CVE-2018-8034 — HIGH (7.5) — White Hats Nepal

Q: How severe is CVE-2018-8034?

CVE-2018-8034 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2018-8034?

Check the references section above for vendor advisories and patch information. Affected products include: Apache Tomcat, Canonical Ubuntu Linux, Debian Debian Linux, Oracle Retail Order Broker.

Vulnerability Description

The host name verification when using TLS with the WebSocket client was missing. It is now enabled by default. Versions Affected: Apache Tomcat 9.0.0.M1 to 9.0.9, 8.5.0 to 8.5.31, 8.0.0.RC1 to 8.0.52, and 7.0.35 to 7.0.88.

CVSS Score

7.5

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

HIGH

Integrity

NONE

Availability

NONE

Affected Products

Vendor	Product	Versions
Apache	Tomcat	>= 7.0.35, <= 7.0.88
Canonical	Ubuntu Linux	14.04
Debian	Debian Linux	8.0
Oracle	Retail Order Broker	5.1

Related Weaknesses (CWE)

CWE-295

References

http://mail-archives.us.apache.org/mod_mbox/www-announce/201807.mbox/%3C20180722
http://www.oracle.com/technetwork/security-advisory/cpuoct2018-4428296.htmlPatchThird Party Advisory
http://www.securityfocus.com/bid/104895Third Party AdvisoryVDB Entry
http://www.securitytracker.com/id/1041374Third Party AdvisoryVDB Entry
https://access.redhat.com/errata/RHSA-2019:0130Third Party Advisory
https://access.redhat.com/errata/RHSA-2019:0131Third Party Advisory
https://access.redhat.com/errata/RHSA-2019:0450Third Party Advisory
https://access.redhat.com/errata/RHSA-2019:0451Third Party Advisory
https://access.redhat.com/errata/RHSA-2019:1159
https://access.redhat.com/errata/RHSA-2019:1160
https://access.redhat.com/errata/RHSA-2019:1161
https://access.redhat.com/errata/RHSA-2019:1162
https://access.redhat.com/errata/RHSA-2019:1529
https://access.redhat.com/errata/RHSA-2019:2205
https://access.redhat.com/errata/RHSA-2019:3892

FAQ

What is CVE-2018-8034?

CVE-2018-8034 is a vulnerability with a CVSS score of 7.5 (HIGH). The host name verification when using TLS with the WebSocket client was missing. It is now enabled by default. Versions Affected: Apache Tomcat 9.0.0.M1 to 9.0.9, 8.5.0 to 8.5.31, 8.0.0.RC1 to 8.0.52,...

How severe is CVE-2018-8034?

CVE-2018-8034 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2018-8034?

Check the references section above for vendor advisories and patch information. Affected products include: Apache Tomcat, Canonical Ubuntu Linux, Debian Debian Linux, Oracle Retail Order Broker.