Base Score

MEDIUM4.3

CVE-2016-0706

Apache Tomcat 6.x before 6.0.45, 7.x before 7.0.68, 8.x before 8.0.31, and 9.x before 9.0.0.M2 does not place org.apache.catalina.manager.StatusManagerServlet on the org/apache/catalina/core/RestrictedServlets.properties list, which allows remote authenticated users to bypass intended SecurityManager restrictions and read arbitrary HTTP requests, and consequently discover session ID values, via a crafted web application.

VectorNETWORK

Published Bysecalert@redhat.com

Published DateFeb 25, 2016, 01:59

Affected Versions(3)

org.apache.tomcat:tomcat(Maven)

Introduced9.0.0.M1

Fixed9.0.0.M2

LimitN/A

org.apache.tomcat:tomcat(Maven)

Introduced8.0.0.RC1

Fixed8.0.31

LimitN/A

org.apache.tomcat:tomcat(Maven)

Introduced6.0.0

Fixed6.0.45

LimitN/A

Package (Ecosystem)	Introduced	Fixed	Limit
org.apache.tomcat:tomcat(Maven)	9.0.0.M1	9.0.0.M2	N/A
org.apache.tomcat:tomcat(Maven)	8.0.0.RC1	8.0.31	N/A
org.apache.tomcat:tomcat(Maven)	6.0.0	6.0.45	N/A

Weakness Type (CWE):CWE-200

CVSS Metrics

Base Score

4.3

Vector String

CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

Base Severity

MEDIUM

Version

3.0

Attack Vector (AV)

NETWORK

Attack Complexity (AC)

LOW

Privileges Required (PR)

LOW

User Interaction (UI)

NONE

Scope (S)

UNCHANGED

Confidentiality (C)

LOW

Integrity (I)

NONE

Availability (A)

NONE

References

Base Score

MEDIUM4.3

Weakness Type (CWE):CWE-200

CVSS Metrics

Base Score

4.3

Vector String

CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

Base Severity

MEDIUM

Version

3.0

Attack Vector (AV)

NETWORK

Attack Complexity (AC)

LOW

Privileges Required (PR)

LOW

User Interaction (UI)

NONE

Scope (S)

UNCHANGED

Confidentiality (C)

LOW

Integrity (I)

NONE

Availability (A)

NONE