Action not permitted
Modal body text goes here.
Modal Title
Modal Body
usn-4557-1
Vulnerability from osv_ubuntu
It was discovered that the Tomcat realm implementations incorrectly handled passwords when a username didn't exist. A remote attacker could possibly use this issue to enumerate usernames. (CVE-2016-0762)
Alvaro Munoz and Alexander Mirosh discovered that Tomcat incorrectly limited use of a certain utility method. A malicious application could possibly use this to bypass Security Manager restrictions. (CVE-2016-5018)
It was discovered that Tomcat incorrectly controlled reading system properties. A malicious application could possibly use this to bypass Security Manager restrictions. (CVE-2016-6794)
It was discovered that Tomcat incorrectly controlled certain configuration parameters. A malicious application could possibly use this to bypass Security Manager restrictions. (CVE-2016-6796)
It was discovered that Tomcat incorrectly limited access to global JNDI resources. A malicious application could use this to access any global JNDI resource without an explicit ResourceLink. (CVE-2016-6797)
Regis Leroy discovered that Tomcat incorrectly filtered certain invalid characters from the HTTP request line. A remote attacker could possibly use this issue to inject data into HTTP responses. (CVE-2016-6816)
Pierre Ernst discovered that the Tomcat JmxRemoteLifecycleListener did not implement a recommended fix. A remote attacker could possibly use this issue to execute arbitrary code. (CVE-2016-8735)
{
"affected": [
{
"database_specific": {
"cves_map": {
"cves": [
{
"id": "CVE-2016-0762",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
"type": "CVSS_V3"
},
{
"score": "low",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2016-6794",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
"type": "CVSS_V3"
},
{
"score": "low",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2016-6796",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"type": "CVSS_V3"
},
{
"score": "low",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2016-6797",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"type": "CVSS_V3"
},
{
"score": "low",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2016-6816",
"severity": [
{
"score": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2016-8735",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "high",
"type": "Ubuntu"
}
]
}
],
"ecosystem": "Ubuntu:16.04:LTS"
}
},
"ecosystem_specific": {
"availability": "No subscription required",
"binaries": [
{
"binary_name": "libservlet2.5-java",
"binary_version": "6.0.45+dfsg-1ubuntu0.1"
}
]
},
"package": {
"ecosystem": "Ubuntu:16.04:LTS",
"name": "tomcat6",
"purl": "pkg:deb/ubuntu/tomcat6@6.0.45+dfsg-1ubuntu0.1?arch=source\u0026distro=xenial"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "6.0.45+dfsg-1ubuntu0.1"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"6.0.41-4",
"6.0.45+dfsg-1"
]
}
],
"aliases": [],
"details": "It was discovered that the Tomcat realm implementations incorrectly handled\npasswords when a username didn\u0027t exist. A remote attacker could possibly\nuse this issue to enumerate usernames. (CVE-2016-0762)\n\nAlvaro Munoz and Alexander Mirosh discovered that Tomcat incorrectly\nlimited use of a certain utility method. A malicious application could\npossibly use this to bypass Security Manager restrictions. (CVE-2016-5018)\n\nIt was discovered that Tomcat incorrectly controlled reading system\nproperties. A malicious application could possibly use this to bypass\nSecurity Manager restrictions. (CVE-2016-6794)\n\nIt was discovered that Tomcat incorrectly controlled certain configuration\nparameters. A malicious application could possibly use this to bypass\nSecurity Manager restrictions. (CVE-2016-6796)\n\nIt was discovered that Tomcat incorrectly limited access to global JNDI\nresources. A malicious application could use this to access any global JNDI\nresource without an explicit ResourceLink. (CVE-2016-6797)\n\nRegis Leroy discovered that Tomcat incorrectly filtered certain invalid\ncharacters from the HTTP request line. A remote attacker could possibly\nuse this issue to inject data into HTTP responses. (CVE-2016-6816)\n\nPierre Ernst discovered that the Tomcat JmxRemoteLifecycleListener did not\nimplement a recommended fix. A remote attacker could possibly use this\nissue to execute arbitrary code. (CVE-2016-8735)\n",
"id": "USN-4557-1",
"modified": "2026-04-27T14:11:25Z",
"published": "2020-09-30T12:55:19Z",
"references": [
{
"type": "ADVISORY",
"url": "https://ubuntu.com/security/notices/USN-4557-1"
},
{
"type": "REPORT",
"url": "https://ubuntu.com/security/CVE-2016-0762"
},
{
"type": "REPORT",
"url": "https://ubuntu.com/security/CVE-2016-5018"
},
{
"type": "REPORT",
"url": "https://ubuntu.com/security/CVE-2016-6794"
},
{
"type": "REPORT",
"url": "https://ubuntu.com/security/CVE-2016-6796"
},
{
"type": "REPORT",
"url": "https://ubuntu.com/security/CVE-2016-6797"
},
{
"type": "REPORT",
"url": "https://ubuntu.com/security/CVE-2016-6816"
},
{
"type": "REPORT",
"url": "https://ubuntu.com/security/CVE-2016-8735"
}
],
"related": [],
"schema_version": "1.7.0",
"summary": "tomcat6 vulnerabilities",
"upstream": [
"UBUNTU-CVE-2016-0762",
"UBUNTU-CVE-2016-5018",
"UBUNTU-CVE-2016-6794",
"UBUNTU-CVE-2016-6796",
"UBUNTU-CVE-2016-6797",
"UBUNTU-CVE-2016-6816",
"UBUNTU-CVE-2016-8735"
]
}
ubuntu-cve-2016-0762
Vulnerability from osv_ubuntu
The Realm implementations in Apache Tomcat versions 9.0.0.M1 to 9.0.0.M9, 8.5.0 to 8.5.4, 8.0.0.RC1 to 8.0.36, 7.0.0 to 7.0.70 and 6.0.0 to 6.0.45 did not process the supplied password if the supplied user name did not exist. This made a timing attack possible to determine valid user names. Note that the default configuration includes the LockOutRealm which makes exploitation of this vulnerability harder.
{
"affected": [
{
"ecosystem_specific": {
"availability": "No subscription required",
"binaries": [
{
"binary_name": "libservlet2.4-java",
"binary_version": "6.0.39-1ubuntu0.1"
},
{
"binary_name": "libservlet2.5-java",
"binary_version": "6.0.39-1ubuntu0.1"
},
{
"binary_name": "libtomcat6-java",
"binary_version": "6.0.39-1ubuntu0.1"
},
{
"binary_name": "tomcat6",
"binary_version": "6.0.39-1ubuntu0.1"
},
{
"binary_name": "tomcat6-admin",
"binary_version": "6.0.39-1ubuntu0.1"
},
{
"binary_name": "tomcat6-common",
"binary_version": "6.0.39-1ubuntu0.1"
},
{
"binary_name": "tomcat6-docs",
"binary_version": "6.0.39-1ubuntu0.1"
},
{
"binary_name": "tomcat6-examples",
"binary_version": "6.0.39-1ubuntu0.1"
},
{
"binary_name": "tomcat6-extras",
"binary_version": "6.0.39-1ubuntu0.1"
},
{
"binary_name": "tomcat6-user",
"binary_version": "6.0.39-1ubuntu0.1"
}
]
},
"package": {
"ecosystem": "Ubuntu:14.04:LTS",
"name": "tomcat6",
"purl": "pkg:deb/ubuntu/tomcat6@6.0.39-1ubuntu0.1?arch=source\u0026distro=trusty"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "6.0.39-1ubuntu0.1"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"6.0.37-1",
"6.0.39-1"
]
},
{
"ecosystem_specific": {
"availability": "No subscription required",
"binaries": [
{
"binary_name": "libservlet2.5-java",
"binary_version": "6.0.45+dfsg-1ubuntu0.1"
}
]
},
"package": {
"ecosystem": "Ubuntu:16.04:LTS",
"name": "tomcat6",
"purl": "pkg:deb/ubuntu/tomcat6@6.0.45+dfsg-1ubuntu0.1?arch=source\u0026distro=xenial"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "6.0.45+dfsg-1ubuntu0.1"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"6.0.41-4",
"6.0.45+dfsg-1"
]
},
{
"ecosystem_specific": {
"availability": "No subscription required",
"binaries": [
{
"binary_name": "libservlet3.0-java",
"binary_version": "7.0.68-1ubuntu0.3"
},
{
"binary_name": "libtomcat7-java",
"binary_version": "7.0.68-1ubuntu0.3"
},
{
"binary_name": "tomcat7",
"binary_version": "7.0.68-1ubuntu0.3"
},
{
"binary_name": "tomcat7-admin",
"binary_version": "7.0.68-1ubuntu0.3"
},
{
"binary_name": "tomcat7-common",
"binary_version": "7.0.68-1ubuntu0.3"
},
{
"binary_name": "tomcat7-docs",
"binary_version": "7.0.68-1ubuntu0.3"
},
{
"binary_name": "tomcat7-examples",
"binary_version": "7.0.68-1ubuntu0.3"
},
{
"binary_name": "tomcat7-user",
"binary_version": "7.0.68-1ubuntu0.3"
}
]
},
"package": {
"ecosystem": "Ubuntu:16.04:LTS",
"name": "tomcat7",
"purl": "pkg:deb/ubuntu/tomcat7@7.0.68-1ubuntu0.3?arch=source\u0026distro=xenial"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "7.0.68-1ubuntu0.3"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"7.0.64-1",
"7.0.68-1",
"7.0.68-1ubuntu0.1"
]
},
{
"ecosystem_specific": {
"availability": "No subscription required",
"binaries": [
{
"binary_name": "libservlet3.1-java",
"binary_version": "8.0.32-1ubuntu1.3"
},
{
"binary_name": "libtomcat8-java",
"binary_version": "8.0.32-1ubuntu1.3"
},
{
"binary_name": "tomcat8",
"binary_version": "8.0.32-1ubuntu1.3"
},
{
"binary_name": "tomcat8-admin",
"binary_version": "8.0.32-1ubuntu1.3"
},
{
"binary_name": "tomcat8-common",
"binary_version": "8.0.32-1ubuntu1.3"
},
{
"binary_name": "tomcat8-docs",
"binary_version": "8.0.32-1ubuntu1.3"
},
{
"binary_name": "tomcat8-examples",
"binary_version": "8.0.32-1ubuntu1.3"
},
{
"binary_name": "tomcat8-user",
"binary_version": "8.0.32-1ubuntu1.3"
}
]
},
"package": {
"ecosystem": "Ubuntu:16.04:LTS",
"name": "tomcat8",
"purl": "pkg:deb/ubuntu/tomcat8@8.0.32-1ubuntu1.3?arch=source\u0026distro=xenial"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "8.0.32-1ubuntu1.3"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"8.0.26-1",
"8.0.28-1",
"8.0.30-1",
"8.0.32-1",
"8.0.32-1ubuntu1",
"8.0.32-1ubuntu1.1",
"8.0.32-1ubuntu1.2"
]
}
],
"aliases": [],
"details": "The Realm implementations in Apache Tomcat versions 9.0.0.M1 to 9.0.0.M9, 8.5.0 to 8.5.4, 8.0.0.RC1 to 8.0.36, 7.0.0 to 7.0.70 and 6.0.0 to 6.0.45 did not process the supplied password if the supplied user name did not exist. This made a timing attack possible to determine valid user names. Note that the default configuration includes the LockOutRealm which makes exploitation of this vulnerability harder.",
"id": "UBUNTU-CVE-2016-0762",
"modified": "2025-09-08T16:43:35Z",
"published": "2016-10-28T00:00:00Z",
"references": [
{
"type": "REPORT",
"url": "https://ubuntu.com/security/CVE-2016-0762"
},
{
"type": "REPORT",
"url": "http://markmail.org/message/pzuk6hauzljnm4r7?q=list:org.apache.tomcat.announce/"
},
{
"type": "ADVISORY",
"url": "https://ubuntu.com/security/notices/USN-3177-1"
},
{
"type": "ADVISORY",
"url": "https://ubuntu.com/security/notices/USN-4557-1"
},
{
"type": "REPORT",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-0762"
}
],
"related": [
"USN-3177-1",
"USN-4557-1"
],
"schema_version": "1.7.0",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
"type": "CVSS_V3"
},
{
"score": "low",
"type": "Ubuntu"
}
],
"upstream": [
"CVE-2016-0762"
]
}
ubuntu-cve-2016-5018
Vulnerability from osv_ubuntu
In Apache Tomcat 9.0.0.M1 to 9.0.0.M9, 8.5.0 to 8.5.4, 8.0.0.RC1 to 8.0.36, 7.0.0 to 7.0.70 and 6.0.0 to 6.0.45 a malicious web application was able to bypass a configured SecurityManager via a Tomcat utility method that was accessible to web applications.
{
"affected": [
{
"ecosystem_specific": {
"availability": "No subscription required",
"binaries": [
{
"binary_name": "libservlet3.0-java",
"binary_version": "7.0.52-1ubuntu0.8"
},
{
"binary_name": "libtomcat7-java",
"binary_version": "7.0.52-1ubuntu0.8"
},
{
"binary_name": "tomcat7",
"binary_version": "7.0.52-1ubuntu0.8"
},
{
"binary_name": "tomcat7-admin",
"binary_version": "7.0.52-1ubuntu0.8"
},
{
"binary_name": "tomcat7-common",
"binary_version": "7.0.52-1ubuntu0.8"
},
{
"binary_name": "tomcat7-docs",
"binary_version": "7.0.52-1ubuntu0.8"
},
{
"binary_name": "tomcat7-examples",
"binary_version": "7.0.52-1ubuntu0.8"
},
{
"binary_name": "tomcat7-user",
"binary_version": "7.0.52-1ubuntu0.8"
}
]
},
"package": {
"ecosystem": "Ubuntu:14.04:LTS",
"name": "tomcat7",
"purl": "pkg:deb/ubuntu/tomcat7@7.0.52-1ubuntu0.8?arch=source\u0026distro=trusty"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "7.0.52-1ubuntu0.8"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"7.0.42-1",
"7.0.47-1",
"7.0.50-1",
"7.0.52-1",
"7.0.52-1ubuntu0.1",
"7.0.52-1ubuntu0.3",
"7.0.52-1ubuntu0.6",
"7.0.52-1ubuntu0.7"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "libservlet2.4-java",
"binary_version": "6.0.39-1ubuntu0.1+esm3"
},
{
"binary_name": "libservlet2.5-java",
"binary_version": "6.0.39-1ubuntu0.1+esm3"
},
{
"binary_name": "libtomcat6-java",
"binary_version": "6.0.39-1ubuntu0.1+esm3"
},
{
"binary_name": "tomcat6",
"binary_version": "6.0.39-1ubuntu0.1+esm3"
},
{
"binary_name": "tomcat6-admin",
"binary_version": "6.0.39-1ubuntu0.1+esm3"
},
{
"binary_name": "tomcat6-common",
"binary_version": "6.0.39-1ubuntu0.1+esm3"
},
{
"binary_name": "tomcat6-docs",
"binary_version": "6.0.39-1ubuntu0.1+esm3"
},
{
"binary_name": "tomcat6-examples",
"binary_version": "6.0.39-1ubuntu0.1+esm3"
},
{
"binary_name": "tomcat6-extras",
"binary_version": "6.0.39-1ubuntu0.1+esm3"
},
{
"binary_name": "tomcat6-user",
"binary_version": "6.0.39-1ubuntu0.1+esm3"
}
]
},
"package": {
"ecosystem": "Ubuntu:Pro:14.04:LTS",
"name": "tomcat6",
"purl": "pkg:deb/ubuntu/tomcat6@6.0.39-1ubuntu0.1+esm3?arch=source\u0026distro=esm-infra-legacy/trusty"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"6.0.37-1",
"6.0.39-1",
"6.0.39-1ubuntu0.1",
"6.0.39-1ubuntu0.1+esm1",
"6.0.39-1ubuntu0.1+esm2",
"6.0.39-1ubuntu0.1+esm3"
]
},
{
"ecosystem_specific": {
"availability": "No subscription required",
"binaries": [
{
"binary_name": "libservlet3.0-java",
"binary_version": "7.0.68-1ubuntu0.3"
},
{
"binary_name": "libtomcat7-java",
"binary_version": "7.0.68-1ubuntu0.3"
},
{
"binary_name": "tomcat7",
"binary_version": "7.0.68-1ubuntu0.3"
},
{
"binary_name": "tomcat7-admin",
"binary_version": "7.0.68-1ubuntu0.3"
},
{
"binary_name": "tomcat7-common",
"binary_version": "7.0.68-1ubuntu0.3"
},
{
"binary_name": "tomcat7-docs",
"binary_version": "7.0.68-1ubuntu0.3"
},
{
"binary_name": "tomcat7-examples",
"binary_version": "7.0.68-1ubuntu0.3"
},
{
"binary_name": "tomcat7-user",
"binary_version": "7.0.68-1ubuntu0.3"
}
]
},
"package": {
"ecosystem": "Ubuntu:16.04:LTS",
"name": "tomcat7",
"purl": "pkg:deb/ubuntu/tomcat7@7.0.68-1ubuntu0.3?arch=source\u0026distro=xenial"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "7.0.68-1ubuntu0.3"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"7.0.64-1",
"7.0.68-1",
"7.0.68-1ubuntu0.1"
]
},
{
"ecosystem_specific": {
"availability": "No subscription required",
"binaries": [
{
"binary_name": "libservlet3.1-java",
"binary_version": "8.0.32-1ubuntu1.3"
},
{
"binary_name": "libtomcat8-java",
"binary_version": "8.0.32-1ubuntu1.3"
},
{
"binary_name": "tomcat8",
"binary_version": "8.0.32-1ubuntu1.3"
},
{
"binary_name": "tomcat8-admin",
"binary_version": "8.0.32-1ubuntu1.3"
},
{
"binary_name": "tomcat8-common",
"binary_version": "8.0.32-1ubuntu1.3"
},
{
"binary_name": "tomcat8-docs",
"binary_version": "8.0.32-1ubuntu1.3"
},
{
"binary_name": "tomcat8-examples",
"binary_version": "8.0.32-1ubuntu1.3"
},
{
"binary_name": "tomcat8-user",
"binary_version": "8.0.32-1ubuntu1.3"
}
]
},
"package": {
"ecosystem": "Ubuntu:16.04:LTS",
"name": "tomcat8",
"purl": "pkg:deb/ubuntu/tomcat8@8.0.32-1ubuntu1.3?arch=source\u0026distro=xenial"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "8.0.32-1ubuntu1.3"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"8.0.26-1",
"8.0.28-1",
"8.0.30-1",
"8.0.32-1",
"8.0.32-1ubuntu1",
"8.0.32-1ubuntu1.1",
"8.0.32-1ubuntu1.2"
]
}
],
"aliases": [],
"details": "In Apache Tomcat 9.0.0.M1 to 9.0.0.M9, 8.5.0 to 8.5.4, 8.0.0.RC1 to 8.0.36, 7.0.0 to 7.0.70 and 6.0.0 to 6.0.45 a malicious web application was able to bypass a configured SecurityManager via a Tomcat utility method that was accessible to web applications.",
"id": "UBUNTU-CVE-2016-5018",
"modified": "2026-06-04T10:36:05Z",
"published": "2016-10-28T00:00:00Z",
"references": [
{
"type": "REPORT",
"url": "https://ubuntu.com/security/CVE-2016-5018"
},
{
"type": "REPORT",
"url": "http://markmail.org/message/lixw6iyojoxwfizv?q=list:org.apache.tomcat.announce/"
},
{
"type": "ADVISORY",
"url": "https://ubuntu.com/security/notices/USN-3177-1"
},
{
"type": "ADVISORY",
"url": "https://ubuntu.com/security/notices/USN-4557-1"
},
{
"type": "REPORT",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-5018"
}
],
"related": [
"USN-3177-1",
"USN-4557-1"
],
"schema_version": "1.7.0",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
],
"upstream": [
"CVE-2016-5018"
]
}
ubuntu-cve-2016-6794
Vulnerability from osv_ubuntu
When a SecurityManager is configured, a web application's ability to read system properties should be controlled by the SecurityManager. In Apache Tomcat 9.0.0.M1 to 9.0.0.M9, 8.5.0 to 8.5.4, 8.0.0.RC1 to 8.0.36, 7.0.0 to 7.0.70, 6.0.0 to 6.0.45 the system property replacement feature for configuration files could be used by a malicious web application to bypass the SecurityManager and read system properties that should not be visible.
{
"affected": [
{
"ecosystem_specific": {
"availability": "No subscription required",
"binaries": [
{
"binary_name": "libservlet3.0-java",
"binary_version": "7.0.52-1ubuntu0.8"
},
{
"binary_name": "libtomcat7-java",
"binary_version": "7.0.52-1ubuntu0.8"
},
{
"binary_name": "tomcat7",
"binary_version": "7.0.52-1ubuntu0.8"
},
{
"binary_name": "tomcat7-admin",
"binary_version": "7.0.52-1ubuntu0.8"
},
{
"binary_name": "tomcat7-common",
"binary_version": "7.0.52-1ubuntu0.8"
},
{
"binary_name": "tomcat7-docs",
"binary_version": "7.0.52-1ubuntu0.8"
},
{
"binary_name": "tomcat7-examples",
"binary_version": "7.0.52-1ubuntu0.8"
},
{
"binary_name": "tomcat7-user",
"binary_version": "7.0.52-1ubuntu0.8"
}
]
},
"package": {
"ecosystem": "Ubuntu:14.04:LTS",
"name": "tomcat7",
"purl": "pkg:deb/ubuntu/tomcat7@7.0.52-1ubuntu0.8?arch=source\u0026distro=trusty"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "7.0.52-1ubuntu0.8"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"7.0.42-1",
"7.0.47-1",
"7.0.50-1",
"7.0.52-1",
"7.0.52-1ubuntu0.1",
"7.0.52-1ubuntu0.3",
"7.0.52-1ubuntu0.6",
"7.0.52-1ubuntu0.7"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "libservlet2.4-java",
"binary_version": "6.0.39-1ubuntu0.1+esm3"
},
{
"binary_name": "libservlet2.5-java",
"binary_version": "6.0.39-1ubuntu0.1+esm3"
},
{
"binary_name": "libtomcat6-java",
"binary_version": "6.0.39-1ubuntu0.1+esm3"
},
{
"binary_name": "tomcat6",
"binary_version": "6.0.39-1ubuntu0.1+esm3"
},
{
"binary_name": "tomcat6-admin",
"binary_version": "6.0.39-1ubuntu0.1+esm3"
},
{
"binary_name": "tomcat6-common",
"binary_version": "6.0.39-1ubuntu0.1+esm3"
},
{
"binary_name": "tomcat6-docs",
"binary_version": "6.0.39-1ubuntu0.1+esm3"
},
{
"binary_name": "tomcat6-examples",
"binary_version": "6.0.39-1ubuntu0.1+esm3"
},
{
"binary_name": "tomcat6-extras",
"binary_version": "6.0.39-1ubuntu0.1+esm3"
},
{
"binary_name": "tomcat6-user",
"binary_version": "6.0.39-1ubuntu0.1+esm3"
}
]
},
"package": {
"ecosystem": "Ubuntu:Pro:14.04:LTS",
"name": "tomcat6",
"purl": "pkg:deb/ubuntu/tomcat6@6.0.39-1ubuntu0.1+esm3?arch=source\u0026distro=esm-infra-legacy/trusty"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"6.0.37-1",
"6.0.39-1",
"6.0.39-1ubuntu0.1",
"6.0.39-1ubuntu0.1+esm1",
"6.0.39-1ubuntu0.1+esm2",
"6.0.39-1ubuntu0.1+esm3"
]
},
{
"ecosystem_specific": {
"availability": "No subscription required",
"binaries": [
{
"binary_name": "libservlet2.5-java",
"binary_version": "6.0.45+dfsg-1ubuntu0.1"
}
]
},
"package": {
"ecosystem": "Ubuntu:16.04:LTS",
"name": "tomcat6",
"purl": "pkg:deb/ubuntu/tomcat6@6.0.45+dfsg-1ubuntu0.1?arch=source\u0026distro=xenial"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "6.0.45+dfsg-1ubuntu0.1"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"6.0.41-4",
"6.0.45+dfsg-1"
]
},
{
"ecosystem_specific": {
"availability": "No subscription required",
"binaries": [
{
"binary_name": "libservlet3.0-java",
"binary_version": "7.0.68-1ubuntu0.3"
},
{
"binary_name": "libtomcat7-java",
"binary_version": "7.0.68-1ubuntu0.3"
},
{
"binary_name": "tomcat7",
"binary_version": "7.0.68-1ubuntu0.3"
},
{
"binary_name": "tomcat7-admin",
"binary_version": "7.0.68-1ubuntu0.3"
},
{
"binary_name": "tomcat7-common",
"binary_version": "7.0.68-1ubuntu0.3"
},
{
"binary_name": "tomcat7-docs",
"binary_version": "7.0.68-1ubuntu0.3"
},
{
"binary_name": "tomcat7-examples",
"binary_version": "7.0.68-1ubuntu0.3"
},
{
"binary_name": "tomcat7-user",
"binary_version": "7.0.68-1ubuntu0.3"
}
]
},
"package": {
"ecosystem": "Ubuntu:16.04:LTS",
"name": "tomcat7",
"purl": "pkg:deb/ubuntu/tomcat7@7.0.68-1ubuntu0.3?arch=source\u0026distro=xenial"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "7.0.68-1ubuntu0.3"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"7.0.64-1",
"7.0.68-1",
"7.0.68-1ubuntu0.1"
]
},
{
"ecosystem_specific": {
"availability": "No subscription required",
"binaries": [
{
"binary_name": "libservlet3.1-java",
"binary_version": "8.0.32-1ubuntu1.3"
},
{
"binary_name": "libtomcat8-java",
"binary_version": "8.0.32-1ubuntu1.3"
},
{
"binary_name": "tomcat8",
"binary_version": "8.0.32-1ubuntu1.3"
},
{
"binary_name": "tomcat8-admin",
"binary_version": "8.0.32-1ubuntu1.3"
},
{
"binary_name": "tomcat8-common",
"binary_version": "8.0.32-1ubuntu1.3"
},
{
"binary_name": "tomcat8-docs",
"binary_version": "8.0.32-1ubuntu1.3"
},
{
"binary_name": "tomcat8-examples",
"binary_version": "8.0.32-1ubuntu1.3"
},
{
"binary_name": "tomcat8-user",
"binary_version": "8.0.32-1ubuntu1.3"
}
]
},
"package": {
"ecosystem": "Ubuntu:16.04:LTS",
"name": "tomcat8",
"purl": "pkg:deb/ubuntu/tomcat8@8.0.32-1ubuntu1.3?arch=source\u0026distro=xenial"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "8.0.32-1ubuntu1.3"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"8.0.26-1",
"8.0.28-1",
"8.0.30-1",
"8.0.32-1",
"8.0.32-1ubuntu1",
"8.0.32-1ubuntu1.1",
"8.0.32-1ubuntu1.2"
]
}
],
"aliases": [],
"details": "When a SecurityManager is configured, a web application\u0027s ability to read system properties should be controlled by the SecurityManager. In Apache Tomcat 9.0.0.M1 to 9.0.0.M9, 8.5.0 to 8.5.4, 8.0.0.RC1 to 8.0.36, 7.0.0 to 7.0.70, 6.0.0 to 6.0.45 the system property replacement feature for configuration files could be used by a malicious web application to bypass the SecurityManager and read system properties that should not be visible.",
"id": "UBUNTU-CVE-2016-6794",
"modified": "2026-06-04T10:36:08Z",
"published": "2016-10-28T00:00:00Z",
"references": [
{
"type": "REPORT",
"url": "https://ubuntu.com/security/CVE-2016-6794"
},
{
"type": "REPORT",
"url": "http://markmail.org/message/zk7w6yly5mviocci?q=list:org.apache.tomcat.announce/"
},
{
"type": "ADVISORY",
"url": "https://ubuntu.com/security/notices/USN-3177-1"
},
{
"type": "ADVISORY",
"url": "https://ubuntu.com/security/notices/USN-4557-1"
},
{
"type": "REPORT",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-6794"
}
],
"related": [
"USN-3177-1",
"USN-4557-1"
],
"schema_version": "1.7.0",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
"type": "CVSS_V3"
},
{
"score": "low",
"type": "Ubuntu"
}
],
"upstream": [
"CVE-2016-6794"
]
}
ubuntu-cve-2016-6796
Vulnerability from osv_ubuntu
A malicious web application running on Apache Tomcat 9.0.0.M1 to 9.0.0.M9, 8.5.0 to 8.5.4, 8.0.0.RC1 to 8.0.36, 7.0.0 to 7.0.70 and 6.0.0 to 6.0.45 was able to bypass a configured SecurityManager via manipulation of the configuration parameters for the JSP Servlet.
{
"affected": [
{
"ecosystem_specific": {
"availability": "No subscription required",
"binaries": [
{
"binary_name": "libservlet3.0-java",
"binary_version": "7.0.52-1ubuntu0.8"
},
{
"binary_name": "libtomcat7-java",
"binary_version": "7.0.52-1ubuntu0.8"
},
{
"binary_name": "tomcat7",
"binary_version": "7.0.52-1ubuntu0.8"
},
{
"binary_name": "tomcat7-admin",
"binary_version": "7.0.52-1ubuntu0.8"
},
{
"binary_name": "tomcat7-common",
"binary_version": "7.0.52-1ubuntu0.8"
},
{
"binary_name": "tomcat7-docs",
"binary_version": "7.0.52-1ubuntu0.8"
},
{
"binary_name": "tomcat7-examples",
"binary_version": "7.0.52-1ubuntu0.8"
},
{
"binary_name": "tomcat7-user",
"binary_version": "7.0.52-1ubuntu0.8"
}
]
},
"package": {
"ecosystem": "Ubuntu:14.04:LTS",
"name": "tomcat7",
"purl": "pkg:deb/ubuntu/tomcat7@7.0.52-1ubuntu0.8?arch=source\u0026distro=trusty"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "7.0.52-1ubuntu0.8"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"7.0.42-1",
"7.0.47-1",
"7.0.50-1",
"7.0.52-1",
"7.0.52-1ubuntu0.1",
"7.0.52-1ubuntu0.3",
"7.0.52-1ubuntu0.6",
"7.0.52-1ubuntu0.7"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "libservlet2.4-java",
"binary_version": "6.0.39-1ubuntu0.1+esm3"
},
{
"binary_name": "libservlet2.5-java",
"binary_version": "6.0.39-1ubuntu0.1+esm3"
},
{
"binary_name": "libtomcat6-java",
"binary_version": "6.0.39-1ubuntu0.1+esm3"
},
{
"binary_name": "tomcat6",
"binary_version": "6.0.39-1ubuntu0.1+esm3"
},
{
"binary_name": "tomcat6-admin",
"binary_version": "6.0.39-1ubuntu0.1+esm3"
},
{
"binary_name": "tomcat6-common",
"binary_version": "6.0.39-1ubuntu0.1+esm3"
},
{
"binary_name": "tomcat6-docs",
"binary_version": "6.0.39-1ubuntu0.1+esm3"
},
{
"binary_name": "tomcat6-examples",
"binary_version": "6.0.39-1ubuntu0.1+esm3"
},
{
"binary_name": "tomcat6-extras",
"binary_version": "6.0.39-1ubuntu0.1+esm3"
},
{
"binary_name": "tomcat6-user",
"binary_version": "6.0.39-1ubuntu0.1+esm3"
}
]
},
"package": {
"ecosystem": "Ubuntu:Pro:14.04:LTS",
"name": "tomcat6",
"purl": "pkg:deb/ubuntu/tomcat6@6.0.39-1ubuntu0.1+esm3?arch=source\u0026distro=esm-infra-legacy/trusty"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"6.0.37-1",
"6.0.39-1",
"6.0.39-1ubuntu0.1",
"6.0.39-1ubuntu0.1+esm1",
"6.0.39-1ubuntu0.1+esm2",
"6.0.39-1ubuntu0.1+esm3"
]
},
{
"ecosystem_specific": {
"availability": "No subscription required",
"binaries": [
{
"binary_name": "libservlet2.5-java",
"binary_version": "6.0.45+dfsg-1ubuntu0.1"
}
]
},
"package": {
"ecosystem": "Ubuntu:16.04:LTS",
"name": "tomcat6",
"purl": "pkg:deb/ubuntu/tomcat6@6.0.45+dfsg-1ubuntu0.1?arch=source\u0026distro=xenial"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "6.0.45+dfsg-1ubuntu0.1"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"6.0.41-4",
"6.0.45+dfsg-1"
]
},
{
"ecosystem_specific": {
"availability": "No subscription required",
"binaries": [
{
"binary_name": "libservlet3.0-java",
"binary_version": "7.0.68-1ubuntu0.3"
},
{
"binary_name": "libtomcat7-java",
"binary_version": "7.0.68-1ubuntu0.3"
},
{
"binary_name": "tomcat7",
"binary_version": "7.0.68-1ubuntu0.3"
},
{
"binary_name": "tomcat7-admin",
"binary_version": "7.0.68-1ubuntu0.3"
},
{
"binary_name": "tomcat7-common",
"binary_version": "7.0.68-1ubuntu0.3"
},
{
"binary_name": "tomcat7-docs",
"binary_version": "7.0.68-1ubuntu0.3"
},
{
"binary_name": "tomcat7-examples",
"binary_version": "7.0.68-1ubuntu0.3"
},
{
"binary_name": "tomcat7-user",
"binary_version": "7.0.68-1ubuntu0.3"
}
]
},
"package": {
"ecosystem": "Ubuntu:16.04:LTS",
"name": "tomcat7",
"purl": "pkg:deb/ubuntu/tomcat7@7.0.68-1ubuntu0.3?arch=source\u0026distro=xenial"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "7.0.68-1ubuntu0.3"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"7.0.64-1",
"7.0.68-1",
"7.0.68-1ubuntu0.1"
]
},
{
"ecosystem_specific": {
"availability": "No subscription required",
"binaries": [
{
"binary_name": "libservlet3.1-java",
"binary_version": "8.0.32-1ubuntu1.3"
},
{
"binary_name": "libtomcat8-java",
"binary_version": "8.0.32-1ubuntu1.3"
},
{
"binary_name": "tomcat8",
"binary_version": "8.0.32-1ubuntu1.3"
},
{
"binary_name": "tomcat8-admin",
"binary_version": "8.0.32-1ubuntu1.3"
},
{
"binary_name": "tomcat8-common",
"binary_version": "8.0.32-1ubuntu1.3"
},
{
"binary_name": "tomcat8-docs",
"binary_version": "8.0.32-1ubuntu1.3"
},
{
"binary_name": "tomcat8-examples",
"binary_version": "8.0.32-1ubuntu1.3"
},
{
"binary_name": "tomcat8-user",
"binary_version": "8.0.32-1ubuntu1.3"
}
]
},
"package": {
"ecosystem": "Ubuntu:16.04:LTS",
"name": "tomcat8",
"purl": "pkg:deb/ubuntu/tomcat8@8.0.32-1ubuntu1.3?arch=source\u0026distro=xenial"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "8.0.32-1ubuntu1.3"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"8.0.26-1",
"8.0.28-1",
"8.0.30-1",
"8.0.32-1",
"8.0.32-1ubuntu1",
"8.0.32-1ubuntu1.1",
"8.0.32-1ubuntu1.2"
]
}
],
"aliases": [],
"details": "A malicious web application running on Apache Tomcat 9.0.0.M1 to 9.0.0.M9, 8.5.0 to 8.5.4, 8.0.0.RC1 to 8.0.36, 7.0.0 to 7.0.70 and 6.0.0 to 6.0.45 was able to bypass a configured SecurityManager via manipulation of the configuration parameters for the JSP Servlet.",
"id": "UBUNTU-CVE-2016-6796",
"modified": "2026-06-04T10:36:08Z",
"published": "2016-10-28T00:00:00Z",
"references": [
{
"type": "REPORT",
"url": "https://ubuntu.com/security/CVE-2016-6796"
},
{
"type": "REPORT",
"url": "http://markmail.org/message/hynaeawxxhpvvctu?q=list:org.apache.tomcat.announce/"
},
{
"type": "ADVISORY",
"url": "https://ubuntu.com/security/notices/USN-3177-1"
},
{
"type": "ADVISORY",
"url": "https://ubuntu.com/security/notices/USN-4557-1"
},
{
"type": "REPORT",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-6796"
}
],
"related": [
"USN-3177-1",
"USN-4557-1"
],
"schema_version": "1.7.0",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"type": "CVSS_V3"
},
{
"score": "low",
"type": "Ubuntu"
}
],
"upstream": [
"CVE-2016-6796"
]
}
ubuntu-cve-2016-6797
Vulnerability from osv_ubuntu
The ResourceLinkFactory implementation in Apache Tomcat 9.0.0.M1 to 9.0.0.M9, 8.5.0 to 8.5.4, 8.0.0.RC1 to 8.0.36, 7.0.0 to 7.0.70 and 6.0.0 to 6.0.45 did not limit web application access to global JNDI resources to those resources explicitly linked to the web application. Therefore, it was possible for a web application to access any global JNDI resource whether an explicit ResourceLink had been configured or not.
{
"affected": [
{
"ecosystem_specific": {
"availability": "No subscription required",
"binaries": [
{
"binary_name": "libservlet3.0-java",
"binary_version": "7.0.52-1ubuntu0.8"
},
{
"binary_name": "libtomcat7-java",
"binary_version": "7.0.52-1ubuntu0.8"
},
{
"binary_name": "tomcat7",
"binary_version": "7.0.52-1ubuntu0.8"
},
{
"binary_name": "tomcat7-admin",
"binary_version": "7.0.52-1ubuntu0.8"
},
{
"binary_name": "tomcat7-common",
"binary_version": "7.0.52-1ubuntu0.8"
},
{
"binary_name": "tomcat7-docs",
"binary_version": "7.0.52-1ubuntu0.8"
},
{
"binary_name": "tomcat7-examples",
"binary_version": "7.0.52-1ubuntu0.8"
},
{
"binary_name": "tomcat7-user",
"binary_version": "7.0.52-1ubuntu0.8"
}
]
},
"package": {
"ecosystem": "Ubuntu:14.04:LTS",
"name": "tomcat7",
"purl": "pkg:deb/ubuntu/tomcat7@7.0.52-1ubuntu0.8?arch=source\u0026distro=trusty"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "7.0.52-1ubuntu0.8"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"7.0.42-1",
"7.0.47-1",
"7.0.50-1",
"7.0.52-1",
"7.0.52-1ubuntu0.1",
"7.0.52-1ubuntu0.3",
"7.0.52-1ubuntu0.6",
"7.0.52-1ubuntu0.7"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "libservlet2.4-java",
"binary_version": "6.0.39-1ubuntu0.1+esm3"
},
{
"binary_name": "libservlet2.5-java",
"binary_version": "6.0.39-1ubuntu0.1+esm3"
},
{
"binary_name": "libtomcat6-java",
"binary_version": "6.0.39-1ubuntu0.1+esm3"
},
{
"binary_name": "tomcat6",
"binary_version": "6.0.39-1ubuntu0.1+esm3"
},
{
"binary_name": "tomcat6-admin",
"binary_version": "6.0.39-1ubuntu0.1+esm3"
},
{
"binary_name": "tomcat6-common",
"binary_version": "6.0.39-1ubuntu0.1+esm3"
},
{
"binary_name": "tomcat6-docs",
"binary_version": "6.0.39-1ubuntu0.1+esm3"
},
{
"binary_name": "tomcat6-examples",
"binary_version": "6.0.39-1ubuntu0.1+esm3"
},
{
"binary_name": "tomcat6-extras",
"binary_version": "6.0.39-1ubuntu0.1+esm3"
},
{
"binary_name": "tomcat6-user",
"binary_version": "6.0.39-1ubuntu0.1+esm3"
}
]
},
"package": {
"ecosystem": "Ubuntu:Pro:14.04:LTS",
"name": "tomcat6",
"purl": "pkg:deb/ubuntu/tomcat6@6.0.39-1ubuntu0.1+esm3?arch=source\u0026distro=esm-infra-legacy/trusty"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"6.0.37-1",
"6.0.39-1",
"6.0.39-1ubuntu0.1",
"6.0.39-1ubuntu0.1+esm1",
"6.0.39-1ubuntu0.1+esm2",
"6.0.39-1ubuntu0.1+esm3"
]
},
{
"ecosystem_specific": {
"availability": "No subscription required",
"binaries": [
{
"binary_name": "libservlet2.5-java",
"binary_version": "6.0.45+dfsg-1ubuntu0.1"
}
]
},
"package": {
"ecosystem": "Ubuntu:16.04:LTS",
"name": "tomcat6",
"purl": "pkg:deb/ubuntu/tomcat6@6.0.45+dfsg-1ubuntu0.1?arch=source\u0026distro=xenial"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "6.0.45+dfsg-1ubuntu0.1"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"6.0.41-4",
"6.0.45+dfsg-1"
]
},
{
"ecosystem_specific": {
"availability": "No subscription required",
"binaries": [
{
"binary_name": "libservlet3.0-java",
"binary_version": "7.0.68-1ubuntu0.3"
},
{
"binary_name": "libtomcat7-java",
"binary_version": "7.0.68-1ubuntu0.3"
},
{
"binary_name": "tomcat7",
"binary_version": "7.0.68-1ubuntu0.3"
},
{
"binary_name": "tomcat7-admin",
"binary_version": "7.0.68-1ubuntu0.3"
},
{
"binary_name": "tomcat7-common",
"binary_version": "7.0.68-1ubuntu0.3"
},
{
"binary_name": "tomcat7-docs",
"binary_version": "7.0.68-1ubuntu0.3"
},
{
"binary_name": "tomcat7-examples",
"binary_version": "7.0.68-1ubuntu0.3"
},
{
"binary_name": "tomcat7-user",
"binary_version": "7.0.68-1ubuntu0.3"
}
]
},
"package": {
"ecosystem": "Ubuntu:16.04:LTS",
"name": "tomcat7",
"purl": "pkg:deb/ubuntu/tomcat7@7.0.68-1ubuntu0.3?arch=source\u0026distro=xenial"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "7.0.68-1ubuntu0.3"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"7.0.64-1",
"7.0.68-1",
"7.0.68-1ubuntu0.1"
]
},
{
"ecosystem_specific": {
"availability": "No subscription required",
"binaries": [
{
"binary_name": "libservlet3.1-java",
"binary_version": "8.0.32-1ubuntu1.3"
},
{
"binary_name": "libtomcat8-java",
"binary_version": "8.0.32-1ubuntu1.3"
},
{
"binary_name": "tomcat8",
"binary_version": "8.0.32-1ubuntu1.3"
},
{
"binary_name": "tomcat8-admin",
"binary_version": "8.0.32-1ubuntu1.3"
},
{
"binary_name": "tomcat8-common",
"binary_version": "8.0.32-1ubuntu1.3"
},
{
"binary_name": "tomcat8-docs",
"binary_version": "8.0.32-1ubuntu1.3"
},
{
"binary_name": "tomcat8-examples",
"binary_version": "8.0.32-1ubuntu1.3"
},
{
"binary_name": "tomcat8-user",
"binary_version": "8.0.32-1ubuntu1.3"
}
]
},
"package": {
"ecosystem": "Ubuntu:16.04:LTS",
"name": "tomcat8",
"purl": "pkg:deb/ubuntu/tomcat8@8.0.32-1ubuntu1.3?arch=source\u0026distro=xenial"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "8.0.32-1ubuntu1.3"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"8.0.26-1",
"8.0.28-1",
"8.0.30-1",
"8.0.32-1",
"8.0.32-1ubuntu1",
"8.0.32-1ubuntu1.1",
"8.0.32-1ubuntu1.2"
]
}
],
"aliases": [],
"details": "The ResourceLinkFactory implementation in Apache Tomcat 9.0.0.M1 to 9.0.0.M9, 8.5.0 to 8.5.4, 8.0.0.RC1 to 8.0.36, 7.0.0 to 7.0.70 and 6.0.0 to 6.0.45 did not limit web application access to global JNDI resources to those resources explicitly linked to the web application. Therefore, it was possible for a web application to access any global JNDI resource whether an explicit ResourceLink had been configured or not.",
"id": "UBUNTU-CVE-2016-6797",
"modified": "2026-06-04T10:36:08Z",
"published": "2016-10-28T00:00:00Z",
"references": [
{
"type": "REPORT",
"url": "https://ubuntu.com/security/CVE-2016-6797"
},
{
"type": "REPORT",
"url": "http://markmail.org/message/wrku5orwxfpt5mzl?q=list:org.apache.tomcat.announce/"
},
{
"type": "ADVISORY",
"url": "https://ubuntu.com/security/notices/USN-3177-1"
},
{
"type": "ADVISORY",
"url": "https://ubuntu.com/security/notices/USN-4557-1"
},
{
"type": "REPORT",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-6797"
}
],
"related": [
"USN-3177-1",
"USN-4557-1"
],
"schema_version": "1.7.0",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"type": "CVSS_V3"
},
{
"score": "low",
"type": "Ubuntu"
}
],
"upstream": [
"CVE-2016-6797"
]
}
ubuntu-cve-2016-6816
Vulnerability from osv_ubuntu
The code in Apache Tomcat 9.0.0.M1 to 9.0.0.M11, 8.5.0 to 8.5.6, 8.0.0.RC1 to 8.0.38, 7.0.0 to 7.0.72, and 6.0.0 to 6.0.47 that parsed the HTTP request line permitted invalid characters. This could be exploited, in conjunction with a proxy that also permitted the invalid characters but with a different interpretation, to inject data into the HTTP response. By manipulating the HTTP response the attacker could poison a web-cache, perform an XSS attack and/or obtain sensitive information from requests other then their own.
{
"affected": [
{
"ecosystem_specific": {
"availability": "No subscription required",
"binaries": [
{
"binary_name": "libservlet3.0-java",
"binary_version": "7.0.52-1ubuntu0.8"
},
{
"binary_name": "libtomcat7-java",
"binary_version": "7.0.52-1ubuntu0.8"
},
{
"binary_name": "tomcat7",
"binary_version": "7.0.52-1ubuntu0.8"
},
{
"binary_name": "tomcat7-admin",
"binary_version": "7.0.52-1ubuntu0.8"
},
{
"binary_name": "tomcat7-common",
"binary_version": "7.0.52-1ubuntu0.8"
},
{
"binary_name": "tomcat7-docs",
"binary_version": "7.0.52-1ubuntu0.8"
},
{
"binary_name": "tomcat7-examples",
"binary_version": "7.0.52-1ubuntu0.8"
},
{
"binary_name": "tomcat7-user",
"binary_version": "7.0.52-1ubuntu0.8"
}
]
},
"package": {
"ecosystem": "Ubuntu:14.04:LTS",
"name": "tomcat7",
"purl": "pkg:deb/ubuntu/tomcat7@7.0.52-1ubuntu0.8?arch=source\u0026distro=trusty"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "7.0.52-1ubuntu0.8"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"7.0.42-1",
"7.0.47-1",
"7.0.50-1",
"7.0.52-1",
"7.0.52-1ubuntu0.1",
"7.0.52-1ubuntu0.3",
"7.0.52-1ubuntu0.6",
"7.0.52-1ubuntu0.7"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "libservlet2.4-java",
"binary_version": "6.0.39-1ubuntu0.1+esm3"
},
{
"binary_name": "libservlet2.5-java",
"binary_version": "6.0.39-1ubuntu0.1+esm3"
},
{
"binary_name": "libtomcat6-java",
"binary_version": "6.0.39-1ubuntu0.1+esm3"
},
{
"binary_name": "tomcat6",
"binary_version": "6.0.39-1ubuntu0.1+esm3"
},
{
"binary_name": "tomcat6-admin",
"binary_version": "6.0.39-1ubuntu0.1+esm3"
},
{
"binary_name": "tomcat6-common",
"binary_version": "6.0.39-1ubuntu0.1+esm3"
},
{
"binary_name": "tomcat6-docs",
"binary_version": "6.0.39-1ubuntu0.1+esm3"
},
{
"binary_name": "tomcat6-examples",
"binary_version": "6.0.39-1ubuntu0.1+esm3"
},
{
"binary_name": "tomcat6-extras",
"binary_version": "6.0.39-1ubuntu0.1+esm3"
},
{
"binary_name": "tomcat6-user",
"binary_version": "6.0.39-1ubuntu0.1+esm3"
}
]
},
"package": {
"ecosystem": "Ubuntu:Pro:14.04:LTS",
"name": "tomcat6",
"purl": "pkg:deb/ubuntu/tomcat6@6.0.39-1ubuntu0.1+esm3?arch=source\u0026distro=esm-infra-legacy/trusty"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"6.0.37-1",
"6.0.39-1",
"6.0.39-1ubuntu0.1",
"6.0.39-1ubuntu0.1+esm1",
"6.0.39-1ubuntu0.1+esm2",
"6.0.39-1ubuntu0.1+esm3"
]
},
{
"ecosystem_specific": {
"availability": "No subscription required",
"binaries": [
{
"binary_name": "libservlet2.5-java",
"binary_version": "6.0.45+dfsg-1ubuntu0.1"
}
]
},
"package": {
"ecosystem": "Ubuntu:16.04:LTS",
"name": "tomcat6",
"purl": "pkg:deb/ubuntu/tomcat6@6.0.45+dfsg-1ubuntu0.1?arch=source\u0026distro=xenial"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "6.0.45+dfsg-1ubuntu0.1"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"6.0.41-4",
"6.0.45+dfsg-1"
]
},
{
"ecosystem_specific": {
"availability": "No subscription required",
"binaries": [
{
"binary_name": "libservlet3.0-java",
"binary_version": "7.0.68-1ubuntu0.3"
},
{
"binary_name": "libtomcat7-java",
"binary_version": "7.0.68-1ubuntu0.3"
},
{
"binary_name": "tomcat7",
"binary_version": "7.0.68-1ubuntu0.3"
},
{
"binary_name": "tomcat7-admin",
"binary_version": "7.0.68-1ubuntu0.3"
},
{
"binary_name": "tomcat7-common",
"binary_version": "7.0.68-1ubuntu0.3"
},
{
"binary_name": "tomcat7-docs",
"binary_version": "7.0.68-1ubuntu0.3"
},
{
"binary_name": "tomcat7-examples",
"binary_version": "7.0.68-1ubuntu0.3"
},
{
"binary_name": "tomcat7-user",
"binary_version": "7.0.68-1ubuntu0.3"
}
]
},
"package": {
"ecosystem": "Ubuntu:16.04:LTS",
"name": "tomcat7",
"purl": "pkg:deb/ubuntu/tomcat7@7.0.68-1ubuntu0.3?arch=source\u0026distro=xenial"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "7.0.68-1ubuntu0.3"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"7.0.64-1",
"7.0.68-1",
"7.0.68-1ubuntu0.1"
]
},
{
"ecosystem_specific": {
"availability": "No subscription required",
"binaries": [
{
"binary_name": "libservlet3.1-java",
"binary_version": "8.0.32-1ubuntu1.3"
},
{
"binary_name": "libtomcat8-java",
"binary_version": "8.0.32-1ubuntu1.3"
},
{
"binary_name": "tomcat8",
"binary_version": "8.0.32-1ubuntu1.3"
},
{
"binary_name": "tomcat8-admin",
"binary_version": "8.0.32-1ubuntu1.3"
},
{
"binary_name": "tomcat8-common",
"binary_version": "8.0.32-1ubuntu1.3"
},
{
"binary_name": "tomcat8-docs",
"binary_version": "8.0.32-1ubuntu1.3"
},
{
"binary_name": "tomcat8-examples",
"binary_version": "8.0.32-1ubuntu1.3"
},
{
"binary_name": "tomcat8-user",
"binary_version": "8.0.32-1ubuntu1.3"
}
]
},
"package": {
"ecosystem": "Ubuntu:16.04:LTS",
"name": "tomcat8",
"purl": "pkg:deb/ubuntu/tomcat8@8.0.32-1ubuntu1.3?arch=source\u0026distro=xenial"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "8.0.32-1ubuntu1.3"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"8.0.26-1",
"8.0.28-1",
"8.0.30-1",
"8.0.32-1",
"8.0.32-1ubuntu1",
"8.0.32-1ubuntu1.1",
"8.0.32-1ubuntu1.2"
]
}
],
"aliases": [],
"details": "The code in Apache Tomcat 9.0.0.M1 to 9.0.0.M11, 8.5.0 to 8.5.6, 8.0.0.RC1 to 8.0.38, 7.0.0 to 7.0.72, and 6.0.0 to 6.0.47 that parsed the HTTP request line permitted invalid characters. This could be exploited, in conjunction with a proxy that also permitted the invalid characters but with a different interpretation, to inject data into the HTTP response. By manipulating the HTTP response the attacker could poison a web-cache, perform an XSS attack and/or obtain sensitive information from requests other then their own.",
"id": "UBUNTU-CVE-2016-6816",
"modified": "2026-06-04T10:36:08Z",
"published": "2016-11-23T00:00:00Z",
"references": [
{
"type": "REPORT",
"url": "https://ubuntu.com/security/CVE-2016-6816"
},
{
"type": "REPORT",
"url": "http://www.openwall.com/lists/oss-security/2016/11/22/17"
},
{
"type": "ADVISORY",
"url": "https://ubuntu.com/security/notices/USN-3177-1"
},
{
"type": "ADVISORY",
"url": "https://ubuntu.com/security/notices/USN-4557-1"
},
{
"type": "REPORT",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-6816"
}
],
"related": [
"USN-3177-1",
"USN-4557-1"
],
"schema_version": "1.7.0",
"severity": [
{
"score": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
],
"upstream": [
"CVE-2016-6816"
]
}
ubuntu-cve-2016-8735
Vulnerability from osv_ubuntu
Remote code execution is possible with Apache Tomcat before 6.0.48, 7.x before 7.0.73, 8.x before 8.0.39, 8.5.x before 8.5.7, and 9.x before 9.0.0.M12 if JmxRemoteLifecycleListener is used and an attacker can reach JMX ports. The issue exists because this listener wasn't updated for consistency with the CVE-2016-3427 Oracle patch that affected credential types.
| URL | Type | ||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||||||||
{
"affected": [
{
"ecosystem_specific": {
"availability": "No subscription required",
"binaries": [
{
"binary_name": "libservlet3.0-java",
"binary_version": "7.0.52-1ubuntu0.8"
},
{
"binary_name": "libtomcat7-java",
"binary_version": "7.0.52-1ubuntu0.8"
},
{
"binary_name": "tomcat7",
"binary_version": "7.0.52-1ubuntu0.8"
},
{
"binary_name": "tomcat7-admin",
"binary_version": "7.0.52-1ubuntu0.8"
},
{
"binary_name": "tomcat7-common",
"binary_version": "7.0.52-1ubuntu0.8"
},
{
"binary_name": "tomcat7-docs",
"binary_version": "7.0.52-1ubuntu0.8"
},
{
"binary_name": "tomcat7-examples",
"binary_version": "7.0.52-1ubuntu0.8"
},
{
"binary_name": "tomcat7-user",
"binary_version": "7.0.52-1ubuntu0.8"
}
]
},
"package": {
"ecosystem": "Ubuntu:14.04:LTS",
"name": "tomcat7",
"purl": "pkg:deb/ubuntu/tomcat7@7.0.52-1ubuntu0.8?arch=source\u0026distro=trusty"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "7.0.52-1ubuntu0.8"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"7.0.42-1",
"7.0.47-1",
"7.0.50-1",
"7.0.52-1",
"7.0.52-1ubuntu0.1",
"7.0.52-1ubuntu0.3",
"7.0.52-1ubuntu0.6",
"7.0.52-1ubuntu0.7"
]
},
{
"ecosystem_specific": {
"availability": "Available with Ubuntu Pro with Legacy support add-on: https://ubuntu.com/pro",
"binaries": [
{
"binary_name": "libservlet2.4-java",
"binary_version": "6.0.39-1ubuntu0.1+esm2"
},
{
"binary_name": "libservlet2.5-java",
"binary_version": "6.0.39-1ubuntu0.1+esm2"
},
{
"binary_name": "libtomcat6-java",
"binary_version": "6.0.39-1ubuntu0.1+esm2"
},
{
"binary_name": "tomcat6",
"binary_version": "6.0.39-1ubuntu0.1+esm2"
},
{
"binary_name": "tomcat6-admin",
"binary_version": "6.0.39-1ubuntu0.1+esm2"
},
{
"binary_name": "tomcat6-common",
"binary_version": "6.0.39-1ubuntu0.1+esm2"
},
{
"binary_name": "tomcat6-docs",
"binary_version": "6.0.39-1ubuntu0.1+esm2"
},
{
"binary_name": "tomcat6-examples",
"binary_version": "6.0.39-1ubuntu0.1+esm2"
},
{
"binary_name": "tomcat6-extras",
"binary_version": "6.0.39-1ubuntu0.1+esm2"
},
{
"binary_name": "tomcat6-user",
"binary_version": "6.0.39-1ubuntu0.1+esm2"
}
]
},
"package": {
"ecosystem": "Ubuntu:Pro:14.04:LTS",
"name": "tomcat6",
"purl": "pkg:deb/ubuntu/tomcat6@6.0.39-1ubuntu0.1+esm2?arch=source\u0026distro=esm-infra-legacy/trusty"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "6.0.39-1ubuntu0.1+esm2"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"6.0.37-1",
"6.0.39-1",
"6.0.39-1ubuntu0.1",
"6.0.39-1ubuntu0.1+esm1"
]
},
{
"ecosystem_specific": {
"availability": "No subscription required",
"binaries": [
{
"binary_name": "libservlet2.5-java",
"binary_version": "6.0.45+dfsg-1ubuntu0.1"
}
]
},
"package": {
"ecosystem": "Ubuntu:16.04:LTS",
"name": "tomcat6",
"purl": "pkg:deb/ubuntu/tomcat6@6.0.45+dfsg-1ubuntu0.1?arch=source\u0026distro=xenial"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "6.0.45+dfsg-1ubuntu0.1"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"6.0.41-4",
"6.0.45+dfsg-1"
]
},
{
"ecosystem_specific": {
"availability": "No subscription required",
"binaries": [
{
"binary_name": "libservlet3.0-java",
"binary_version": "7.0.68-1ubuntu0.3"
},
{
"binary_name": "libtomcat7-java",
"binary_version": "7.0.68-1ubuntu0.3"
},
{
"binary_name": "tomcat7",
"binary_version": "7.0.68-1ubuntu0.3"
},
{
"binary_name": "tomcat7-admin",
"binary_version": "7.0.68-1ubuntu0.3"
},
{
"binary_name": "tomcat7-common",
"binary_version": "7.0.68-1ubuntu0.3"
},
{
"binary_name": "tomcat7-docs",
"binary_version": "7.0.68-1ubuntu0.3"
},
{
"binary_name": "tomcat7-examples",
"binary_version": "7.0.68-1ubuntu0.3"
},
{
"binary_name": "tomcat7-user",
"binary_version": "7.0.68-1ubuntu0.3"
}
]
},
"package": {
"ecosystem": "Ubuntu:16.04:LTS",
"name": "tomcat7",
"purl": "pkg:deb/ubuntu/tomcat7@7.0.68-1ubuntu0.3?arch=source\u0026distro=xenial"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "7.0.68-1ubuntu0.3"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"7.0.64-1",
"7.0.68-1",
"7.0.68-1ubuntu0.1"
]
},
{
"ecosystem_specific": {
"availability": "No subscription required",
"binaries": [
{
"binary_name": "libservlet3.1-java",
"binary_version": "8.0.32-1ubuntu1.3"
},
{
"binary_name": "libtomcat8-java",
"binary_version": "8.0.32-1ubuntu1.3"
},
{
"binary_name": "tomcat8",
"binary_version": "8.0.32-1ubuntu1.3"
},
{
"binary_name": "tomcat8-admin",
"binary_version": "8.0.32-1ubuntu1.3"
},
{
"binary_name": "tomcat8-common",
"binary_version": "8.0.32-1ubuntu1.3"
},
{
"binary_name": "tomcat8-docs",
"binary_version": "8.0.32-1ubuntu1.3"
},
{
"binary_name": "tomcat8-examples",
"binary_version": "8.0.32-1ubuntu1.3"
},
{
"binary_name": "tomcat8-user",
"binary_version": "8.0.32-1ubuntu1.3"
}
]
},
"package": {
"ecosystem": "Ubuntu:16.04:LTS",
"name": "tomcat8",
"purl": "pkg:deb/ubuntu/tomcat8@8.0.32-1ubuntu1.3?arch=source\u0026distro=xenial"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "8.0.32-1ubuntu1.3"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"8.0.26-1",
"8.0.28-1",
"8.0.30-1",
"8.0.32-1",
"8.0.32-1ubuntu1",
"8.0.32-1ubuntu1.1",
"8.0.32-1ubuntu1.2"
]
}
],
"aliases": [],
"details": "Remote code execution is possible with Apache Tomcat before 6.0.48, 7.x before 7.0.73, 8.x before 8.0.39, 8.5.x before 8.5.7, and 9.x before 9.0.0.M12 if JmxRemoteLifecycleListener is used and an attacker can reach JMX ports. The issue exists because this listener wasn\u0027t updated for consistency with the CVE-2016-3427 Oracle patch that affected credential types.",
"id": "UBUNTU-CVE-2016-8735",
"modified": "2025-09-08T16:43:55Z",
"published": "2016-11-24T00:00:00Z",
"references": [
{
"type": "REPORT",
"url": "https://ubuntu.com/security/CVE-2016-8735"
},
{
"type": "REPORT",
"url": "http://www.openwall.com/lists/oss-security/2016/11/22/16"
},
{
"type": "ADVISORY",
"url": "https://ubuntu.com/security/notices/USN-3177-1"
},
{
"type": "ADVISORY",
"url": "https://ubuntu.com/security/notices/USN-4557-1"
},
{
"type": "REPORT",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-8735"
},
{
"type": "REPORT",
"url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
},
{
"type": "ADVISORY",
"url": "https://ubuntu.com/security/notices/USN-7242-1"
}
],
"related": [
"USN-3177-1",
"USN-4557-1",
"USN-7242-1"
],
"schema_version": "1.7.0",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "high",
"type": "Ubuntu"
}
],
"upstream": [
"CVE-2016-8735"
]
}
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.