Apache Tomcat: JsonErrorReportValve escaping
CVE-2022-45143

7.5HIGH

Key Information:

Vendor: Apache
Status: Apache Tomcat
Vendor: CVE Published:; 3 January 2023

Summary

The JsonErrorReportValve in Apache Tomcat versions 8.5.83, 9.0.40 to 9.0.68, and 10.1.0-M1 to 10.1.1 exposes a vulnerability due to improper handling of user-provided data. Specifically, the system fails to escape values for the type, message, or description, allowing attackers to manipulate JSON output. This flaw could potentially be exploited to compromise the integrity of the application by injecting malicious data, leading to variable outcome in how information is rendered in JSON format.

Affected Version(s)

Apache Tomcat 10.1.0-M1 <= 10.1.1

Apache Tomcat 9.0.40 <= 9.0.68

References

https://lists.apache.org/thread/yqkd183xrw3wqvnpcg3osbcry...

vendor-advisory

https://security.gentoo.org/glsa/202305-37

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

None

Integrity:

High

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Jan 3, 2023
Vulnerability Reserved
Nov 10, 2022