Apache Tomcat CVE-2018-8034 Security Bypass Vulnerability

Bugtraq ID:	104895
Class:	Unknown
CVE:	CVE-2018-8034
Remote:	Yes
Local:	No
Published:	Jul 22 2018 12:00AM
Updated:	Nov 08 2018 05:00AM
Credit:	The vendor reported this issue.
Vulnerable:	Redhat JBoss Web Server (JWS) 3.0 Redhat JBoss EWS 5 Redhat JBoss EWS 2 Redhat Jboss EAP 6 Redhat Enterprise Linux 7 Bluecoat Director 6.1 Bluecoat Content Analysis 2.3 Bluecoat Content Analysis 2.2 Apache Tomcat 9.0.9 Apache Tomcat 9.0.8 Apache Tomcat 9.0.5 Apache Tomcat 9.0.4 Apache Tomcat 9.0.1 Apache Tomcat 8.5.31 Apache Tomcat 8.5.28 Apache Tomcat 8.5.27 Apache Tomcat 8.5.23 Apache Tomcat 8.5.16 Apache Tomcat 8.5.15 Apache Tomcat 8.5.14 Apache Tomcat 8.5.13 Apache Tomcat 8.5.12 Apache Tomcat 8.5.11 Apache Tomcat 8.5.9 Apache Tomcat 8.5.8 Apache Tomcat 8.5.7 Apache Tomcat 8.5.6 Apache Tomcat 8.5.5 Apache Tomcat 8.5.4 Apache Tomcat 8.5.1 Apache Tomcat 7.0.88 Apache Tomcat 7.0.85 Apache Tomcat 7.0.84 Apache Tomcat 7.0.82 Apache Tomcat 7.0.81 Apache Tomcat 7.0.80 Apache Tomcat 7.0.79 Apache Tomcat 7.0.78 Apache Tomcat 7.0.77 Apache Tomcat 7.0.76 Apache Tomcat 7.0.75 Apache Tomcat 7.0.74 Apache Tomcat 7.0.73 Apache Tomcat 7.0.72 Apache Tomcat 7.0.70 Apache Tomcat 7.0.69 Apache Tomcat 7.0.67 Apache Tomcat 7.0.65 Apache Tomcat 7.0.60 Apache Tomcat 7.0.59 Apache Tomcat 7.0.57 Apache Tomcat 7.0.54 Apache Tomcat 7.0.53 Apache Tomcat 7.0.50 Apache Tomcat 7.0.33 Apache Tomcat 7.0.32 Apache Tomcat 7.0.31 Apache Tomcat 7.0.30 Apache Tomcat 7.0.29 Apache Tomcat 7.0.28 Apache Tomcat 7.0.27 Apache Tomcat 7.0.26 Apache Tomcat 7.0.25 Apache Tomcat 9.0.0M8 Apache Tomcat 9.0.0M6 Apache Tomcat 9.0.0.M9 Apache Tomcat 9.0.0.M7 Apache Tomcat 9.0.0.M5 Apache Tomcat 9.0.0.M4 Apache Tomcat 9.0.0.M3 Apache Tomcat 9.0.0.M22 Apache Tomcat 9.0.0.M21 Apache Tomcat 9.0.0.M20 Apache Tomcat 9.0.0.M2 Apache Tomcat 9.0.0.M19 Apache Tomcat 9.0.0.M18 Apache Tomcat 9.0.0.M17 Apache Tomcat 9.0.0.M15 Apache Tomcat 9.0.0.M13 Apache Tomcat 9.0.0.M12 Apache Tomcat 9.0.0.M11 Apache Tomcat 9.0.0.M10 Apache Tomcat 9.0.0.M1 Apache Tomcat 8.5.3 Apache Tomcat 8.5.2 Apache Tomcat 8.5.0 Apache Tomcat 7.0.68 Apache Tomcat 7.0.55 Apache Tomcat 7.0.49 Apache Tomcat 7.0.48 Apache Tomcat 7.0.47 Apache Tomcat 7.0.46 Apache Tomcat 7.0.45 Apache Tomcat 7.0.44 Apache Tomcat 7.0.43 Apache Tomcat 7.0.42 Apache Tomcat 7.0.41 Apache Tomcat 7.0.40 Apache Tomcat 7.0.39 Apache Tomcat 7.0.38 Apache Tomcat 7.0.37 Apache Tomcat 7.0.36 Apache Tomcat 7.0.35 Apache Tomcat 7.0.34
Not Vulnerable:	Apache Tomcat 9.0.10 Apache Tomcat 8.5.32 Apache Tomcat 8.0.53 Apache Tomcat 7.0.90

Apache Tomcat CVE-2018-8034 Security Bypass Vulnerability

Apache Tomcat is prone to a security-bypass vulnerability.

Attackers can exploit this issue to bypass certain security restrictions to perform unauthorized actions. This may aid in further attacks.

Apache Tomcat 7.0.25 through 7.0.88, 8.5.0 through 8.5.31, and 9.0.0.M1 through 9.0.9 are vulnerable.

Apache Tomcat CVE-2018-8034 Security Bypass Vulnerability

Currently, we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].

Apache Tomcat CVE-2018-8034 Security Bypass Vulnerability

Solution:
Updates are available. Please see the references or vendor advisory for more information.

Apache Tomcat CVE-2018-8034 Security Bypass Vulnerability

References:

• Apache Homepage (Apache)
  
• Apache Tomcat 7.x vulnerabilities (Apache)
  
• Apache Tomcat 9.x vulnerabilities (Apache)
  
• Bug 1607580 - (CVE-2018-8034) CVE-2018-8034 tomcat: host name verification missi (Red Hat Bugzilla)
  
• CVE-2018-8034 (Red Hat Bugzilla)
  
• CVE-2018-8034 Apache Tomcat - Security Constraint Bypass (Apache)
  
• Revision 1833757 (Apache)
  
• Revision 1833758 (Apache)
  
• Apache Tomcat 8.x vulnerabilities (Apache)
  
• SYMSA1463: Apache Tomcat Vulnerabilities Jan-Aug 2018 (Symantec)