Rewterz Threat Advisory – CVE-2023-28708 – Apache Tomcat Vulnerability

Rewterz Threat Advisory – ICS: Delta Electronics InfraSuite Device Master Vulnerability

March 23, 2023

Rewterz Threat Advisory – Multiple Netgear Products Vulnerabilities

March 24, 2023

Rewterz Threat Advisory – CVE-2023-28708 – Apache Tomcat Vulnerability

Severity

High

Analysis Summary

CVE-2023-28708

Apache Tomcat could allow a remote attacker to obtain sensitive information, caused by the missing of secure attribute in some configurations for JSESSIONID Cookie when using the RemoteIpFilter. By sniffing the network traffic, an attacker could exploit this vulnerability to obtain session cookie information, and use this information to launch further attacks against the affected system.

Impact

Information Disclosure

Indicators Of Compromise

CVE

CVE-2023-28708

Affected Vendors

Apache

Affected Products

Apache Tomcat 9.0.0-M1
Apache Tomcat 8.5.0
Apache Tomcat 10.1.0-M1
Apache Tomcat 8.5.85
Apache Tomcat 9.0.71
Apache Tomcat 10.1.5
Apache Tomcat 11.0.0-M1
Apache Tomcat 11.0.0-M2

Remediation

Upgrade to the latest version of Apache Tomcat, available from the Apache Web site.

Apache Web site

Rewterz Threat Advisory – ICS: Delta Electronics InfraSuite Device Master Vulnerability

Rewterz Threat Advisory – Multiple Netgear Products Vulnerabilities

Rewterz Threat Advisory – CVE-2023-28708 – Apache Tomcat Vulnerability

Severity

Analysis Summary

Impact

Indicators Of Compromise

CVE

Affected Vendors

Affected Products

Remediation

Security Operations Centers across the region

Saudi Arabia

UAE

Oman

Pakistan