Public exploit available

Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2022-29885

CWE-400 — Uncontrolled Resource Consumption CWE-111212 documents10 sources

Severity

7.5HIGH

EPSS

55.5%

top 1.92%

CISA KEV

Not in KEV

Exploit

PoC available

Public exploit / PoC exists

Affected products

Apache Tomcat Apache Software Foundation Apache Tomcat Debian Debian Linux +1 more

Timeline

PublishedMay 12

Latest updateAug 1

Description

The documentation of Apache Tomcat 10.1.0-M1 to 10.1.0-M14, 10.0.0-M1 to 10.0.20, 9.0.13 to 9.0.62 and 8.5.38 to 8.5.78 for the EncryptInterceptor incorrectly stated it enabled Tomcat clustering to run over an untrusted network. This was not correct. While the EncryptInterceptor does provide confidentiality and integrity protection, it does not protect against all risks associated with running over any untrusted network, particularly DoS risks.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:HExploitability: 3.9 | Impact: 3.6

Affected Packages5 packages

▶Mavenorg.apache.tomcat:tomcat10.1.0-M1 — 10.1.0-M15+3

▶NVDapache/tomcat8.5.38 — 8.5.78+3

▶CVEListV5apache_software_foundation/apache_tomcat4 versions+3

▶Debiantomcat9< 9.0.43-2~deb11u4+3

▶NVDoracle/hospitality_cruise_shipboard_property_management_system20.2.1

Also affects: Debian Linux 10.0, 11.0

Patches

Patch: www.oracle.com ↗Patch: www.oracle.com ↗

🔴Vulnerability Details

OSV

Apache Tomcat EncryptInterceptor error leads to Uncontrolled Resource Consumption↗2022-05-13

▶

GHSA

Apache Tomcat EncryptInterceptor error leads to Uncontrolled Resource Consumption↗2022-05-13

▶

OSV

CVE-2022-29885: The documentation of Apache Tomcat 10↗2022-05-12

▶

CVEList

EncryptInterceptor does not provide complete protection on insecure networks↗2022-05-12

▶

💥Exploits & PoCs

Exploit-DB

Apache Tomcat 10.1 - Denial Of Service↗2023-04-05

▶

📋Vendor Advisories

Ubuntu

Tomcat vulnerabilities↗2024-08-01

▶

Oracle

Oracle Oracle Communications Risk Matrix: BEServer (Apache Tomcat) — CVE-2022-29885↗2022-10-15

▶

Oracle

Oracle Oracle Hospitality Applications Risk Matrix: Next-Gen SPMS (Apache Tomcat) — CVE-2022-29885↗2022-07-15

▶

Red Hat

tomcat: EncryptInterceptor documentation mistake↗2022-05-10

▶

Debian

CVE-2022-29885: tomcat9 - The documentation of Apache Tomcat 10.1.0-M1 to 10.1.0-M14, 10.0.0-M1 to 10.0.20...↗2022

▶