CSRF in Apache Tomcat
CVE-2015-5351
The (1) Manager and (2) Host Manager applications in Apache Tomcat 7.x before 7.0.68, 8.x before 8.0.31, and 9.x before 9.0.0.M2 establish sessions and send CSRF tokens for arbitrary new requests, which allows remote attackers to bypass a…
Vulnerability class: CSRF (Cross-Site Request Forgery)
EPSS: 0.060 (90.9th percentile) — read the EPSS interpretation.
CVSS v3 metric
CVSS v3 base score 8.8 (High). Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H.
Affected products
- Apache Tomcat — versions 7.0.0, 7.0.2, 7.0.4
- Canonical Ubuntu_linux — versions 12.04, 14.04, 15.10
- Debian Debian_linux — versions 7.0, 8.0
- N/a — versions n/a
Weakness classification (CWE)
Public proof-of-concept exploits
References
- 83330 (vdb-entry, x_refsource_BID)
- secalert@redhat.com (x_refsource_MISC)
- secalert@redhat.com (x_refsource_CONFIRM)
- GLSA-201705-09 (vendor-advisory, x_refsource_GENTOO)
- secalert@redhat.com (x_refsource_CONFIRM)
- openSUSE-SU-2016:0865 (vendor-advisory, x_refsource_SUSE)
- secalert@redhat.com (x_refsource_CONFIRM, Vendor Advisory)
- USN-3024-1 (x_refsource_UBUNTU, vendor-advisory)
- SUSE-SU-2016:0769 (vendor-advisory, x_refsource_SUSE)
- DSA-3530 (vendor-advisory, x_refsource_DEBIAN)
Frequently asked questions
- What is CVE-2015-5351?
- CVE-2015-5351 is a high-severity vulnerability in Apache Tomcat, classified under Cross-Site Request Forgery (CSRF). CVSS score: 8.8/10. Published 2016-02-25.
- How severe is CVE-2015-5351?
- High severity. CVSS v3 base score is 8.8 out of 10.
- Is CVE-2015-5351 known to be exploited?
- 2 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.