Severity
High
Analysis Summary
CVE-2024-52316 CVSS:9.8
Apache Tomcat could allow a remote attacker to bypass security restrictions, caused by a flaw when using a custom Jakarta Authentication ServerAuthContext component. By sending a specially crafted request, an attacker could exploit this vulnerability to bypass the authentication process.
CVE-2024-52317 CVSS:6.5
Apache Tomcat could provide weaker than expected security, caused by an incorrect recycling of the request and response used by HTTP/2 requests. A remote attacker could exploit this vulnerability to launch further attacks on the system.
CVE-2024-52318 CVSS:6.1
Apache Tomcat is vulnerable to cross-site scripting, caused by improper validation of user-supplied input by the JSP tag. A remote attacker could exploit this vulnerability using a specially crafted URL to execute script in a victim's Web browser within the security context of the hosting Web site, once the URL is clicked. An attacker could use this vulnerability to steal the victim's cookie-based authentication credentials.
Impact
- Security Bypass
- Cross-Site Scripting
Indicators of Compromise
CVE
- CVE-2024-52316
- CVE-2024-52317
- CVE-2024-52318
Affected Vendors
Affected Products
- Apache Tomcat - 9.0.96
- Apache Tomcat - 10.1.31
- Apache Tomcat - 11.0.0
- Apache Tomcat - 9.0.92
- Apache Tomcat - 9.0.95
- Apache Tomcat - 10.1.27
- Apache Tomcat - 10.1.30
- Apache Tomcat - 11.0.0-M23
- Apache Tomcat - 11.0.0-M26
Remediation
Upgrade to the latest version of Apache Tomcat, available from the Apache Website.