache:tomcat:10.0.0:milestone10:*:*:*:*:*:*

The Apache Software Foundation

>>tomcat>>10.0.0

cpe:2.3:a:apache:tomcat:10.0.0:milestone5:*:*:*:*:*:*

The Apache Software Foundation

>>tomcat>>10.0.0

cpe:2.3:a:apache:tomcat:10.0.0:milestone6:*:*:*:*:*:*

The Apache Software Foundation

>>tomcat>>10.0.0

cpe:2.3:a:apache:tomcat:10.0.0:milestone7:*:*:*:*:*:*

The Apache Software Foundation

>>tomcat>>10.0.0

cpe:2.3:a:apache:tomcat:10.0.0:milestone8:*:*:*:*:*:*

The Apache Software Foundation

>>tomcat>>10.0.0

cpe:2.3:a:apache:tomcat:10.0.0:milestone9:*:*:*:*:*:*

The Apache Software Foundation

>>tomcat>>10.1.0

cpe:2.3:a:apache:tomcat:10.1.0:milestone1:*:*:*:*:*:*

The Apache Software Foundation

>>tomcat>>10.1.0

cpe:2.3:a:apache:tomcat:10.1.0:milestone2:*:*:*:*:*:*

The Apache Software Foundation

>>tomcat>>10.1.0

cpe:2.3:a:apache:tomcat:10.1.0:milestone3:*:*:*:*:*:*

The Apache Software Foundation

>>tomcat>>10.1.0

cpe:2.3:a:apache:tomcat:10.1.0:milestone4:*:*:*:*:*:*

The Apache Software Foundation

>>tomcat>>10.1.0

cpe:2.3:a:apache:tomcat:10.1.0:milestone5:*:*:*:*:*:*

The Apache Software Foundation

>>tomcat>>10.1.0

cpe:2.3:a:apache:tomcat:10.1.0:milestone6:*:*:*:*:*:*

The Apache Software Foundation

>>tomcat>>10.1.0

cpe:2.3:a:apache:tomcat:10.1.0:milestone7:*:*:*:*:*:*

The Apache Software Foundation

>>tomcat>>10.1.0

cpe:2.3:a:apache:tomcat:10.1.0:milestone8:*:*:*:*:*:*

Oracle Corporation

>>agile_engineering_data_management>>6.2.1.0

cpe:2.3:a:oracle:agile_engineering_data_management:6.2.1.0:*:*:*:*:*:*:*

Oracle Corporation

>>communications_cloud_native_core_policy>>1.15.0

cpe:2.3:a:oracle:communications_cloud_native_core_policy:1.15.0:*:*:*:*:*:*:*

Oracle Corporation

>>financial_services_crime_and_compliance_management_studio>>8.0.8.2.0

cpe:2.3:a:oracle:financial_services_crime_and_compliance_management_studio:8.0.8.2.0:*:*:*:*:*:*:*

Oracle Corporation

>>financial_services_crime_and_compliance_management_studio>>8.0.8.3.0

cpe:2.3:a:oracle:financial_services_crime_and_compliance_management_studio:8.0.8.3.0:*:*:*:*:*:*:*

Oracle Corporation

>>managed_file_transfer>>12.2.1.3.0

cpe:2.3:a:oracle:managed_file_transfer:12.2.1.3.0:*:*:*:*:*:*:*

Oracle Corporation

>>managed_file_transfer>>12.2.1.4.0

cpe:2.3:a:oracle:managed_file_transfer:12.2.1.4.0:*:*:*:*:*:*:*

Oracle Corporation

>>mysql_enterprise_monitor>>Versions up to 8.0.29(inclusive)

cpe:2.3:a:oracle:mysql_enterprise_monitor:*:*:*:*:*:*:*:*

Debian GNU/Linux

>>debian_linux>>10.0

cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*

Debian GNU/Linux

>>debian_linux>>11.0

cpe:2.3:o:debian:debian_linux:11.0:*:*:*:*:*:*:*

Weaknesses

CWE ID	Type	Source
CWE-367	Primary	security@apache.org
CWE-367	Secondary	nvd@nist.gov

CWE ID: CWE-367

Type: Primary

Source: security@apache.org

CWE ID: CWE-367

Type: Secondary

Source: nvd@nist.gov

References

Hyperlink	Source	Resource
https://lists.apache.org/thread/l8x62p3k19yfcb208jo4zrb83k5mfwg9	security@apache.org	Mailing List Mitigation Vendor Advisory
https://lists.debian.org/debian-lts-announce/2022/10/msg00029.html	security@apache.org	Mailing List Third Party Advisory
https://security.netapp.com/advisory/ntap-20220217-0010/	security@apache.org	Third Party Advisory
https://www.debian.org/security/2022/dsa-5265	security@apache.org	Third Party Advisory
https://www.oracle.com/security-alerts/cpuapr2022.html	security@apache.org	Patch Third Party Advisory
https://www.oracle.com/security-alerts/cpujul2022.html	security@apache.org	Patch Third Party Advisory

Hyperlink: https://lists.apache.org/thread/l8x62p3k19yfcb208jo4zrb83k5mfwg9

Source: security@apache.org

Resource:

Mailing List

Mitigation

Vendor Advisory

Hyperlink: https://lists.debian.org/debian-lts-announce/2022/10/msg00029.html

Source: security@apache.org

Resource:

Mailing List

Third Party Advisory

Hyperlink: https://security.netapp.com/advisory/ntap-20220217-0010/

Source: security@apache.org

Resource:

Third Party Advisory

Hyperlink: https://www.debian.org/security/2022/dsa-5265

Source: security@apache.org

Resource:

Third Party Advisory

Hyperlink: https://www.oracle.com/security-alerts/cpuapr2022.html

Source: security@apache.org

Resource:

Patch

Third Party Advisory

Hyperlink: https://www.oracle.com/security-alerts/cpujul2022.html

Source: security@apache.org

Resource:

Patch

Third Party Advisory