Description

The setGlobalContext method in org/apache/naming/factory/ResourceLinkFactory.java in Apache Tomcat 7.x before 7.0.68, 8.x before 8.0.31, and 9.x before 9.0.0.M3 does not consider whether ResourceLinkFactory.setGlobalContext callers are authorized, which allows remote authenticated users to bypass intended SecurityManager restrictions and read or write to arbitrary application data, or cause a denial of service (application disruption), via a web application that sets a crafted global context.

Remediation

References

CVE-2016-0763

Related Vulnerabilities

Moodle Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2019-10186)

WordPress Plugin Product Catalog for WordPress Unspecified Vulnerability (1.4.5)

WordPress Plugin Inline Gallery 'do' Parameter Cross-Site Scripting (0.3.9)

WordPress Permissions, Privileges, and Access Controls Vulnerability (CVE-2011-5270)

WordPress Plugin Realteo Multiple Vulnerabilities (1.2.3)

Severity

Medium

Classification

CVE-2016-0763 CWE-264 CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

Tags

Missing Update Known Vulnerabilities