CVE-2018-11784

UNKNOWN

Published 2018-10-04T13:00:00Z

Actions:

Expert Analysis

Professional remediation guidance

Get tailored security recommendations from our analyst team for CVE-2018-11784. We'll provide specific mitigation strategies based on your environment and risk profile.

No CVSS data available

Description

When the default servlet in Apache Tomcat versions 9.0.0.M1 to 9.0.11, 8.5.0 to 8.5.33 and 7.0.23 to 7.0.90 returned a redirect to a directory (e.g. redirecting to '/foo/' when the user requested '/foo') a specially crafted URL could be used to cause the redirect to be generated to any URI of the attackers choice.

Available Exploits

Apache Tomcat - Open Redirect

Apache Tomcat versions prior to 9.0.12, 8.5.34, and 7.0.91 are prone to an open-redirection vulnerability because it fails to properly sanitize user-supplied input.

ID: CVE-2018-11784

Author: geeknik Medium

References:

Related News

No news articles found for this CVE.

Affected Products

Apache Software Foundation

Apache Tomcat

Affected Versions:

9.0.0.M1 to 9.0.11 8.5.0 to 8.5.33 7.0.23 to 7.0.90

GitHub Security Advisories

Community-driven vulnerability intelligence from GitHub

✓ GitHub Reviewed MODERATE

Apache Tomcat Open Redirect vulnerability

GHSA-5q99-f34m-67gc

Advisory Details

Affected Packages

Maven org.apache.tomcat.embed:tomcat-embed-core

ECOSYSTEM: ≥8.5.0 <8.5.34

Maven org.apache.tomcat.embed:tomcat-embed-core

ECOSYSTEM: ≥7.0.23 <7.0.91

Maven org.apache.tomcat.embed:tomcat-embed-core

ECOSYSTEM: ≥9.0.0 <9.0.12

CVSS Scoring

CVSS Score

5.0

CVSS Vector


                                    CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N

References

ADVISORY https://nvd.nist.gov/vuln/detail/CVE-2018-11784

WEB https://github.com/apache/tomcat/commit/b76e1dfb3dec3789cc700f8d022c872eb947a221

WEB https://github.com/apache/tomcat/commit/efb860b3ff8ebcf606199b8d0d432f76898040da

WEB https://github.com/apache/tomcat/commit/f9f147359b7c95511b64cd99bbc47917c01b3879

WEB https://lists.debian.org/debian-lts-announce/2018/10/msg00005.html

WEB https://lists.apache.org/thread.html/raba0fabaf4d56d4325ab2aca8814f0b30a237ab83d8106b115ee279a@%3Cdev.tomcat.apache.org%3E

WEB https://lists.apache.org/thread.html/raba0fabaf4d56d4325ab2aca8814f0b30a237ab83d8106b115ee279a%40%3Cdev.tomcat.apache.org%3E

WEB https://lists.apache.org/thread.html/r9136ff5b13e4f1941360b5a309efee2c114a14855578c3a2cbe5d19c@%3Cdev.tomcat.apache.org%3E

WEB https://lists.apache.org/thread.html/r9136ff5b13e4f1941360b5a309efee2c114a14855578c3a2cbe5d19c%40%3Cdev.tomcat.apache.org%3E

WEB https://lists.apache.org/thread.html/r6ccee4e849bc77df0840c7f853f6bd09d426f6741247da2b7429d5d9@%3Cdev.tomcat.apache.org%3E

WEB https://lists.apache.org/thread.html/r6ccee4e849bc77df0840c7f853f6bd09d426f6741247da2b7429d5d9%40%3Cdev.tomcat.apache.org%3E

WEB https://lists.apache.org/thread.html/r48c1444845fe15a823e1374674bfc297d5008a5453788099ea14caf0@%3Cdev.tomcat.apache.org%3E

WEB https://lists.apache.org/thread.html/r48c1444845fe15a823e1374674bfc297d5008a5453788099ea14caf0%40%3Cdev.tomcat.apache.org%3E

WEB https://lists.apache.org/thread.html/r3bbb800a816d0a51eccc5a228c58736960a9fffafa581a225834d97d@%3Cdev.tomcat.apache.org%3E

WEB https://lists.apache.org/thread.html/r3bbb800a816d0a51eccc5a228c58736960a9fffafa581a225834d97d%40%3Cdev.tomcat.apache.org%3E

WEB https://lists.apache.org/thread.html/eb6efa8d59c45a7a9eff94c4b925467d3b3fec8ba7697f3daa314b04@%3Cdev.tomcat.apache.org%3E

WEB https://lists.apache.org/thread.html/eb6efa8d59c45a7a9eff94c4b925467d3b3fec8ba7697f3daa314b04%40%3Cdev.tomcat.apache.org%3E

WEB https://access.redhat.com/errata/RHSA-2019:0130

WEB https://lists.debian.org/debian-lts-announce/2018/10/msg00006.html

WEB https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BZ4PX4B3QTKRM35VJAVIEOPZAF76RPBP

WEB https://lists.fedoraproject.org/archives/list/[email protected]/message/BZ4PX4B3QTKRM35VJAVIEOPZAF76RPBP

WEB https://seclists.org/bugtraq/2019/Dec/43

WEB https://security.netapp.com/advisory/ntap-20181014-0002

WEB https://usn.ubuntu.com/3787-1

WEB https://web.archive.org/web/20200227030058/http://www.securityfocus.com/bid/105524

WEB https://www.debian.org/security/2019/dsa-4596

WEB https://www.oracle.com/security-alerts/cpuapr2020.html

WEB https://www.oracle.com/security-alerts/cpujan2020.html

WEB https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html

WEB https://www.oracle.com/technetwork/security-advisory/cpujan2019-5072801.html

WEB https://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html

WEB https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html

WEB https://access.redhat.com/errata/RHSA-2019:0131

WEB https://access.redhat.com/errata/RHSA-2019:0485

WEB https://access.redhat.com/errata/RHSA-2019:1529

ADVISORY https://github.com/advisories/GHSA-5q99-f34m-67gc

PACKAGE https://github.com/apache/tomcat

WEB https://kc.mcafee.com/corporate/index?page=content&id=SB10284

WEB https://lists.apache.org/thread.html/1dd0a59c1295cc08ce4c9e7edae5ad2268acc9ba55adcefa0532e5ba%40%3Cdev.tomcat.apache.org%3E

WEB https://lists.apache.org/thread.html/1dd0a59c1295cc08ce4c9e7edae5ad2268acc9ba55adcefa0532e5ba@%3Cdev.tomcat.apache.org%3E

WEB https://lists.apache.org/thread.html/23134c9b5a23892a205dc140cdd8c9c0add233600f76b313dda6bd75%40%3Cannounce.tomcat.apache.org%3E

WEB https://lists.apache.org/thread.html/23134c9b5a23892a205dc140cdd8c9c0add233600f76b313dda6bd75@%3Cannounce.tomcat.apache.org%3E

WEB https://lists.apache.org/thread.html/343558d982879bf88ec20dbf707f8c11255f8e219e81d45c4f8d0551%40%3Cdev.tomcat.apache.org%3E

WEB https://lists.apache.org/thread.html/343558d982879bf88ec20dbf707f8c11255f8e219e81d45c4f8d0551@%3Cdev.tomcat.apache.org%3E

WEB https://lists.apache.org/thread.html/388a323769f1dff84c9ec905455aa73fbcb20338e3c7eb131457f708%40%3Cdev.tomcat.apache.org%3E

WEB https://lists.apache.org/thread.html/388a323769f1dff84c9ec905455aa73fbcb20338e3c7eb131457f708@%3Cdev.tomcat.apache.org%3E

WEB https://lists.apache.org/thread.html/3d19773b4cf0377db62d1e9328bf9160bf1819f04f988315086931d7%40%3Cdev.tomcat.apache.org%3E

WEB https://lists.apache.org/thread.html/3d19773b4cf0377db62d1e9328bf9160bf1819f04f988315086931d7@%3Cdev.tomcat.apache.org%3E

WEB https://lists.apache.org/thread.html/5c0e00fd31efc11e147bf99d0f03c00a734447d3b131ab0818644cdb%40%3Cdev.tomcat.apache.org%3E

WEB https://lists.apache.org/thread.html/5c0e00fd31efc11e147bf99d0f03c00a734447d3b131ab0818644cdb@%3Cdev.tomcat.apache.org%3E

WEB https://lists.apache.org/thread.html/6af47120905aa7d8fe12f42e8ff2284fb338ba141d3b77b8c7cb61b3%40%3Cdev.tomcat.apache.org%3E

WEB https://lists.apache.org/thread.html/6af47120905aa7d8fe12f42e8ff2284fb338ba141d3b77b8c7cb61b3@%3Cdev.tomcat.apache.org%3E

WEB https://lists.apache.org/thread.html/845312a10aabbe2c499fca94003881d2c79fc993d85f34c1f5c77424%40%3Cdev.tomcat.apache.org%3E

WEB https://lists.apache.org/thread.html/845312a10aabbe2c499fca94003881d2c79fc993d85f34c1f5c77424@%3Cdev.tomcat.apache.org%3E

WEB https://lists.apache.org/thread.html/88855876c33f2f9c532ffb75bfee570ccf0b17ffa77493745af9a17a%40%3Cdev.tomcat.apache.org%3E

WEB https://lists.apache.org/thread.html/88855876c33f2f9c532ffb75bfee570ccf0b17ffa77493745af9a17a@%3Cdev.tomcat.apache.org%3E

WEB https://lists.apache.org/thread.html/b5e3f51d28cd5d9b1809f56594f2cf63dcd6a90429e16ea9f83bbedc%40%3Cdev.tomcat.apache.org%3E

WEB https://lists.apache.org/thread.html/b5e3f51d28cd5d9b1809f56594f2cf63dcd6a90429e16ea9f83bbedc@%3Cdev.tomcat.apache.org%3E

WEB https://lists.apache.org/thread.html/e85e83e9954f169bbb77b44baae5a33d8de878df557bb32b7f793661%40%3Cdev.tomcat.apache.org%3E

WEB https://lists.apache.org/thread.html/e85e83e9954f169bbb77b44baae5a33d8de878df557bb32b7f793661@%3Cdev.tomcat.apache.org%3E

WEB http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00030.html

WEB http://lists.opensuse.org/opensuse-security-announce/2019-07/msg00056.html

WEB http://packetstormsecurity.com/files/163456/Apache-Tomcat-9.0.0M1-Open-Redirect.html

Advisory provided by GitHub Security Advisory Database. Published: October 17, 2018, Modified: February 22, 2024

References

https://www.oracle.com/technetwork/security-advisory/cpujan2019-5072801.html

https://lists.apache.org/thread.html/23134c9b5a23892a205dc140cdd8c9c0add233600f76b313dda6bd75%40%3Cannounce.tomcat.apache.org%3E

https://security.netapp.com/advisory/ntap-20181014-0002/

http://www.securityfocus.com/bid/105524

https://access.redhat.com/errata/RHSA-2019:0131

https://access.redhat.com/errata/RHSA-2019:0485

https://access.redhat.com/errata/RHSA-2019:0130

https://lists.debian.org/debian-lts-announce/2018/10/msg00005.html

https://usn.ubuntu.com/3787-1/

https://lists.debian.org/debian-lts-announce/2018/10/msg00006.html

https://lists.apache.org/thread.html/eb6efa8d59c45a7a9eff94c4b925467d3b3fec8ba7697f3daa314b04%40%3Cdev.tomcat.apache.org%3E

https://lists.apache.org/thread.html/343558d982879bf88ec20dbf707f8c11255f8e219e81d45c4f8d0551%40%3Cdev.tomcat.apache.org%3E

https://lists.apache.org/thread.html/388a323769f1dff84c9ec905455aa73fbcb20338e3c7eb131457f708%40%3Cdev.tomcat.apache.org%3E

https://lists.apache.org/thread.html/5c0e00fd31efc11e147bf99d0f03c00a734447d3b131ab0818644cdb%40%3Cdev.tomcat.apache.org%3E

https://lists.apache.org/thread.html/b5e3f51d28cd5d9b1809f56594f2cf63dcd6a90429e16ea9f83bbedc%40%3Cdev.tomcat.apache.org%3E

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BZ4PX4B3QTKRM35VJAVIEOPZAF76RPBP/

https://lists.apache.org/thread.html/88855876c33f2f9c532ffb75bfee570ccf0b17ffa77493745af9a17a%40%3Cdev.tomcat.apache.org%3E

https://lists.apache.org/thread.html/e85e83e9954f169bbb77b44baae5a33d8de878df557bb32b7f793661%40%3Cdev.tomcat.apache.org%3E

https://lists.apache.org/thread.html/845312a10aabbe2c499fca94003881d2c79fc993d85f34c1f5c77424%40%3Cdev.tomcat.apache.org%3E

https://lists.apache.org/thread.html/1dd0a59c1295cc08ce4c9e7edae5ad2268acc9ba55adcefa0532e5ba%40%3Cdev.tomcat.apache.org%3E

https://lists.apache.org/thread.html/3d19773b4cf0377db62d1e9328bf9160bf1819f04f988315086931d7%40%3Cdev.tomcat.apache.org%3E

https://lists.apache.org/thread.html/6af47120905aa7d8fe12f42e8ff2284fb338ba141d3b77b8c7cb61b3%40%3Cdev.tomcat.apache.org%3E

https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html

http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00030.html

https://access.redhat.com/errata/RHSA-2019:1529

https://kc.mcafee.com/corporate/index?page=content&id=SB10284

https://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html

http://lists.opensuse.org/opensuse-security-announce/2019-07/msg00056.html

https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html

https://www.debian.org/security/2019/dsa-4596

https://seclists.org/bugtraq/2019/Dec/43

https://www.oracle.com/security-alerts/cpujan2020.html

https://lists.apache.org/thread.html/r6ccee4e849bc77df0840c7f853f6bd09d426f6741247da2b7429d5d9%40%3Cdev.tomcat.apache.org%3E

https://lists.apache.org/thread.html/r3bbb800a816d0a51eccc5a228c58736960a9fffafa581a225834d97d%40%3Cdev.tomcat.apache.org%3E

https://lists.apache.org/thread.html/r9136ff5b13e4f1941360b5a309efee2c114a14855578c3a2cbe5d19c%40%3Cdev.tomcat.apache.org%3E

https://lists.apache.org/thread.html/raba0fabaf4d56d4325ab2aca8814f0b30a237ab83d8106b115ee279a%40%3Cdev.tomcat.apache.org%3E

https://lists.apache.org/thread.html/r48c1444845fe15a823e1374674bfc297d5008a5453788099ea14caf0%40%3Cdev.tomcat.apache.org%3E

https://www.oracle.com/security-alerts/cpuapr2020.html

http://packetstormsecurity.com/files/163456/Apache-Tomcat-9.0.0M1-Open-Redirect.html

HackerOne Reports

Tomcat examples available for public, Disclosure Apache Tomcat version, Critical/High/Medium CVE Medium

pvm

U.S. Dept Of Defense

Information Exposure Through an Error Message

View Report

Published: 2018-10-04T13:00:00Z

Last Modified: 2024-09-16T17:04:04.205Z

Copied to clipboard!

CVE-2018-11784

Expert Analysis

Description

Available Exploits

Apache Tomcat - Open Redirect

References:

Related News

Affected Products

Apache Tomcat

Affected Versions:

GitHub Security Advisories

Apache Tomcat Open Redirect vulnerability

Advisory Details

Affected Packages

CVSS Scoring

CVSS Score

CVSS Vector

References

References

HackerOne Reports

Request Analysis

What to expect

Request Received!