March 12, 2025
Proactive Defense: The Importance of Incident Response Planning in Cybersecurity
Rewterz Threat Alert – Amadey Botnet – Active IOCs
January 4, 2023Rewterz Threat Alert – Ursnif Banking Trojan aka Gozi – Active IOCs
January 5, 2023Rewterz Threat Alert – Amadey Botnet – Active IOCs
January 4, 2023Rewterz Threat Alert – Ursnif Banking Trojan aka Gozi – Active IOCs
January 5, 2023
Severity
High
Analysis Summary
CVE-2022-45143
Apache Tomcat could allow a remote attacker to bypass security restrictions, caused by not escape the type, message or description values in the JsonErrorReportValve function. By sending a specially-crafted request, an attacker could exploit this vulnerability to supply values that invalidated or manipulated the JSON output.
Impact
- Security Bypass
Indicators Of Compromise
CVE
- CVE-2022-45143
Affected Vendors
Apache
Affected Products
- Apache Tomcat 10.1.0-M1
- Apache Tomcat 9.0.40
- Apache Tomcat 8.5.83
- Apache Tomcat 9.0.68
- Apache Tomcat 10.1.1
Remediation
Upgrade to the latest version of Apache Tomcat, available from the Apache Website.