Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2019-0232OS Command Injection in Apache Tomcat

CWE-78OS Command InjectionCWE-20Improper Input Validation23 documents16 sources
Severity
8.1HIGHNVD
EPSS
94.1%
top 0.10%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
1
Apache Tomcat
Timeline
PublishedApr 15
Latest updateJan 15

Description

When running on Windows with enableCmdLineArguments enabled, the CGI Servlet in Apache Tomcat 9.0.0.M1 to 9.0.17, 8.5.0 to 8.5.39 and 7.0.0 to 7.0.93 is vulnerable to Remote Code Execution due to a bug in the way the JRE passes command line arguments to Windows. The CGI Servlet is disabled by default. The CGI option enableCmdLineArguments is disable by default in Tomcat 9.0.x (and will be disabled by default in all versions in response to this vulnerability). For a detailed explanation of the JR

CVSS vector

CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 2.2 | Impact: 5.9

Affected Packages2 packages

NVDapache/tomcat7.0.07.0.93+3
CVEListV5apache/tomcat7.0.0 to 7.0.93, 8.5.0 to 8.5.39, 9.0.0.M1 to 9.0.17+2

🔴Vulnerability Details

4
OSV
Apache Tomcat OS Command Injection vulnerability2019-04-18
GHSA
Apache Tomcat OS Command Injection vulnerability2019-04-18
CVEList
CVE-2019-0232: When running on Windows with enableCmdLineArguments enabled, the CGI Servlet in Apache Tomcat 92019-04-15
VulnCheck
Apache Tomcat Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')2019

💥Exploits & PoCs

2
Exploit-DB
Apache Tomcat - CGIServlet enableCmdLineArguments Remote Code Execution (Metasploit)2019-07-03
Nuclei
Apache Tomcat `CGIServlet` enableCmdLineArguments - Remote Code Execution

📋Vendor Advisories

4
Oracle
Oracle Oracle Supply Chain Risk Matrix: Install (Apache Tomcat) — CVE-2019-02322020-01-15
Red Hat
tomcat: Remote Code Execution on Windows2019-04-10
Debian
CVE-2019-0232: tomcat9 - When running on Windows with enableCmdLineArguments enabled, the CGI Servlet in ...2019
Apache
Apache tomcat: CVE-2019-0232

🕵️Threat Intelligence

8
Trendmicro
CVE-2019-0232: RCE Vulnerability in Apache Tomcat2019-04-24
Trendmicro
CVE-2019-0232: RCE Vulnerability in Apache Tomcat2019-04-24
Trendmicro
CVE-2019-0232: RCE Vulnerability in Apache Tomcat2019-04-24
Trendmicro
CVE-2019-0232: RCE Vulnerability in Apache Tomcat2019-04-24
Trendmicro
CVE-2019-0232: RCE Vulnerability in Apache Tomcat2019-04-24

📄Research Papers

1
CTF
Day-12-Ready,_set,_elf. / README2020

💬Community

1
Bugzilla
CVE-2019-0232 tomcat: Remote Code Execution on Windows2019-04-17
CVE-2019-0232 — OS Command Injection in Apache Tomcat | cvebase