IM
IronMonkey Threat Research

CVE-2024-50379 CRITICAL

Published: 2024-12-17 | Last Modified: 2025-11-03 | Status: Modified

Description

Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability during JSP compilation in Apache Tomcat permits an RCE on case insensitive file systems when the default servlet is enabled for write (non-default configuration). This issue affects Apache Tomcat: from 11.0.0-M1 through 11.0.1, from 10.1.0-M1 through 10.1.33, from 9.0.0.M1 through 9.0.97. The following versions were EOL at the time the CVE was created but are known to be affected: 8.5.0 though 8.5.100. Other, older, EOL versions may also be affected. Users are recommended to upgrade to version 11.0.2, 10.1.34 or 9.0.98, which fixes the issue.

Additional Descriptions (1)

La vulnerabilidad de condición de ejecución de tiempo de uso y tiempo de verificación (TOCTOU) durante la compilación de JSP en Apache Tomcat permite un RCE en sistemas de archivos que no distinguen entre mayúsculas y minúsculas cuando el servlet predeterminado está habilitado para escritura (configuración no predeterminada). Este problema afecta a Apache Tomcat: desde 11.0.0-M1 hasta 11.0.1, desde 10.1.0-M1 hasta 10.1.33, desde 9.0.0.M1 hasta 9.0.97. Se recomienda a los usuarios que actualicen a la versión 11.0.2, 10.1.34 o 9.0.08, que soluciona el problema.

CVSS Metrics

Base Score: 9.8 (CRITICAL)

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Attack VectorNETWORK
Attack ComplexityLOW
Privileges RequiredNONE
User InteractionNONE
ScopeUNCHANGED
Confidentiality ImpactHIGH
Integrity ImpactHIGH
Availability ImpactHIGH

Source: 134c704f-9b21-4f2e-91b3-4a467353bcc0

Type: Secondary

Exploitability Score: 3.9

Impact Score: 5.9

Weaknesses

Source Type Description
[email protected] Secondary
en CWE-367

Affected Products

Vendor Product Version Update Type
apache tomcat * <built-in method update of dict object at 0x75d827c73000> Application
apache tomcat * <built-in method update of dict object at 0x75d827c71440> Application
apache tomcat * <built-in method update of dict object at 0x75d827c73b00> Application
netapp bootstrap_os - <built-in method update of dict object at 0x75d7c9298b40> Operating System

Affected Configurations

Operator: OR

Vulnerable CPE
Yes cpe:2.3:a:apache:tomcat:*:*:*:*:*:*:*:*
Yes cpe:2.3:a:apache:tomcat:*:*:*:*:*:*:*:*
Yes cpe:2.3:a:apache:tomcat:*:*:*:*:*:*:*:*

Operator: OR

Vulnerable CPE
Yes cpe:2.3:o:netapp:bootstrap_os:-:*:*:*:*:*:*:*

Operator: OR

Vulnerable CPE
No cpe:2.3:h:netapp:hci_compute_node:-:*:*:*:*:*:*:*

References

Notification
Message here