Vulmon Recent Vulnerabilities Trends About Contact
6.8
CVSSv2

CVE-2020-9484

Published: 20/05/2020 Updated: 28/05/2020
CVSS v2 Base Score: 6.8 | Impact Score: 6.4 | Exploitability Score: 8.6
Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P
Subscribe to Tomcat

Vulnerability Summary

Apache Tomcat could allow a remote authenticated malicious user to execute arbitrary code on the system, caused by an unsafe deserialization when the server is configured to use the PersistenceManager with a FileStore. By sending specially-crafted input, an attacker could exploit this vulnerability to execute arbitrary code on the system.

Vulnerability Trend

Affected Products

Vendor Product Versions
ApacheTomcat7.0.0, 7.0.1, 7.0.2, 7.0.3, 7.0.4, 7.0.5, 7.0.6, 7.0.7, 7.0.8, 7.0.9, 7.0.10, 7.0.11, 7.0.12, 7.0.13, 7.0.14, 7.0.15, 7.0.16, 7.0.17, 7.0.18, 7.0.19, 7.0.20, 7.0.21, 7.0.22, 7.0.23, 7.0.24, 7.0.25, 7.0.26, 7.0.27, 7.0.28, 7.0.29, 7.0.30, 7.0.31, 7.0.32, 7.0.33, 7.0.34, 7.0.35, 7.0.36, 7.0.37, 7.0.38, 7.0.39, 7.0.40, 7.0.41, 7.0.42, 7.0.43, 7.0.44, 7.0.45, 7.0.46, 7.0.47, 7.0.48, 7.0.49, 7.0.50, 7.0.51, 7.0.52, 7.0.53, 7.0.54, 7.0.55, 7.0.56, 7.0.57, 7.0.58, 7.0.59, 7.0.60, 7.0.61, 7.0.62, 7.0.63, 7.0.64, 7.0.65, 7.0.66, 7.0.67, 7.0.68, 7.0.69, 7.0.70, 7.0.71, 7.0.72, 7.0.73, 7.0.74, 7.0.75, 7.0.76, 7.0.77, 7.0.78, 7.0.79, 7.0.80, 7.0.81, 7.0.82, 7.0.83, 7.0.84, 7.0.85, 7.0.86, 7.0.87, 7.0.88, 7.0.89, 7.0.90, 7.0.91, 7.0.92, 7.0.93, 7.0.94, 7.0.95, 7.0.96, 7.0.97, 7.0.98, 7.0.99, 7.0.100, 8.5.0, 8.5.1, 8.5.2, 8.5.3, 8.5.4, 8.5.5, 8.5.6, 8.5.7, 8.5.8, 8.5.9, 8.5.10, 8.5.11, 8.5.12, 8.5.13, 8.5.14, 8.5.15, 8.5.16, 8.5.17, 8.5.18, 8.5.19, 8.5.20, 8.5.21, 8.5.22, 8.5.23, 8.5.24, 8.5.25, 8.5.26, 8.5.27, 8.5.28, 8.5.29, 8.5.30, 8.5.31, 8.5.32, 8.5.33, 8.5.34, 8.5.35, 8.5.36, 8.5.37, 8.5.38, 8.5.39, 8.5.40, 8.5.41, 8.5.42, 8.5.43, 8.5.44, 8.5.45, 8.5.46, 8.5.47, 8.5.48, 8.5.49, 8.5.50, 8.5.51, 8.5.52, 9.0.0, 9.0.1, 9.0.2, 9.0.3, 9.0.4, 9.0.5, 9.0.6, 9.0.7, 9.0.8, 9.0.9, 9.0.10, 9.0.11, 9.0.12, 9.0.13, 9.0.14, 9.0.15, 9.0.16, 9.0.17, 9.0.18, 9.0.19, 9.0.20, 9.0.21, 9.0.22, 9.0.23, 9.0.24, 9.0.25, 9.0.26, 9.0.27, 9.0.28, 9.0.29, 9.0.30, 9.0.31, 9.0.32, 10.0.0

Vendor Advisories

Debian CVElist Bug Report Logs: tomcat9: CVE-2020-9484
Debian Bug report logs - #961209 tomcat9: CVE-2020-9484 Package: src:tomcat9; Maintainer for src:tomcat9 is Debian Java Maintainers <pkg-java-maintainers@listsaliothdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Thu, 21 May 2020 12:24:02 UTC Severity: grave Tags: security, upstream Found ...
Arch Linux Advisories: [ASA-202005-19] tomcat7: arbitrary code execution
Arch Linux Security Advisory ASA-202005-19 ========================================== Severity: High Date : 2020-05-31 CVE-ID : CVE-2020-9484 Package : tomcat7 Type : arbitrary code execution Remote : No Link : securityarchlinuxorg/AVG-1169 Summary ======= The package tomcat7 before version 70104-1 is vulnerable to arbitra ...
Arch Linux Advisories: [ASA-202005-20] tomcat8: arbitrary code execution
Arch Linux Security Advisory ASA-202005-20 ========================================== Severity: High Date : 2020-05-31 CVE-ID : CVE-2020-9484 Package : tomcat8 Type : arbitrary code execution Remote : No Link : securityarchlinuxorg/AVG-1170 Summary ======= The package tomcat8 before version 8555-1 is vulnerable to arbitrar ...
Arch Linux Advisories: [ASA-202005-18] tomcat9: arbitrary code execution
Arch Linux Security Advisory ASA-202005-18 ========================================== Severity: High Date : 2020-05-31 CVE-ID : CVE-2020-9484 Package : tomcat9 Type : arbitrary code execution Remote : No Link : securityarchlinuxorg/AVG-1171 Summary ======= The package tomcat9 before version 9035-1 is vulnerable to arbitrar ...
Arch Linux Issues:
When using Apache Tomcat versions 1000-M1 to 1000-M4, 900M1 to 9034, 850 to 8554 and 700 to 70103 if a) an attacker is able to control the contents and name of a file on the server; and b) the server is configured to use the PersistenceManager with a FileStore; and c) the PersistenceManager is configured with sessionAttributeValueC ...

Mailing Lists

Full Disclosure: CVE-2020-9484 Apache Tomcat Remote Code Execution via session persistence
CVE-2020-9484 Apache Tomcat Remote Code Execution via session persistence Severity: High Vendor: The Apache Software Foundation Versions Affected: Apache Tomcat 1000-M1 to 1000-M4 Apache Tomcat 900M1 to 9034 Apache Tomcat 850 to 8554 Apache Tomcat 700 to 70103 Description: If: a) an attacker is able to control the contents and ...

Github Repositories

CVE-2020-9484

用Kali 2.0复现Apache Tomcat Session反序列化代码执行漏洞

CVE-2020-9484

利用ceye批量检测CVE-2020-9484

CVE-2020-9484

CVE-2020-9484

No description, website, or topics provided.

References

CWE-502http://lists.opensuse.org/opensuse-security-announce/2020-05/msg00057.htmlhttps://lists.apache.org/thread.html/r26950738f4b4ca2d256597cf391d52d3450fa665c297ea5ca38f5469@%3Cusers.tomcat.apache.org%3Ehttps://lists.apache.org/thread.html/r77eae567ed829da9012cadb29af17f2df8fa23bf66faf88229857bb1%40%3Cannounce.tomcat.apache.org%3Ehttps://lists.apache.org/thread.html/r7bc247fffcb1d58415215c861d2354bd653c86266230d78a93c71ae2@%3Cdev.tomcat.apache.org%3Ehttps://lists.apache.org/thread.html/rf70f53af27e04869bdac18b1fc14a3ee529e59eb12292c8791a77926@%3Cusers.tomcat.apache.org%3Ehttps://lists.debian.org/debian-lts-announce/2020/05/msg00020.htmlhttps://lists.debian.org/debian-lts-announce/2020/05/msg00026.htmlhttps://security.netapp.com/advisory/ntap-20200528-0005/https://github.com/IdealDreamLast/CVE-2020-9484https://github.com/FiveAourThe/CVE-2020-9484https://nvd.nist.govhttps://exchange.xforce.ibmcloud.com/vulnerabilities/182231
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2019-5331firewallCVE-2019-12033CVE-2020-12062memory leakdevice library wizardCVE-2019-0708CSRFCVE-2020-13758abbCVE-2020-1066