Strix
26.1K

CVE-2018-1305

UnknownEPSS 15.03%

Last modified

CVE-2018-1305 is a vulnerability of currently unknown severity. Security constraints defined by annotations of Servlets in Apache Tomcat 9.0.0.M1 to 9.0.4, 8.5.0 to 8.5.27, 8.0.0.RC1 to 8.0.49 and 7.0.0 to 7.0.84 were only applied once a Servlet had been loaded. Because security constraints defined in this way apply to the URL pattern and any URLs below that point, it was possible - depending on the order Servlets were loaded - for some security constraints not to be applied. EPSS estimates a 15.03% chance of exploitation in the next 30 days.

Description

Security constraints defined by annotations of Servlets in Apache Tomcat 9.0.0.M1 to 9.0.4, 8.5.0 to 8.5.27, 8.0.0.RC1 to 8.0.49 and 7.0.0 to 7.0.84 were only applied once a Servlet had been loaded. Because security constraints defined in this way apply to the URL pattern and any URLs below that point, it was possible - depending on the order Servlets were loaded - for some security constraints not to be applied. This could have exposed resources to users who were not authorised to access them.

Metrics

EPSS Probability
15.03%

96.3th percentile

Probability of exploitation in the next 30 days. Learn more

Affected Software

VendorProductVersionsUpdate
ApacheTomcat>= 7.0.0, <= 7.0.84
ApacheTomcat>= 8.0.0, <= 8.0.49
ApacheTomcat8.0.0Rc1
ApacheTomcat9.0.0
ApacheTomcat9.0.1
ApacheTomcat9.0.2
ApacheTomcat9.0.3
ApacheTomcat9.0.4
ApacheTomcat>= 8.5.0, <= 8.5.27
DebianDebian Linux7.0
DebianDebian Linux8.0
DebianDebian Linux9.0
CanonicalUbuntu Linux14.04
CanonicalUbuntu Linux16.04
CanonicalUbuntu Linux17.10
CanonicalUbuntu Linux18.04
OracleFusion Middleware12.2.1.3.0
OracleManaged File Transfer12.1.3.0.0
OracleManaged File Transfer12.2.1.3.0
OracleMicros Relate Crm Software11.4

References

Timeline

Published
Last Modified
Status
Modified

Frequently Asked Questions

What is CVE-2018-1305?
Security constraints defined by annotations of Servlets in Apache Tomcat 9.0.0.M1 to 9.0.4, 8.5.0 to 8.5.27, 8.0.0.RC1 to 8.0.49 and 7.0.0 to 7.0.84 were only applied once a Servlet had been loaded. Because security constraints defined in this way apply to the URL pattern and any URLs below that point, it was possible - depending on the order Servlets were loaded - for some security constraints not to be applied. This could have exposed resources to users who were not authorised to access them.
How severe is CVE-2018-1305?
Severity scoring for CVE-2018-1305 is pending analysis. The EPSS model estimates a 15.03% probability of exploitation in the next 30 days.
How do I fix CVE-2018-1305?
Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2018-1305?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST