Apache Tomcat Default Servlet Open Redirect Vulnerability [CVE-2018-11784]

CVE Number – CVE-2018-11784

A vulnerability in Apache Tomcat could allow an unauthenticated, remote attacker to conduct an open redirect attack on a targeted system.

The vulnerability is due to improper validation of URLs by the affected software when the default servlet returns a redirect to a directory. An attacker could exploit this vulnerability by submitting a malicious URL to a targeted system. A successful exploit could cause the redirect to go to any¬†URI of the attacker’s choice.

The Apache Software Foundation confirmed the vulnerability and released software updates.

Analysis
  • To exploit this vulnerability, the attacker may need access to trusted, internal networks behind a firewall in order to send a crafted URL to the targeted system. This access requirement may reduce the likelihood of a successful exploit.
Safeguards
  • Administrators are advised to apply the appropriate software updates.

    Administrators are advised to allow only trusted users to have network access.

    Administrators are advised to monitor affected systems.

Vendor Announcements
  • The Apache Software Foundation released a security advisory at the following link: CVE-2018-11784

Fixed Software
  • The Apache Software Foundation released software updates at the following link: Apache Tomcat 9.0.12



Duncan is a technology professional with over 20 years experience of working in various IT roles. He also has a wide range of other skills in radio, electronics and telecommunications.

Duncan Newell

Duncan is a technology professional with over 20 years experience of working in various IT roles. He also has a wide range of other skills in radio, electronics and telecommunications.

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.

%d bloggers like this: