CVE-2022-25762

Response mix-up with WebSocket concurrent send and close

EPSS 7.5%CWE-404

Vexday Risk Score

3Bajo

Decisión SSVC (CISA)

Track

Sin señal de explotación → monitorear

CVSS —EPSS 7.5%KEV nãoPoC —Nuclei —Metasploit —Patch —

Ciclo de vida

13 may 2022Publicada en NVD

Recomendación: Monitorear — sin señal de explotación por ahora.

If a web application sends a WebSocket message concurrently with the WebSocket connection closing when running on Apache Tomcat 8.5.0 to 8.5.75 or Apache Tomcat 9.0.0.M1 to 9.0.20, it is possible that the application will continue to use the socket after it has been closed. The error handling triggered in this case could cause the a pooled object to be placed in the pool twice. This could result in subsequent connections using the same object concurrently which could result in data being returned to the wrong use and/or other errors.

Productos afectados

Apache Software Foundation · Apache Tomcat

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →

Referencias

https://lists.apache.org/thread/6ckmjfb1k61dyzkto9vm2k5jvt4o7w7c https://security.netapp.com/advisory/ntap-20220629-0003/https://www.oracle.com/security-alerts/cpujul2022.html