CVE-2018-1305 — MEDIUM (6.5)

Q: How severe is CVE-2018-1305?

CVE-2018-1305 has been rated MEDIUM with a CVSS base score of 6.5/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2018-1305?

Check the references section above for vendor advisories and patch information. Affected products include: Apache Tomcat, Debian Debian Linux, Canonical Ubuntu Linux, Oracle Fusion Middleware, Oracle Managed File Transfer.

Vulnerability Description

Security constraints defined by annotations of Servlets in Apache Tomcat 9.0.0.M1 to 9.0.4, 8.5.0 to 8.5.27, 8.0.0.RC1 to 8.0.49 and 7.0.0 to 7.0.84 were only applied once a Servlet had been loaded. Because security constraints defined in this way apply to the URL pattern and any URLs below that point, it was possible - depending on the order Servlets were loaded - for some security constraints not to be applied. This could have exposed resources to users who were not authorised to access them.

CVSS Score

6.5

MEDIUM

CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

HIGH

Integrity

NONE

Availability

NONE

Affected Products

Vendor	Product	Versions
Apache	Tomcat	>= 7.0.0, <= 7.0.84
Debian	Debian Linux	7.0
Canonical	Ubuntu Linux	14.04
Oracle	Fusion Middleware	12.2.1.3.0
Oracle	Managed File Transfer	12.1.3.0.0
Oracle	Micros Relate Crm Software	11.4

References

http://www.oracle.com/technetwork/security-advisory/cpujul2018-4258247.htmlPatchThird Party Advisory
http://www.oracle.com/technetwork/security-advisory/cpuoct2018-4428296.htmlPatchThird Party Advisory
http://www.securityfocus.com/bid/103144Third Party AdvisoryVDB Entry
http://www.securitytracker.com/id/1040428Third Party AdvisoryVDB Entry
https://access.redhat.com/errata/RHSA-2018:0465Third Party Advisory
https://access.redhat.com/errata/RHSA-2018:0466Third Party Advisory
https://access.redhat.com/errata/RHSA-2018:1320Third Party Advisory
https://access.redhat.com/errata/RHSA-2018:2939Third Party Advisory
https://access.redhat.com/errata/RHSA-2019:2205
https://lists.apache.org/thread.html/1dd0a59c1295cc08ce4c9e7edae5ad2268acc9ba55a
https://lists.apache.org/thread.html/343558d982879bf88ec20dbf707f8c11255f8e219e8
https://lists.apache.org/thread.html/388a323769f1dff84c9ec905455aa73fbcb20338e3c
https://lists.apache.org/thread.html/3d19773b4cf0377db62d1e9328bf9160bf1819f04f9
https://lists.apache.org/thread.html/5c0e00fd31efc11e147bf99d0f03c00a734447d3b13
https://lists.apache.org/thread.html/6af47120905aa7d8fe12f42e8ff2284fb338ba141d3

FAQ

What is CVE-2018-1305?

CVE-2018-1305 is a vulnerability with a CVSS score of 6.5 (MEDIUM). Security constraints defined by annotations of Servlets in Apache Tomcat 9.0.0.M1 to 9.0.4, 8.5.0 to 8.5.27, 8.0.0.RC1 to 8.0.49 and 7.0.0 to 7.0.84 were only applied once a Servlet had been loaded. B...

How severe is CVE-2018-1305?

CVE-2018-1305 has been rated MEDIUM with a CVSS base score of 6.5/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2018-1305?

Check the references section above for vendor advisories and patch information. Affected products include: Apache Tomcat, Debian Debian Linux, Canonical Ubuntu Linux, Oracle Fusion Middleware, Oracle Managed File Transfer.