Loading HuntDB...
Hunt
Vulnerability Intelligence by wss.sh
Home Daily Briefings High Impact CVEs Recent Exploits KEV Catalog GitHub Advisories Latest Updates Security News
Sign In Sign Up

CVE-2023-34981

UNKNOWN
Published 2023-06-21T10:26:16.916Z
Actions:

Expert Analysis

Professional remediation guidance

Get tailored security recommendations from our analyst team for CVE-2023-34981. We'll provide specific mitigation strategies based on your environment and risk profile.

CVSS Score

V3.1
7.5
/10
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Base Score Metrics
Exploitability: N/A Impact: N/A

EPSS Score

v2025.03.14
0.002
probability
of exploitation in the wild

There is a 0.2% chance that this vulnerability will be exploited in the wild within the next 30 days.

Updated: 2025-06-25
Exploit Probability
Percentile: 0.459
Higher than 45.9% of all CVEs

Attack Vector Metrics

Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED

Impact Metrics

Confidentiality
HIGH
Integrity
NONE
Availability
NONE

Description

A regression in the fix for bug 66512 in Apache Tomcat 11.0.0-M5, 10.1.8, 9.0.74 and 8.5.88 meant that, if a response did not include any HTTP headers no AJP SEND_HEADERS messare woudl be sent for the response which in turn meant that at least one AJP proxy (mod_proxy_ajp) would use the response headers from the previous request leading to an information leak.

Available Exploits

No exploits available for this CVE.

Related News

No news articles found for this CVE.

Affected Products

Apache Software Foundation

Apache Tomcat

Affected Versions:

11.0.0-M5 10.1.8 9.0.74 8.5.88
apache

tomcat

Affected Versions:

10.1.8 11.0.0 8.5.88 9.0.74

GitHub Security Advisories

Community-driven vulnerability intelligence from GitHub

✓ GitHub Reviewed HIGH

Apache Tomcat vulnerable to information leak

GHSA-mppv-79ch-vw6q

Advisory Details

A regression in the fix for bug 66512 in Apache Tomcat 11.0.0-M5, 10.1.8, 9.0.74 and 8.5.88 meant that, if a response did not include any HTTP headers no AJP SEND_HEADERS message would be sent for the response which in turn meant that at least one AJP proxy (mod_proxy_ajp) would use the response headers from the previous request leading to an information leak.

Affected Packages

Maven org.apache.tomcat.embed:tomcat-embed-core
ECOSYSTEM: ≥11.0.0-M5 <11.0.0-M6
Maven org.apache.tomcat.embed:tomcat-embed-core
ECOSYSTEM: ≥10.1.8 <10.1.9
Maven org.apache.tomcat.embed:tomcat-embed-core
ECOSYSTEM: ≥9.0.74 <9.0.75
Maven org.apache.tomcat:tomcat-coyote
ECOSYSTEM: ≥8.5.88 <8.5.89

CVSS Scoring

CVSS Score

7.5

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

References

ADVISORY https://nvd.nist.gov/vuln/detail/CVE-2023-34981
WEB https://github.com/apache/tomcat/commit/2214c8030522aa9b2a367dfa5d9acff1a03666ae
WEB https://github.com/apache/tomcat/commit/2f0ca2378415f4cf0748f4bc8fa955f41f803fa5
WEB https://github.com/apache/tomcat/commit/739c7381aed22b7636351caf885ddc519ab6b442
WEB https://github.com/apache/tomcat/commit/f0742f47b98aca943097f7f88e0d1163f57527e3
WEB https://bz.apache.org/bugzilla/show_bug.cgi?id=66512
WEB https://bz.apache.org/bugzilla/show_bug.cgi?id=66591
PACKAGE https://github.com/apache/tomcat
WEB https://lists.apache.org/thread/j1ksjh9m9gx1q60rtk1sbzmxhvj5h5qz
WEB https://security.netapp.com/advisory/ntap-20230714-0003
WEB https://tomcat.apache.org/security-10.html
WEB https://tomcat.apache.org/security-11.html
WEB https://tomcat.apache.org/security-8.html
WEB https://tomcat.apache.org/security-9.html

Advisory provided by GitHub Security Advisory Database. Published: June 21, 2023, Modified: April 24, 2024

References

https://lists.apache.org/thread/j1ksjh9m9gx1q60rtk1sbzmxhvj5h5qz
https://security.netapp.com/advisory/ntap-20230714-0003/
Published: 2023-06-21T10:26:16.916Z
Last Modified: 2025-02-13T16:55:41.813Z
Copied to clipboard!