Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
7.8
CVSSv3

CVE-2016-5425

Published: 13/10/2016 Updated: 12/02/2023
CVSS v2 Base Score: 7.2 | Impact Score: 10 | Exploitability Score: 3.9
CVSS v3 Base Score: 7.8 | Impact Score: 5.9 | Exploitability Score: 1.8
VMScore: 725
Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C
Subscribe to Tomcat

Vulnerability Summary

The Tomcat package on Red Hat Enterprise Linux (RHEL) 7, Fedora, CentOS, Oracle Linux, and possibly other Linux distributions uses weak permissions for /usr/lib/tmpfiles.d/tomcat.conf, which allows local users to gain root privileges by leveraging membership in the tomcat group.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

apache tomcat -

Vendor Advisories

Red Hat: Important: tomcat security update
Synopsis Important: tomcat security update Type/Severity Security Advisory: Important Topic An update for tomcat is now available for Red Hat Enterprise Linux 7Red Hat Product Security has rated this update as having a security impact of Important A Common Vulnerability Scoring System (CVSS) base score, w ...
Red Hat: CVE-2016-5425
It was discovered that the Tomcat packages installed configuration file /usr/lib/tmpfilesd/tomcatconf writeable to the tomcat group A member of the group or a malicious web application deployed on Tomcat could use this flaw to escalate their privileges ...

Exploits

Exploit DB: Apache Tomcat 8/7/6 (RedHat Based Distros) - Local Privilege Escalation
============================================= - Discovered by: Dawid Golunski - legalhackerscom - dawid (at) legalhackerscom - CVE-2016-5425 - Release date: 10102016 - Revision: 1 - Severity: High ============================================= I VULNERABILITY ------------------------- Apache Tomcat (packaging on RedHat-based distros ...
Exploit DB: Apache Tomcat Privilege Escalation
This Metasploit module exploits a vulnerability in RedHat based systems where improper file permissions are applied to /usr/lib/tmpfilesd/tomcatconf for Apache Tomcat versions before 7054-8 The configuration files in tmpfilesd are used by systemd-tmpfiles to manage temporary files including their creation With this weak permission, you are a ...
Exploit DB: Apache Tomcat 8 / 7 / 6 Privilege Escalation
Apache Tomcat versions 8, 7, and 6 suffer from a privilege escalation vulnerability on RedHat-based distros ...

References

CWE-276http://www.securityfocus.com/bid/93472http://rhn.redhat.com/errata/RHSA-2016-2046.htmlhttp://www.openwall.com/lists/oss-security/2016/10/10/2http://packetstormsecurity.com/files/139041/Apache-Tomcat-8-7-6-Privilege-Escalation.htmlhttp://legalhackers.com/advisories/Tomcat-RedHat-Pkgs-Root-PrivEsc-Exploit-CVE-2016-5425.htmlhttp://www.oracle.com/technetwork/topics/security/linuxbulletinoct2016-3090545.htmlhttp://www.securitytracker.com/id/1036979https://www.exploit-db.com/exploits/40488/https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.htmlhttps://lists.apache.org/thread.html/6b414817c2b0bf351138911c8c922ec5dd577ebc0b9a7f42d705752d%40%3Cissues.activemq.apache.org%3Ehttps://access.redhat.com/errata/RHSA-2016:2046https://nvd.nist.govhttps://www.exploit-db.com/exploits/40488/https://access.redhat.com/security/cve/cve-2016-5425
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-38298CVE-2024-20356CVE-2023-21987CVE-2024-33217bypassCVE-2024-31804CVE-2024-32660unauthorizedSSRF
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook