CVE-2016-0763

MEDIUM

Apache Tomcat <7.0.68, <8.0.31, <9.0.0.M3 - Privilege Escalation

Title source: llm
STIX 2.1

Description

The setGlobalContext method in org/apache/naming/factory/ResourceLinkFactory.java in Apache Tomcat 7.x before 7.0.68, 8.x before 8.0.31, and 9.x before 9.0.0.M3 does not consider whether ResourceLinkFactory.setGlobalContext callers are authorized, which allows remote authenticated users to bypass intended SecurityManager restrictions and read or write to arbitrary application data, or cause a denial of service (application disruption), via a web application that sets a crafted global context.

References (33)

Core 33
Core References
Third Party Advisory vendor-advisory x_refsource_gentoo
https://security.gentoo.org/glsa/201705-09
Third Party Advisory vendor-advisory x_refsource_debian
http://www.debian.org/security/2016/dsa-3530
Vendor Advisory x_refsource_confirm
http://tomcat.apache.org/security-7.html
Mailing List mailing-list x_refsource_bugtraq
http://seclists.org/bugtraq/2016/Feb/147
Vendor Advisory vendor-advisory x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2016-1089.html
Mailing List, Third Party Advisory vendor-advisory x_refsource_fedora
http://lists.fedoraproject.org/pipermail/package-announce/2016-March/179356.html
Vendor Advisory x_refsource_confirm
http://tomcat.apache.org/security-8.html
Vendor Advisory vendor-advisory x_refsource_redhat
https://access.redhat.com/errata/RHSA-2016:1087
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://www.securitytracker.com/id/1035069
Various Sources x_refsource_confirm
https://bto.bluecoat.com/security-advisory/sa118
Vendor Advisory vendor-advisory x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2016-2807.html
Vendor Advisory vendor-advisory x_refsource_redhat
https://access.redhat.com/errata/RHSA-2016:1088
Vendor Advisory x_refsource_confirm
https://security.netapp.com/advisory/ntap-20180531-0001/
Vendor Advisory vendor-advisory x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2016-2808.html
Vendor Advisory vendor-advisory x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2016-2599.html
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/83326
Third Party Advisory vendor-advisory x_refsource_debian
http://www.debian.org/security/2016/dsa-3609
Third Party Advisory vendor-advisory x_refsource_debian
http://www.debian.org/security/2016/dsa-3552
Vendor Advisory x_refsource_confirm
http://tomcat.apache.org/security-9.html
Vendor Advisory vendor-advisory x_refsource_ubuntu
http://www.ubuntu.com/usn/USN-3024-1

Scores

CVSS v3 6.3
EPSS 0.0029
EPSS Percentile 52.2%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

Details

CWE
CWE-264
Status published
Products (47)
apache/tomcat 7.0.0 beta
apache/tomcat 7.0.2 beta
apache/tomcat 7.0.4 beta
apache/tomcat 7.0.5 beta
apache/tomcat 7.0.6
apache/tomcat 7.0.10
apache/tomcat 7.0.11
apache/tomcat 7.0.12
apache/tomcat 7.0.14
apache/tomcat 7.0.16
... and 37 more
Published Feb 25, 2016
Tracked Since Feb 18, 2026