CVE-2017-12617

Опубликовано: 04 окт. 2017

Источник: nvd

CVSS3: 8.1

CVSS2: 6.8

EPSS Критический

Описание

When running Apache Tomcat versions 9.0.0.M1 to 9.0.0, 8.5.0 to 8.5.22, 8.0.0.RC1 to 8.0.46 and 7.0.0 to 7.0.81 with HTTP PUTs enabled (e.g. via setting the readonly initialisation parameter of the Default servlet to false) it was possible to upload a JSP file to the server via a specially crafted request. This JSP could then be requested and any code it contained would be executed by the server.

Ссылки

http://www.oracle.com/technetwork/security-advisory/cpuapr2018-3678067.html
Patch
Third Party Advisory
http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html
Patch
Third Party Advisory
http://www.oracle.com/technetwork/security-advisory/cpujul2018-4258247.html
Patch
Third Party Advisory
http://www.securityfocus.com/bid/100954
Third Party Advisory
VDB Entry
http://www.securitytracker.com/id/1039552
Third Party Advisory
VDB Entry
https://access.redhat.com/errata/RHSA-2017:3080
Third Party Advisory
https://access.redhat.com/errata/RHSA-2017:3081
Third Party Advisory
https://access.redhat.com/errata/RHSA-2017:3113
Third Party Advisory
https://access.redhat.com/errata/RHSA-2017:3114
Third Party Advisory
https://access.redhat.com/errata/RHSA-2018:0268
Third Party Advisory
https://access.redhat.com/errata/RHSA-2018:0269
Third Party Advisory
https://access.redhat.com/errata/RHSA-2018:0270
Third Party Advisory
https://access.redhat.com/errata/RHSA-2018:0271
Third Party Advisory
https://access.redhat.com/errata/RHSA-2018:0275
Third Party Advisory
https://access.redhat.com/errata/RHSA-2018:0465
Third Party Advisory
https://access.redhat.com/errata/RHSA-2018:0466
Third Party Advisory
https://access.redhat.com/errata/RHSA-2018:2939
Third Party Advisory
https://lists.apache.org/thread.html/1dd0a59c1295cc08ce4c9e7edae5ad2268acc9ba55adcefa0532e5ba%40%3Cdev.tomcat.apache.org%3E
Mailing List
Patch
https://lists.apache.org/thread.html/343558d982879bf88ec20dbf707f8c11255f8e219e81d45c4f8d0551%40%3Cdev.tomcat.apache.org%3E
Mailing List
Patch
https://lists.apache.org/thread.html/388a323769f1dff84c9ec905455aa73fbcb20338e3c7eb131457f708%40%3Cdev.tomcat.apache.org%3E
Mailing List
Patch

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:apache:tomcat:*:*:*:*:*:*:*:*

Версия от 7.0.0 (включая) до 7.0.82 (исключая)

cpe:2.3:a:apache:tomcat:*:*:*:*:*:*:*:*

Версия от 8.0 (включая) до 8.0.47 (исключая)

cpe:2.3:a:apache:tomcat:*:*:*:*:*:*:*:*

Версия от 8.5.0 (включая) до 8.5.23 (исключая)

cpe:2.3:a:apache:tomcat:*:*:*:*:*:*:*:*

Версия от 9.0.0 (включая) до 9.0.1 (исключая)

Конфигурация 2

Одно из

cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:esm:*:*:*

cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:esm:*:*:*

cpe:2.3:o:canonical:ubuntu_linux:17.10:*:*:*:*:*:*:*

cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:esm:*:*:*

Конфигурация 3

Одно из

cpe:2.3:a:oracle:agile_plm:9.3.3:*:*:*:*:*:*:*

cpe:2.3:a:oracle:agile_plm:9.3.4:*:*:*:*:*:*:*

cpe:2.3:a:oracle:agile_plm:9.3.5:*:*:*:*:*:*:*

cpe:2.3:a:oracle:agile_plm:9.3.6:*:*:*:*:*:*:*

cpe:2.3:a:oracle:communications_instant_messaging_server:10.0.1:*:*:*:*:*:*:*

cpe:2.3:a:oracle:endeca_information_discovery_integrator:3.1.0:*:*:*:*:*:*:*

cpe:2.3:a:oracle:endeca_information_discovery_integrator:3.2.0:*:*:*:*:*:*:*

cpe:2.3:a:oracle:enterprise_manager_for_mysql_database:12.1.0.4.0:*:*:*:*:*:*:*

cpe:2.3:a:oracle:financial_services_analytical_applications_infrastructure:*:*:*:*:*:*:*:*

Версия от 7.3.3.0.0 (включая) до 7.3.5.3.0 (включая)

cpe:2.3:a:oracle:financial_services_analytical_applications_infrastructure:*:*:*:*:*:*:*:*

Версия от 8.0.0.0.0 (включая) до 8.0.9.0.0 (включая)

cpe:2.3:a:oracle:fmw_platform:12.2.1.2.0:*:*:*:*:*:*:*

cpe:2.3:a:oracle:fmw_platform:12.2.1.3.0:*:*:*:*:*:*:*

cpe:2.3:a:oracle:health_sciences_empirica_inspections:1.0.1.1:*:*:*:*:*:*:*

cpe:2.3:a:oracle:hospitality_guest_access:4.2.0:*:*:*:*:*:*:*

cpe:2.3:a:oracle:hospitality_guest_access:4.2.1:*:*:*:*:*:*:*

cpe:2.3:a:oracle:instantis_enterprisetrack:17.1:*:*:*:*:*:*:*

cpe:2.3:a:oracle:instantis_enterprisetrack:17.2:*:*:*:*:*:*:*

cpe:2.3:a:oracle:management_pack:11.2.1.0.13:*:*:*:*:goldengate:*:*

cpe:2.3:a:oracle:micros_lucas:2.9.5:*:*:*:*:*:*:*

cpe:2.3:a:oracle:micros_retail_xbri_loss_prevention:10.0.1:*:*:*:*:*:*:*

cpe:2.3:a:oracle:micros_retail_xbri_loss_prevention:10.5.0:*:*:*:*:*:*:*

cpe:2.3:a:oracle:micros_retail_xbri_loss_prevention:10.6.0:*:*:*:*:*:*:*

cpe:2.3:a:oracle:micros_retail_xbri_loss_prevention:10.7.0:*:*:*:*:*:*:*

cpe:2.3:a:oracle:micros_retail_xbri_loss_prevention:10.8.0:*:*:*:*:*:*:*

cpe:2.3:a:oracle:micros_retail_xbri_loss_prevention:10.8.1:*:*:*:*:*:*:*

cpe:2.3:a:oracle:mysql_enterprise_monitor:*:*:*:*:*:*:*:*

Версия до 3.3.6.3293 (включая)

cpe:2.3:a:oracle:mysql_enterprise_monitor:*:*:*:*:*:*:*:*

Версия от 3.4.0 (включая) до 3.4.4.4226 (включая)

cpe:2.3:a:oracle:mysql_enterprise_monitor:*:*:*:*:*:*:*:*

Версия от 4.0.0 (включая) до 4.0.0.5135 (включая)

cpe:2.3:a:oracle:retail_advanced_inventory_planning:13.2:*:*:*:*:*:*:*

cpe:2.3:a:oracle:retail_advanced_inventory_planning:13.4:*:*:*:*:*:*:*

cpe:2.3:a:oracle:retail_advanced_inventory_planning:14.1:*:*:*:*:*:*:*

cpe:2.3:a:oracle:retail_advanced_inventory_planning:15.0:*:*:*:*:*:*:*

cpe:2.3:a:oracle:retail_back_office:14.0.4:*:*:*:*:*:*:*

cpe:2.3:a:oracle:retail_back_office:14.1.3:*:*:*:*:*:*:*

cpe:2.3:a:oracle:retail_central_office:14.0.4:*:*:*:*:*:*:*

cpe:2.3:a:oracle:retail_central_office:14.1.3:*:*:*:*:*:*:*

cpe:2.3:a:oracle:retail_convenience_and_fuel_pos_software:2.1.132:*:*:*:*:*:*:*

cpe:2.3:a:oracle:retail_eftlink:1.1.124:*:*:*:*:*:*:*

cpe:2.3:a:oracle:retail_eftlink:15.0.1:*:*:*:*:*:*:*

cpe:2.3:a:oracle:retail_eftlink:16.0.2:*:*:*:*:*:*:*

cpe:2.3:a:oracle:retail_insights:14.0:*:*:*:*:*:*:*

cpe:2.3:a:oracle:retail_insights:14.1:*:*:*:*:*:*:*

cpe:2.3:a:oracle:retail_insights:15.0:*:*:*:*:*:*:*

cpe:2.3:a:oracle:retail_insights:16.0:*:*:*:*:*:*:*

cpe:2.3:a:oracle:retail_invoice_matching:12.0:*:*:*:*:*:*:*

cpe:2.3:a:oracle:retail_invoice_matching:13.0:*:*:*:*:*:*:*

cpe:2.3:a:oracle:retail_invoice_matching:13.1:*:*:*:*:*:*:*

cpe:2.3:a:oracle:retail_invoice_matching:13.2:*:*:*:*:*:*:*

cpe:2.3:a:oracle:retail_invoice_matching:14.0:*:*:*:*:*:*:*

cpe:2.3:a:oracle:retail_invoice_matching:14.1:*:*:*:*:*:*:*

cpe:2.3:a:oracle:retail_invoice_matching:15.0:*:*:*:*:*:*:*

cpe:2.3:a:oracle:retail_invoice_matching:16.0:*:*:*:*:*:*:*

cpe:2.3:a:oracle:retail_order_broker:5.0:*:*:*:*:*:*:*

cpe:2.3:a:oracle:retail_order_broker:5.1:*:*:*:*:*:*:*

cpe:2.3:a:oracle:retail_order_broker:5.2:*:*:*:*:*:*:*

cpe:2.3:a:oracle:retail_order_broker:15.0:*:*:*:*:*:*:*

cpe:2.3:a:oracle:retail_order_broker:16.0:*:*:*:*:*:*:*

cpe:2.3:a:oracle:retail_order_management_system:4.0:*:*:*:*:*:*:*

cpe:2.3:a:oracle:retail_order_management_system:4.5:*:*:*:*:*:*:*

cpe:2.3:a:oracle:retail_order_management_system:4.7:*:*:*:*:*:*:*

cpe:2.3:a:oracle:retail_order_management_system:5.0:*:*:*:*:*:*:*

cpe:2.3:a:oracle:retail_point-of-service:14.0.4:*:*:*:*:*:*:*

cpe:2.3:a:oracle:retail_point-of-service:14.1.3:*:*:*:*:*:*:*

cpe:2.3:a:oracle:retail_price_management:12.0:*:*:*:*:*:*:*

cpe:2.3:a:oracle:retail_price_management:13.0:*:*:*:*:*:*:*

cpe:2.3:a:oracle:retail_price_management:13.1:*:*:*:*:*:*:*

cpe:2.3:a:oracle:retail_price_management:13.2:*:*:*:*:*:*:*

cpe:2.3:a:oracle:retail_price_management:14.0:*:*:*:*:*:*:*

cpe:2.3:a:oracle:retail_price_management:14.1:*:*:*:*:*:*:*

cpe:2.3:a:oracle:retail_price_management:15.0:*:*:*:*:*:*:*

cpe:2.3:a:oracle:retail_price_management:16.0:*:*:*:*:*:*:*

cpe:2.3:a:oracle:retail_returns_management:2.3.8:*:*:*:*:*:*:*

cpe:2.3:a:oracle:retail_returns_management:2.4.9:*:*:*:*:*:*:*

cpe:2.3:a:oracle:retail_returns_management:14.0.4:*:*:*:*:*:*:*

cpe:2.3:a:oracle:retail_returns_management:14.1.3:*:*:*:*:*:*:*

cpe:2.3:a:oracle:retail_store_inventory_management:12.0.12:*:*:*:*:*:*:*

cpe:2.3:a:oracle:retail_store_inventory_management:13.0.7:*:*:*:*:*:*:*

cpe:2.3:a:oracle:retail_store_inventory_management:13.1.9:*:*:*:*:*:*:*

cpe:2.3:a:oracle:retail_store_inventory_management:13.2.9:*:*:*:*:*:*:*

cpe:2.3:a:oracle:retail_store_inventory_management:14.0.4:*:*:*:*:*:*:*

cpe:2.3:a:oracle:retail_store_inventory_management:14.1.3:*:*:*:*:*:*:*

cpe:2.3:a:oracle:retail_store_inventory_management:15.0.2:*:*:*:*:*:*:*

cpe:2.3:a:oracle:retail_store_inventory_management:16.0.1:*:*:*:*:*:*:*

cpe:2.3:a:oracle:retail_xstore_point_of_service:6.0.11:*:*:*:*:*:*:*

cpe:2.3:a:oracle:retail_xstore_point_of_service:7.0.6:*:*:*:*:*:*:*

cpe:2.3:a:oracle:retail_xstore_point_of_service:7.1.6:*:*:*:*:*:*:*

cpe:2.3:a:oracle:retail_xstore_point_of_service:15.0.1:*:*:*:*:*:*:*

cpe:2.3:a:oracle:transportation_management:6.3.1:*:*:*:*:*:*:*

cpe:2.3:a:oracle:transportation_management:6.3.2:*:*:*:*:*:*:*

cpe:2.3:a:oracle:transportation_management:6.3.3:*:*:*:*:*:*:*

cpe:2.3:a:oracle:transportation_management:6.3.4:*:*:*:*:*:*:*

cpe:2.3:a:oracle:transportation_management:6.3.5:*:*:*:*:*:*:*

cpe:2.3:a:oracle:transportation_management:6.3.6:*:*:*:*:*:*:*

cpe:2.3:a:oracle:transportation_management:6.3.7:*:*:*:*:*:*:*

cpe:2.3:a:oracle:tuxedo_system_and_applications_monitor:12.1.3.0.0:*:*:*:*:*:*:*

cpe:2.3:a:oracle:webcenter_sites:11.1.1.8.0:*:*:*:*:*:*:*

cpe:2.3:a:oracle:workload_manager:12.2.0.1:*:*:*:*:*:*:*

Конфигурация 4

cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*

Конфигурация 5

Одно из

cpe:2.3:a:netapp:active_iq_unified_manager:*:*:*:*:*:windows:*:*

Версия от 7.3 (включая)

cpe:2.3:a:netapp:active_iq_unified_manager:*:*:*:*:*:vmware_vsphere:*:*

Версия от 9.5 (включая)

cpe:2.3:a:netapp:oncommand_balance:-:*:*:*:*:*:*:*

cpe:2.3:a:netapp:oncommand_insight:-:*:*:*:*:*:*:*

cpe:2.3:a:netapp:oncommand_shift:-:*:*:*:*:*:*:*

cpe:2.3:a:netapp:oncommand_workflow_automation:-:*:*:*:*:*:*:*

cpe:2.3:a:netapp:snapcenter:-:*:*:*:*:*:*:*

cpe:2.3:o:netapp:element:-:*:*:*:*:vcenter_server:*:*

Конфигурация 6

Одно из

cpe:2.3:a:redhat:fuse:1.0:*:*:*:*:*:*:*

cpe:2.3:a:redhat:jboss_enterprise_application_platform:6.0.0:*:*:*:*:*:*:*

cpe:2.3:a:redhat:jboss_enterprise_application_platform:6.4.0:*:*:*:*:*:*:*

cpe:2.3:a:redhat:jboss_enterprise_web_server:2.0.0:*:*:*:*:*:*:*

cpe:2.3:a:redhat:jboss_enterprise_web_server:3.0.0:*:*:*:*:*:*:*

cpe:2.3:a:redhat:jboss_enterprise_web_server_text-only_advisories:-:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_eus:7.4:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_eus:7.5:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_eus:7.6:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_eus:7.7:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_eus_compute_node:7.4:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_eus_compute_node:7.5:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_eus_compute_node:7.6:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_eus_compute_node:7.7:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_for_ibm_z_systems:6.0_s390x:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_for_ibm_z_systems:7.0_s390x:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_for_ibm_z_systems_eus:7.4_s390x:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_for_ibm_z_systems_eus:7.5_s390x:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_for_ibm_z_systems_eus:7.6_s390x:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_for_ibm_z_systems_eus:7.7_s390x:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_for_power_big_endian:6.0_ppc64:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_for_power_big_endian:7.0_ppc64:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_for_power_big_endian_eus:7.4_ppc64:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_for_power_big_endian_eus:7.5_ppc64:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_for_power_big_endian_eus:7.6_ppc64:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_for_power_big_endian_eus:7.7_ppc64:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_for_power_little_endian:7.0:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_for_power_little_endian_eus:7.4_ppc64le:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_for_power_little_endian_eus:7.5_ppc64le:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_for_power_little_endian_eus:7.6_ppc64le:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_for_power_little_endian_eus:7.7_ppc64le:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_server_aus:7.4:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_server_aus:7.6:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_server_aus:7.7:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_server_tus:7.4:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_server_tus:7.6:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_server_tus:7.7:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*

EPSS

Процентиль: 100%

0.94394

Критический

8.1 High

CVSS3

6.8 Medium

CVSS2

Дефекты

CWE-434

Связанные уязвимости

CVE-2017-12617

CVSS3: 8.1

ubuntu

больше 7 лет назад

CVE-2017-12617

CVSS3: 8.1

redhat

больше 7 лет назад

CVE-2017-12617

CVSS3: 8.1

debian

больше 7 лет назад

When running Apache Tomcat versions 9.0.0.M1 to 9.0.0, 8.5.0 to 8.5.22 ...

GHSA-xjgh-84hx-56c5

CVSS3: 8.1

github

около 3 лет назад

Unrestricted Upload of File with Dangerous Type Apache Tomcat

BDU:2023-01045

CVSS3: 8.1

fstec

больше 7 лет назад

Уязвимость сервера приложений Apache Tomcat, связанная с отсутствием ограничений на загрузку файлов, позволяющая нарушителю выполнить произвольный код

EPSS

Процентиль: 100%

0.94394

Критический

8.1 High

CVSS3

6.8 Medium

CVSS2

Дефекты

CWE-434