Korean

<< Back VID 22975 Severity 30 Port 80, ... Protocol TCP Class WWW Detailed Description The version of Tomcat installed on the remote host is prior to 9.0.43. It is, therefore, affected by multiple vulnerabilities as referenced in the vendor advisory. - An information disclosure vulnerability exists when responding to new h2c connection requests, Apache Tomcat versions 9.0.0.M1 to 9.0.41 could duplicate request headers and a limited amount of request body from one request to another meaning user A and user B could both see the results of user A's request. (CVE-2021-25122) - when using Apache Tomcat 10.0.0-M1 to 10.0.0, 9.0.0.M1 to 9.0.41, 8.5.0 to 8.5.61 or 7.0.0. to 7.0.107 with a configuration edge case that was highly unlikely to be used, the Tomcat instance was still vulnerable to CVE-2020-9494. Note that both the previously published prerequisites for CVE-2020-9484 and the previously published mitigations for CVE-2020-9484 also apply to this issue. (CVE-2021-25329) - A remote code execution vulnerability via deserialization exists when using Apache Tomcat 9.0.0.M1 to 9.0.41 with a configuration edge case that was highly unlikely to be used, the Tomcat instance was still vulnerable to CVE-2020-9494. Note that both the previously published prerequisites for CVE-2020-9484 and the previously published mitigations for CVE-2020-9484 also apply to this issue. (CVE-2021-25329) * References: https://github.com/apache/tomcat/commit/4785433a226a20df6acbea49296e1ce7e23de453 https://github.com/apache/tomcat/commit/d47c20a776e8919eaca8da9390a32bc8bf8210b1 https://tomcat.apache.org/security-9.html#Fixed_in_Apache_Tomcat_9.0.43 * Platforms Affected: Apache Tomcat Server versions 9.0.x prior to 9.0.43 Any operating system Any version Recommendation Upgrade to the latest version of Apache Tomcat Server (9.0.43 or later), available from the Apache Software Foundation download site, http://tomcat.apache.org/ Related URL CVE-2021-25122,CVE-2021-25329 (CVE) Related URL (SecurityFocus) Related URL (ISS)