The session-persistence implementation in Apache Tomcat 6.x before 6.0.45, 7.x before 7.0.68, 8.x before 8.0.31, and 9.x before 9.0.0.M2 mishandles session attributes, which allows remote authenticated users to bypass intended SecurityManager restrictions and execute arbitrary code in a privileged context via a web application that places a crafted object in a session.
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Tomcat | Apache | 6.0.0 (including) | 6.0.0 (including) |
| Tomcat | Apache | 6.0.0-alpha (including) | 6.0.0-alpha (including) |
| Tomcat | Apache | 6.0.1 (including) | 6.0.1 (including) |
| Tomcat | Apache | 6.0.1-alpha (including) | 6.0.1-alpha (including) |
| Tomcat | Apache | 6.0.2 (including) | 6.0.2 (including) |
| Tomcat | Apache | 6.0.2-alpha (including) | 6.0.2-alpha (including) |
| Tomcat | Apache | 6.0.2-beta (including) | 6.0.2-beta (including) |
| Tomcat | Apache | 6.0.4 (including) | 6.0.4 (including) |
| Tomcat | Apache | 6.0.4-alpha (including) | 6.0.4-alpha (including) |
| Tomcat | Apache | 6.0.10 (including) | 6.0.10 (including) |
| Tomcat | Apache | 6.0.11 (including) | 6.0.11 (including) |
| Tomcat | Apache | 6.0.13 (including) | 6.0.13 (including) |
| Tomcat | Apache | 6.0.14 (including) | 6.0.14 (including) |
| Tomcat | Apache | 6.0.16 (including) | 6.0.16 (including) |
| Tomcat | Apache | 6.0.18 (including) | 6.0.18 (including) |
| Tomcat | Apache | 6.0.20 (including) | 6.0.20 (including) |
| Tomcat | Apache | 6.0.24 (including) | 6.0.24 (including) |
| Tomcat | Apache | 6.0.26 (including) | 6.0.26 (including) |
| Tomcat | Apache | 6.0.28 (including) | 6.0.28 (including) |
| Tomcat | Apache | 6.0.29 (including) | 6.0.29 (including) |
| Tomcat | Apache | 6.0.30 (including) | 6.0.30 (including) |
| Tomcat | Apache | 6.0.32 (including) | 6.0.32 (including) |
| Tomcat | Apache | 6.0.33 (including) | 6.0.33 (including) |
| Tomcat | Apache | 6.0.35 (including) | 6.0.35 (including) |
| Tomcat | Apache | 6.0.36 (including) | 6.0.36 (including) |
| Tomcat | Apache | 6.0.37 (including) | 6.0.37 (including) |
| Tomcat | Apache | 6.0.39 (including) | 6.0.39 (including) |
| Tomcat | Apache | 6.0.41 (including) | 6.0.41 (including) |
| Tomcat | Apache | 6.0.43 (including) | 6.0.43 (including) |
| Tomcat | Apache | 6.0.44 (including) | 6.0.44 (including) |
| Tomcat | Apache | 7.0.0-beta (including) | 7.0.0-beta (including) |
| Tomcat | Apache | 7.0.2-beta (including) | 7.0.2-beta (including) |
| Tomcat | Apache | 7.0.4-beta (including) | 7.0.4-beta (including) |
| Tomcat | Apache | 7.0.5-beta (including) | 7.0.5-beta (including) |
| Tomcat | Apache | 7.0.6 (including) | 7.0.6 (including) |
| Tomcat | Apache | 7.0.10 (including) | 7.0.10 (including) |
| Tomcat | Apache | 7.0.11 (including) | 7.0.11 (including) |
| Tomcat | Apache | 7.0.12 (including) | 7.0.12 (including) |
| Tomcat | Apache | 7.0.14 (including) | 7.0.14 (including) |
| Tomcat | Apache | 7.0.16 (including) | 7.0.16 (including) |
| Tomcat | Apache | 7.0.19 (including) | 7.0.19 (including) |
| Tomcat | Apache | 7.0.20 (including) | 7.0.20 (including) |
| Tomcat | Apache | 7.0.21 (including) | 7.0.21 (including) |
| Tomcat | Apache | 7.0.22 (including) | 7.0.22 (including) |
| Tomcat | Apache | 7.0.23 (including) | 7.0.23 (including) |
| Tomcat | Apache | 7.0.25 (including) | 7.0.25 (including) |
| Tomcat | Apache | 7.0.26 (including) | 7.0.26 (including) |
| Tomcat | Apache | 7.0.27 (including) | 7.0.27 (including) |
| Tomcat | Apache | 7.0.28 (including) | 7.0.28 (including) |
| Tomcat | Apache | 7.0.29 (including) | 7.0.29 (including) |
| Tomcat | Apache | 7.0.30 (including) | 7.0.30 (including) |
| Tomcat | Apache | 7.0.32 (including) | 7.0.32 (including) |
| Tomcat | Apache | 7.0.33 (including) | 7.0.33 (including) |
| Tomcat | Apache | 7.0.34 (including) | 7.0.34 (including) |
| Tomcat | Apache | 7.0.35 (including) | 7.0.35 (including) |
| Tomcat | Apache | 7.0.37 (including) | 7.0.37 (including) |
| Tomcat | Apache | 7.0.39 (including) | 7.0.39 (including) |
| Tomcat | Apache | 7.0.40 (including) | 7.0.40 (including) |
| Tomcat | Apache | 7.0.41 (including) | 7.0.41 (including) |
| Tomcat | Apache | 7.0.42 (including) | 7.0.42 (including) |
| Tomcat | Apache | 7.0.47 (including) | 7.0.47 (including) |
| Tomcat | Apache | 7.0.50 (including) | 7.0.50 (including) |
| Tomcat | Apache | 7.0.52 (including) | 7.0.52 (including) |
| Tomcat | Apache | 7.0.53 (including) | 7.0.53 (including) |
| Tomcat | Apache | 7.0.54 (including) | 7.0.54 (including) |
| Tomcat | Apache | 7.0.55 (including) | 7.0.55 (including) |
| Tomcat | Apache | 7.0.56 (including) | 7.0.56 (including) |
| Tomcat | Apache | 7.0.57 (including) | 7.0.57 (including) |
| Tomcat | Apache | 7.0.59 (including) | 7.0.59 (including) |
| Tomcat | Apache | 7.0.61 (including) | 7.0.61 (including) |
| Tomcat | Apache | 7.0.62 (including) | 7.0.62 (including) |
| Tomcat | Apache | 7.0.63 (including) | 7.0.63 (including) |
| Tomcat | Apache | 7.0.64 (including) | 7.0.64 (including) |
| Tomcat | Apache | 7.0.65 (including) | 7.0.65 (including) |
| Tomcat | Apache | 7.0.67 (including) | 7.0.67 (including) |
| Tomcat | Apache | 8.0.0-rc1 (including) | 8.0.0-rc1 (including) |
| Tomcat | Apache | 8.0.0-rc10 (including) | 8.0.0-rc10 (including) |
| Tomcat | Apache | 8.0.0-rc3 (including) | 8.0.0-rc3 (including) |
| Tomcat | Apache | 8.0.0-rc5 (including) | 8.0.0-rc5 (including) |
| Tomcat | Apache | 8.0.1 (including) | 8.0.1 (including) |
| Tomcat | Apache | 8.0.3 (including) | 8.0.3 (including) |
| Tomcat | Apache | 8.0.11 (including) | 8.0.11 (including) |
| Tomcat | Apache | 8.0.12 (including) | 8.0.12 (including) |
| Tomcat | Apache | 8.0.14 (including) | 8.0.14 (including) |
| Tomcat | Apache | 8.0.15 (including) | 8.0.15 (including) |
| Tomcat | Apache | 8.0.17 (including) | 8.0.17 (including) |
| Tomcat | Apache | 8.0.18 (including) | 8.0.18 (including) |
| Tomcat | Apache | 8.0.20 (including) | 8.0.20 (including) |
| Tomcat | Apache | 8.0.21 (including) | 8.0.21 (including) |
| Tomcat | Apache | 8.0.22 (including) | 8.0.22 (including) |
| Tomcat | Apache | 8.0.23 (including) | 8.0.23 (including) |
| Tomcat | Apache | 8.0.24 (including) | 8.0.24 (including) |
| Tomcat | Apache | 8.0.26 (including) | 8.0.26 (including) |
| Tomcat | Apache | 8.0.27 (including) | 8.0.27 (including) |
| Tomcat | Apache | 8.0.28 (including) | 8.0.28 (including) |
| Tomcat | Apache | 8.0.29 (including) | 8.0.29 (including) |
| Tomcat | Apache | 8.0.30 (including) | 8.0.30 (including) |
| Tomcat | Apache | 9.0.0-milestone1 (including) | 9.0.0-milestone1 (including) |