Candidate: CVE-2022-23181
PublicDate: 2022-01-27 13:15:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23181
 https://lists.apache.org/thread/l8x62p3k19yfcb208jo4zrb83k5mfwg9
 https://github.com/apache/tomcat/commit/1385c624b4a1e994426e810075c850edc38a700e (9.0.57)
 https://github.com/apache/tomcat/commit/97943959ba721ad5e8e8ba765a68d2b153348530 (8.5.74)
Description:
 The fix for bug CVE-2020-9484 introduced a time of check, time of use
 vulnerability into Apache Tomcat 10.1.0-M1 to 10.1.0-M8, 10.0.0-M5 to
 10.0.14, 9.0.35 to 9.0.56 and 8.5.55 to 8.5.73 that allowed a local
 attacker to perform actions with the privileges of the user that the Tomcat
 process is using. This issue is only exploitable when Tomcat is configured
 to persist sessions using the FileStore.
Ubuntu-Description:
Notes:
Mitigation:
Bugs:
Priority: low
Discovered-by:
Assigned-to:
CVSS:
 nvd: CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H [7.0 HIGH]


Patches_tomcat9:
upstream_tomcat9: needs-triage
trusty_tomcat9: ignored (out of standard support)
xenial_tomcat9: ignored (out of standard support)
bionic_tomcat9: needs-triage
focal_tomcat9: needs-triage
impish_tomcat9: needs-triage
jammy_tomcat9: needs-triage
devel_tomcat9: needs-triage

Patches_tomcat8:
upstream_tomcat8: needs-triage
esm-infra/xenial_tomcat8: needs-triage
trusty_tomcat8: ignored (out of standard support)
xenial_tomcat8: ignored (out of standard support)
bionic_tomcat8: needs-triage