CVE-2014-7810

Current Description

The Expression Language (EL) implementation in Apache Tomcat 6.x before 6.0.44, 7.x before 7.0.58, and 8.x before 8.0.16 does not properly consider the possibility of an accessible interface implemented by an inaccessible class, which allows attackers to bypass a SecurityManager protection mechanism via a web application that leverages use of incorrect privileges during EL evaluation.

Basic Data

PublishedJune 07, 2015
Last ModifiedApril 15, 2019
Assignercve@mitre.org
Data TypeCVE
Data FormatMITRE
Data Version4.0
Problem TypeCWE-284
CVE Data Version4.0

Base Metric V2

CVSS 2 - Version2.0
CVSS 2 - Vector StringAV:N/AC:L/Au:N/C:N/I:P/A:N
CVSS 2 - Access VectorNETWORK
CVSS 2 - Access ComplexityLOW
CVSS 2 - AuthenticationNONE
CVSS 2 - Confidentiality ImpactNONE
CVSS 2 - Availability ImpactNONE
CVSS 2 - Base Score5.0
SeverityMEDIUM
Exploitability Score10.0
Impact Score2.9
Obtain All Privilegefalse
Obtain User Privilegefalse
Obtain Other Privilegefalse

Base Metric V3

No data provided.

Configurations

  • OR - Configuration 1
    Cpe VersionPartVendorProductVersionUpdateEditionLanguageSW EditionTarget SWTarget HWOtherVersion Start IncludingVersion End IncludingVersion Start ExcludingVersion End Excluding
    2.3OSDebianDebian Linux7.0*******
  • OR - Configuration 2
    Cpe VersionPartVendorProductVersionUpdateEditionLanguageSW EditionTarget SWTarget HWOtherVersion Start IncludingVersion End IncludingVersion Start ExcludingVersion End Excluding
    2.3ApplicationApacheTomcat6.0.0*******
    2.3ApplicationApacheTomcat6.0.0alpha******
    2.3ApplicationApacheTomcat6.0.1*******
    2.3ApplicationApacheTomcat6.0.1alpha******
    2.3ApplicationApacheTomcat6.0.2*******
    2.3ApplicationApacheTomcat6.0.2alpha******
    2.3ApplicationApacheTomcat6.0.2beta******
    2.3ApplicationApacheTomcat6.0.3*******
    2.3ApplicationApacheTomcat6.0.4*******
    2.3ApplicationApacheTomcat6.0.4alpha******
    2.3ApplicationApacheTomcat6.0.5*******
    2.3ApplicationApacheTomcat6.0.6*******
    2.3ApplicationApacheTomcat6.0.6alpha******
    2.3ApplicationApacheTomcat6.0.7*******
    2.3ApplicationApacheTomcat6.0.7alpha******
    2.3ApplicationApacheTomcat6.0.7beta******
    2.3ApplicationApacheTomcat6.0.8*******
    2.3ApplicationApacheTomcat6.0.8alpha******
    2.3ApplicationApacheTomcat6.0.9*******
    2.3ApplicationApacheTomcat6.0.9beta******
    2.3ApplicationApacheTomcat6.0.10*******
    2.3ApplicationApacheTomcat6.0.11*******
    2.3ApplicationApacheTomcat6.0.12*******
    2.3ApplicationApacheTomcat6.0.13*******
    2.3ApplicationApacheTomcat6.0.14*******
    2.3ApplicationApacheTomcat6.0.15*******
    2.3ApplicationApacheTomcat6.0.16*******
    2.3ApplicationApacheTomcat6.0.17*******
    2.3ApplicationApacheTomcat6.0.18*******
    2.3ApplicationApacheTomcat6.0.19*******
    2.3ApplicationApacheTomcat6.0.20*******
    2.3ApplicationApacheTomcat6.0.24*******
    2.3ApplicationApacheTomcat6.0.26*******
    2.3ApplicationApacheTomcat6.0.27*******
    2.3ApplicationApacheTomcat6.0.28*******
    2.3ApplicationApacheTomcat6.0.29*******
    2.3ApplicationApacheTomcat6.0.30*******
    2.3ApplicationApacheTomcat6.0.31*******
    2.3ApplicationApacheTomcat6.0.32*******
    2.3ApplicationApacheTomcat6.0.33*******
    2.3ApplicationApacheTomcat6.0.35*******
    2.3ApplicationApacheTomcat6.0.36*******
    2.3ApplicationApacheTomcat6.0.37*******
    2.3ApplicationApacheTomcat6.0.39*******
    2.3ApplicationApacheTomcat6.0.41*******
    2.3ApplicationApacheTomcat6.0.43*******
    2.3ApplicationApacheTomcat7.0.0*******
    2.3ApplicationApacheTomcat7.0.0beta******
    2.3ApplicationApacheTomcat7.0.1*******
    2.3ApplicationApacheTomcat7.0.2*******
    2.3ApplicationApacheTomcat7.0.2beta******
    2.3ApplicationApacheTomcat7.0.3*******
    2.3ApplicationApacheTomcat7.0.4*******
    2.3ApplicationApacheTomcat7.0.4beta******
    2.3ApplicationApacheTomcat7.0.5*******
    2.3ApplicationApacheTomcat7.0.6*******
    2.3ApplicationApacheTomcat7.0.7*******
    2.3ApplicationApacheTomcat7.0.8*******
    2.3ApplicationApacheTomcat7.0.9*******
    2.3ApplicationApacheTomcat7.0.10*******
    2.3ApplicationApacheTomcat7.0.11*******
    2.3ApplicationApacheTomcat7.0.12*******
    2.3ApplicationApacheTomcat7.0.13*******
    2.3ApplicationApacheTomcat7.0.14*******
    2.3ApplicationApacheTomcat7.0.15*******
    2.3ApplicationApacheTomcat7.0.16*******
    2.3ApplicationApacheTomcat7.0.17*******
    2.3ApplicationApacheTomcat7.0.18*******
    2.3ApplicationApacheTomcat7.0.19*******
    2.3ApplicationApacheTomcat7.0.20*******
    2.3ApplicationApacheTomcat7.0.21*******
    2.3ApplicationApacheTomcat7.0.22*******
    2.3ApplicationApacheTomcat7.0.23*******
    2.3ApplicationApacheTomcat7.0.24*******
    2.3ApplicationApacheTomcat7.0.25*******
    2.3ApplicationApacheTomcat7.0.26*******
    2.3ApplicationApacheTomcat7.0.27*******
    2.3ApplicationApacheTomcat7.0.28*******
    2.3ApplicationApacheTomcat7.0.29*******
    2.3ApplicationApacheTomcat7.0.30*******
    2.3ApplicationApacheTomcat7.0.31*******
    2.3ApplicationApacheTomcat7.0.32*******
    2.3ApplicationApacheTomcat7.0.33*******
    2.3ApplicationApacheTomcat7.0.34*******
    2.3ApplicationApacheTomcat7.0.35*******
    2.3ApplicationApacheTomcat7.0.36*******
    2.3ApplicationApacheTomcat7.0.37*******
    2.3ApplicationApacheTomcat7.0.38*******
    2.3ApplicationApacheTomcat7.0.39*******
    2.3ApplicationApacheTomcat7.0.40*******
    2.3ApplicationApacheTomcat7.0.41*******
    2.3ApplicationApacheTomcat7.0.42*******
    2.3ApplicationApacheTomcat7.0.43*******
    2.3ApplicationApacheTomcat7.0.44*******
    2.3ApplicationApacheTomcat7.0.45*******
    2.3ApplicationApacheTomcat7.0.46*******
    2.3ApplicationApacheTomcat7.0.47*******
    2.3ApplicationApacheTomcat7.0.48*******
    2.3ApplicationApacheTomcat7.0.49*******
    2.3ApplicationApacheTomcat7.0.50*******
    2.3ApplicationApacheTomcat7.0.52*******
    2.3ApplicationApacheTomcat7.0.53*******
    2.3ApplicationApacheTomcat7.0.54*******
    2.3ApplicationApacheTomcat7.0.55*******
    2.3ApplicationApacheTomcat7.0.56*******
    2.3ApplicationApacheTomcat7.0.57*******
    2.3ApplicationApacheTomcat8.0.0rc1******
    2.3ApplicationApacheTomcat8.0.0rc10******
    2.3ApplicationApacheTomcat8.0.0rc2******
    2.3ApplicationApacheTomcat8.0.0rc5******
    2.3ApplicationApacheTomcat8.0.1*******
    2.3ApplicationApacheTomcat8.0.3*******
    2.3ApplicationApacheTomcat8.0.5*******
    2.3ApplicationApacheTomcat8.0.8*******
    2.3ApplicationApacheTomcat8.0.9*******
    2.3ApplicationApacheTomcat8.0.11*******
    2.3ApplicationApacheTomcat8.0.12*******
    2.3ApplicationApacheTomcat8.0.14*******
    2.3ApplicationApacheTomcat8.0.15*******
  • AND
    • OR - Configuration 3
      Cpe VersionPartVendorProductVersionUpdateEditionLanguageSW EditionTarget SWTarget HWOtherVersion Start IncludingVersion End IncludingVersion Start ExcludingVersion End Excluding
      2.3ApplicationApacheTomcat6.0.0*******
      2.3ApplicationApacheTomcat6.0.0alpha******
      2.3ApplicationApacheTomcat6.0.1*******
      2.3ApplicationApacheTomcat6.0.1alpha******
      2.3ApplicationApacheTomcat6.0.2*******
      2.3ApplicationApacheTomcat6.0.2alpha******
      2.3ApplicationApacheTomcat6.0.2beta******
      2.3ApplicationApacheTomcat6.0.3*******
      2.3ApplicationApacheTomcat6.0.4*******
      2.3ApplicationApacheTomcat6.0.4alpha******
      2.3ApplicationApacheTomcat6.0.5*******
      2.3ApplicationApacheTomcat6.0.6*******
      2.3ApplicationApacheTomcat6.0.6alpha******
      2.3ApplicationApacheTomcat6.0.7*******
      2.3ApplicationApacheTomcat6.0.7alpha******
      2.3ApplicationApacheTomcat6.0.7beta******
      2.3ApplicationApacheTomcat6.0.8*******
      2.3ApplicationApacheTomcat6.0.8alpha******
      2.3ApplicationApacheTomcat6.0.9*******
      2.3ApplicationApacheTomcat6.0.9beta******
      2.3ApplicationApacheTomcat6.0.10*******
      2.3ApplicationApacheTomcat6.0.11*******
      2.3ApplicationApacheTomcat6.0.12*******
      2.3ApplicationApacheTomcat6.0.13*******
      2.3ApplicationApacheTomcat6.0.14*******
      2.3ApplicationApacheTomcat6.0.15*******
      2.3ApplicationApacheTomcat6.0.16*******
      2.3ApplicationApacheTomcat6.0.17*******
      2.3ApplicationApacheTomcat6.0.18*******
      2.3ApplicationApacheTomcat6.0.19*******
      2.3ApplicationApacheTomcat6.0.20*******
      2.3ApplicationApacheTomcat6.0.24*******
      2.3ApplicationApacheTomcat6.0.26*******
      2.3ApplicationApacheTomcat6.0.27*******
      2.3ApplicationApacheTomcat6.0.28*******
      2.3ApplicationApacheTomcat6.0.29*******
      2.3ApplicationApacheTomcat6.0.30*******
      2.3ApplicationApacheTomcat6.0.31*******
      2.3ApplicationApacheTomcat6.0.32*******
      2.3ApplicationApacheTomcat6.0.33*******
      2.3ApplicationApacheTomcat6.0.35*******
      2.3ApplicationApacheTomcat6.0.36*******
      2.3ApplicationApacheTomcat6.0.37*******
      2.3ApplicationApacheTomcat6.0.39*******
      2.3ApplicationApacheTomcat6.0.41*******
      2.3ApplicationApacheTomcat6.0.43*******
      2.3ApplicationApacheTomcat7.0.0*******
      2.3ApplicationApacheTomcat7.0.0beta******
      2.3ApplicationApacheTomcat7.0.1*******
      2.3ApplicationApacheTomcat7.0.2*******
      2.3ApplicationApacheTomcat7.0.2beta******
      2.3ApplicationApacheTomcat7.0.3*******
      2.3ApplicationApacheTomcat7.0.4*******
      2.3ApplicationApacheTomcat7.0.4beta******
      2.3ApplicationApacheTomcat7.0.5*******
      2.3ApplicationApacheTomcat7.0.6*******
      2.3ApplicationApacheTomcat7.0.7*******
      2.3ApplicationApacheTomcat7.0.8*******
      2.3ApplicationApacheTomcat7.0.9*******
      2.3ApplicationApacheTomcat7.0.10*******
      2.3ApplicationApacheTomcat7.0.11*******
      2.3ApplicationApacheTomcat7.0.12*******
      2.3ApplicationApacheTomcat7.0.13*******
      2.3ApplicationApacheTomcat7.0.14*******
      2.3ApplicationApacheTomcat7.0.15*******
      2.3ApplicationApacheTomcat7.0.16*******
      2.3ApplicationApacheTomcat7.0.17*******
      2.3ApplicationApacheTomcat7.0.18*******
      2.3ApplicationApacheTomcat7.0.19*******
      2.3ApplicationApacheTomcat7.0.20*******
      2.3ApplicationApacheTomcat7.0.21*******
      2.3ApplicationApacheTomcat7.0.22*******
      2.3ApplicationApacheTomcat7.0.23*******
      2.3ApplicationApacheTomcat7.0.24*******
      2.3ApplicationApacheTomcat7.0.25*******
      2.3ApplicationApacheTomcat7.0.26*******
      2.3ApplicationApacheTomcat7.0.27*******
      2.3ApplicationApacheTomcat7.0.28*******
      2.3ApplicationApacheTomcat7.0.29*******
      2.3ApplicationApacheTomcat7.0.30*******
      2.3ApplicationApacheTomcat7.0.31*******
      2.3ApplicationApacheTomcat7.0.32*******
      2.3ApplicationApacheTomcat7.0.33*******
      2.3ApplicationApacheTomcat7.0.34*******
      2.3ApplicationApacheTomcat7.0.35*******
      2.3ApplicationApacheTomcat7.0.36*******
      2.3ApplicationApacheTomcat7.0.37*******
      2.3ApplicationApacheTomcat7.0.38*******
      2.3ApplicationApacheTomcat7.0.39*******
      2.3ApplicationApacheTomcat7.0.40*******
      2.3ApplicationApacheTomcat7.0.41*******
      2.3ApplicationApacheTomcat7.0.42*******
      2.3ApplicationApacheTomcat7.0.43*******
      2.3ApplicationApacheTomcat7.0.44*******
      2.3ApplicationApacheTomcat7.0.45*******
      2.3ApplicationApacheTomcat7.0.46*******
      2.3ApplicationApacheTomcat7.0.47*******
      2.3ApplicationApacheTomcat7.0.48*******
      2.3ApplicationApacheTomcat7.0.49*******
      2.3ApplicationApacheTomcat7.0.50*******
      2.3ApplicationApacheTomcat7.0.52*******
      2.3ApplicationApacheTomcat7.0.53*******
      2.3ApplicationApacheTomcat7.0.54*******
      2.3ApplicationApacheTomcat7.0.55*******
      2.3ApplicationApacheTomcat7.0.56*******
      2.3ApplicationApacheTomcat7.0.57*******
      2.3ApplicationApacheTomcat8.0.0rc1******
      2.3ApplicationApacheTomcat8.0.0rc10******
      2.3ApplicationApacheTomcat8.0.0rc2******
      2.3ApplicationApacheTomcat8.0.0rc5******
      2.3ApplicationApacheTomcat8.0.1*******
      2.3ApplicationApacheTomcat8.0.3*******
      2.3ApplicationApacheTomcat8.0.5*******
      2.3ApplicationApacheTomcat8.0.8*******
      2.3ApplicationApacheTomcat8.0.9*******
      2.3ApplicationApacheTomcat8.0.11*******
      2.3ApplicationApacheTomcat8.0.12*******
      2.3ApplicationApacheTomcat8.0.14*******
      2.3ApplicationApacheTomcat8.0.15*******
    • OR Running on/with:
      Cpe VersionPartVendorProductVersionUpdateEditionLanguageSW EditionTarget SWTarget HWOtherVersion Start IncludingVersion End IncludingVersion Start ExcludingVersion End Excluding
      2.3OSHpHp-ux11.31*******

Vulnerable Software List

VendorProductVersions
Debian Debian Linux 7.0
Apache Tomcat 6.0.0, 6.0.1, 6.0.10, 6.0.11, 6.0.12, 6.0.13, 6.0.14, 6.0.15, 6.0.16, 6.0.17, 6.0.18, 6.0.19, 6.0.2, 6.0.20, 6.0.24, 6.0.26, 6.0.27, 6.0.28, 6.0.29, 6.0.3, 6.0.30, 6.0.31, 6.0.32, 6.0.33, 6.0.35, 6.0.36, 6.0.37, 6.0.39, 6.0.4, 6.0.41, 6.0.43, 6.0.5, 6.0.6, 6.0.7, 6.0.8, 6.0.9, 7.0.0, 7.0.1, 7.0.10, 7.0.11, 7.0.12, 7.0.13, 7.0.14, 7.0.15, 7.0.16, 7.0.17, 7.0.18, 7.0.19, 7.0.2, 7.0.20, 7.0.21, 7.0.22, 7.0.23, 7.0.24, 7.0.25, 7.0.26, 7.0.27, 7.0.28, 7.0.29, 7.0.3, 7.0.30, 7.0.31, 7.0.32, 7.0.33, 7.0.34, 7.0.35, 7.0.36, 7.0.37, 7.0.38, 7.0.39, 7.0.4, 7.0.40, 7.0.41, 7.0.42, 7.0.43, 7.0.44, 7.0.45, 7.0.46, 7.0.47, 7.0.48, 7.0.49, 7.0.5, 7.0.50, 7.0.52, 7.0.53, 7.0.54, 7.0.55, 7.0.56, 7.0.57, 7.0.6, 7.0.7, 7.0.8, 7.0.9, 8.0.0, 8.0.1, 8.0.11, 8.0.12, 8.0.14, 8.0.15, 8.0.3, 8.0.5, 8.0.8, 8.0.9

References

NameSourceURLTags
HPSBUX03561http://marc.info/?l=bugtraq&m=145974991225029&w=2HPThird Party Advisory
RHSA-2015:1621http://rhn.redhat.com/errata/RHSA-2015-1621.htmlREDHAT
RHSA-2015:1622http://rhn.redhat.com/errata/RHSA-2015-1622.htmlREDHAT
RHSA-2016:0492http://rhn.redhat.com/errata/RHSA-2016-0492.htmlREDHAT
RHSA-2016:2046http://rhn.redhat.com/errata/RHSA-2016-2046.htmlREDHAT
http://svn.apache.org/viewvc?view=revision&revision=1644018http://svn.apache.org/viewvc?view=revision&revision=1644018CONFIRMPATCH
http://svn.apache.org/viewvc?view=revision&revision=1645642http://svn.apache.org/viewvc?view=revision&revision=1645642CONFIRMPATCH
http://tomcat.apache.org/security-6.htmlhttp://tomcat.apache.org/security-6.htmlCONFIRMPATCH Vendor Advisory
http://tomcat.apache.org/security-7.htmlhttp://tomcat.apache.org/security-7.htmlCONFIRMPATCH Vendor Advisory
http://tomcat.apache.org/security-8.htmlhttp://tomcat.apache.org/security-8.htmlCONFIRMPATCH Vendor Advisory
DSA-3428http://www.debian.org/security/2015/dsa-3428DEBIAN
DSA-3447http://www.debian.org/security/2016/dsa-3447DEBIAN
DSA-3530http://www.debian.org/security/2016/dsa-3530DEBIANThird Party Advisory
http://www.oracle.com/technetwork/security-advisory/cpujul2018-4258247.htmlhttp://www.oracle.com/technetwork/security-advisory/cpujul2018-4258247.htmlCONFIRM
http://www.oracle.com/technetwork/topics/security/bulletinoct2015-2511968.htmlhttp://www.oracle.com/technetwork/topics/security/bulletinoct2015-2511968.htmlCONFIRM
http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.htmlhttp://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.htmlCONFIRM
http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2016-3090545.htmlhttp://www.oracle.com/technetwork/topics/security/linuxbulletinoct2016-3090545.htmlCONFIRM
74665http://www.securityfocus.com/bid/74665BID
1032330http://www.securitytracker.com/id/1032330SECTRACK
USN-2654-1http://www.ubuntu.com/usn/USN-2654-1UBUNTU
USN-2655-1http://www.ubuntu.com/usn/USN-2655-1UBUNTU
https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05054964https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05054964CONFIRMThird Party Advisory
[tomcat-dev] 20190413 svn commit: r1857494 [15/20] - in /tomcat/site/trunk: ./ docs/ xdocs/https://lists.apache.org/thread.html/37220405a377c0182d2afdbc36461c4783b2930fbeae3a17f1333113@%3CdevMLIST
[tomcat-dev] 20190325 svn commit: r1856174 [21/29] - in /tomcat/site/trunk: docs/ xdocs/ xdocs/stylesheets/https://lists.apache.org/thread.html/39ae1f0bd5867c15755a6f959b271ade1aea04ccdc3b2e639dcd903b@%3CdevMLIST
[tomcat-dev] 20190415 svn commit: r1857582 [16/22] - in /tomcat/site/trunk: docs/ xdocs/stylesheets/https://lists.apache.org/thread.html/b84ad1258a89de5c9c853c7f2d3ad77e5b8b2930be9e132d5cef6b95@%3CdevMLIST
[tomcat-dev] 20190319 svn commit: r1855831 [23/30] - in /tomcat/site/trunk: ./ docs/ xdocs/https://lists.apache.org/thread.html/b8a1bf18155b552dcf9a928ba808cbadad84c236d85eab3033662cfb@%3CdevMLIST
[tomcat-dev] 20200203 svn commit: r1873527 [23/30] - /tomcat/site/trunk/docs/https://lists.apache.org/thread.html/r03c597a64de790ba42c167efacfa23300c3d6c9fe589ab87fe02859c@%3CdeMLIST
[tomcat-dev] 20200213 svn commit: r1873980 [26/34] - /tomcat/site/trunk/docs/https://lists.apache.org/thread.html/r587e50b86c1a96ee301f751d50294072d142fd6dc08a8987ae9f3a9b@%3CdeMLIST
[tomcat-dev] 20200213 svn commit: r1873980 [27/34] - /tomcat/site/trunk/docs/https://lists.apache.org/thread.html/r9136ff5b13e4f1941360b5a309efee2c114a14855578c3a2cbe5d19c@%3CdeMLIST