CVE-2014-0119

Apache Tomcat <6.0.40, 7.x <7.0.54, 8.x <8.0.6 - XXE

Title source: llm
STIX 2.1

Description

Apache Tomcat before 6.0.40, 7.x before 7.0.54, and 8.x before 8.0.6 does not properly constrain the class loader that accesses the XML parser used with an XSLT stylesheet, which allows remote attackers to (1) read arbitrary files via a crafted web application that provides an XML external entity declaration in conjunction with an entity reference, related to an XML External Entity (XXE) issue, or (2) read files associated with different web applications on a single Tomcat instance via a crafted web application.

References (51)

Core 51
Core References
Vendor Advisory vendor-advisory x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2015-0765.html
Vendor Advisory vendor-advisory x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2015-0675.html
Vendor Advisory vendor-advisory x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2015-0720.html
Third Party Advisory x_refsource_confirm
http://advisories.mageia.org/MGASA-2014-0268.html
Vendor Advisory vendor-advisory x_refsource_ubuntu
http://www.ubuntu.com/usn/USN-2654-1
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/59732
Various Sources x_refsource_confirm
http://www-01.ibm.com/support/docview.wss?uid=swg21681528
Vendor Advisory vendor-advisory x_refsource_mandriva
http://www.mandriva.com/security/advisories?name=MDVSA-2015:052
Vendor Advisory vendor-advisory x_refsource_mandriva
http://www.mandriva.com/security/advisories?name=MDVSA-2015:084
Third Party Advisory vendor-advisory x_refsource_debian
http://www.debian.org/security/2016/dsa-3530
Mailing List vendor-advisory x_refsource_hp
http://marc.info/?l=bugtraq&m=141017844705317&w=2
Vendor Advisory x_refsource_confirm
http://tomcat.apache.org/security-7.html
Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq
http://www.securityfocus.com/archive/1/534161/100/0/threaded
Vendor Advisory vendor-advisory x_refsource_mandriva
http://www.mandriva.com/security/advisories?name=MDVSA-2015:053
Vendor Advisory x_refsource_confirm
http://tomcat.apache.org/security-8.html
Various Sources x_refsource_confirm
http://www-01.ibm.com/support/docview.wss?uid=swg21678231
Vendor Advisory x_refsource_confirm
http://tomcat.apache.org/security-6.html
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/59873
Mailing List mailing-list x_refsource_fulldisc
http://seclists.org/fulldisclosure/2014/May/141
Mailing List mailing-list x_refsource_fulldisc
http://seclists.org/fulldisclosure/2014/Dec/23
Mailing List vendor-advisory x_refsource_hp
http://marc.info/?l=bugtraq&m=144498216801440&w=2
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/67669
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://www.securitytracker.com/id/1030298
Third Party Advisory vendor-advisory x_refsource_debian
http://www.debian.org/security/2016/dsa-3552
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/60729

Scores

EPSS 0.0435
EPSS Percentile 89.1%

Details

CWE
CWE-264
Status published
Products (37)
apache/tomcat 8.0.0 rc1 (4 CPE variants)
apache/tomcat 8.0.1
apache/tomcat 8.0.3
apache/tomcat 8.0.5
apache/tomcat 6
apache/tomcat 6.0
apache/tomcat 6.0.0 (2 CPE variants)
apache/tomcat 6.0.1 (2 CPE variants)
apache/tomcat 6.0.2 (3 CPE variants)
apache/tomcat 6.0.3
... and 27 more
Published May 31, 2014
Tracked Since Feb 18, 2026