CVE-2021-25329

The fix for CVE-2020-9484 was incomplete. When using Apache Tomcat 10.0.0-M1 to 10.0.0, 9.0.0.M1 to 9.0.41, 8.5.0 to 8.5.61 or 7.0.0. to 7.0.107 with a configuration edge case that was highly unlikely to be used, the Tomcat instance was still vulnerable to CVE-2020-9494. Note that both the previously published prerequisites for CVE-2020-9484 and the previously published mitigations for CVE-2020-9484 also apply to this issue.

Affected Software

Name	Vendor	Start Version	End Version
Tomcat	Apache	7.0.0 (including)	7.0.107 (including)
Tomcat	Apache	8.5.0 (including)	8.5.61 (including)
Tomcat	Apache	9.0.0 (including)	9.0.41 (including)
Tomcat	Apache	9.0.0-milestone1 (including)	9.0.0-milestone1 (including)
Tomcat	Apache	9.0.0-milestone10 (including)	9.0.0-milestone10 (including)
Tomcat	Apache	9.0.0-milestone11 (including)	9.0.0-milestone11 (including)
Tomcat	Apache	9.0.0-milestone12 (including)	9.0.0-milestone12 (including)
Tomcat	Apache	9.0.0-milestone13 (including)	9.0.0-milestone13 (including)
Tomcat	Apache	9.0.0-milestone14 (including)	9.0.0-milestone14 (including)
Tomcat	Apache	9.0.0-milestone15 (including)	9.0.0-milestone15 (including)
Tomcat	Apache	9.0.0-milestone16 (including)	9.0.0-milestone16 (including)
Tomcat	Apache	9.0.0-milestone17 (including)	9.0.0-milestone17 (including)
Tomcat	Apache	9.0.0-milestone18 (including)	9.0.0-milestone18 (including)
Tomcat	Apache	9.0.0-milestone19 (including)	9.0.0-milestone19 (including)
Tomcat	Apache	9.0.0-milestone2 (including)	9.0.0-milestone2 (including)
Tomcat	Apache	9.0.0-milestone20 (including)	9.0.0-milestone20 (including)
Tomcat	Apache	9.0.0-milestone21 (including)	9.0.0-milestone21 (including)
Tomcat	Apache	9.0.0-milestone22 (including)	9.0.0-milestone22 (including)
Tomcat	Apache	9.0.0-milestone23 (including)	9.0.0-milestone23 (including)
Tomcat	Apache	9.0.0-milestone24 (including)	9.0.0-milestone24 (including)
Tomcat	Apache	9.0.0-milestone25 (including)	9.0.0-milestone25 (including)
Tomcat	Apache	9.0.0-milestone26 (including)	9.0.0-milestone26 (including)
Tomcat	Apache	9.0.0-milestone27 (including)	9.0.0-milestone27 (including)
Tomcat	Apache	9.0.0-milestone3 (including)	9.0.0-milestone3 (including)
Tomcat	Apache	9.0.0-milestone4 (including)	9.0.0-milestone4 (including)
Tomcat	Apache	9.0.0-milestone5 (including)	9.0.0-milestone5 (including)
Tomcat	Apache	9.0.0-milestone6 (including)	9.0.0-milestone6 (including)
Tomcat	Apache	9.0.0-milestone7 (including)	9.0.0-milestone7 (including)
Tomcat	Apache	9.0.0-milestone8 (including)	9.0.0-milestone8 (including)
Tomcat	Apache	9.0.0-milestone9 (including)	9.0.0-milestone9 (including)
Tomcat	Apache	10.0.0 (including)	10.0.0 (including)
Tomcat	Apache	10.0.0-milestone1 (including)	10.0.0-milestone1 (including)
Tomcat	Apache	10.0.0-milestone10 (including)	10.0.0-milestone10 (including)
Tomcat	Apache	10.0.0-milestone2 (including)	10.0.0-milestone2 (including)
Tomcat	Apache	10.0.0-milestone3 (including)	10.0.0-milestone3 (including)
Tomcat	Apache	10.0.0-milestone4 (including)	10.0.0-milestone4 (including)
Tomcat	Apache	10.0.0-milestone5 (including)	10.0.0-milestone5 (including)
Tomcat	Apache	10.0.0-milestone6 (including)	10.0.0-milestone6 (including)
Tomcat	Apache	10.0.0-milestone7 (including)	10.0.0-milestone7 (including)
Tomcat	Apache	10.0.0-milestone8 (including)	10.0.0-milestone8 (including)
Tomcat	Apache	10.0.0-milestone9 (including)	10.0.0-milestone9 (including)
Red Hat Fuse 7.11	RedHat	tomcat	*
Red Hat JBoss Web Server 5	RedHat	tomcat	*
Red Hat JBoss Web Server 5.5 on RHEL 7	RedHat	jws5-ecj-0:4.12.0-3.redhat_2.2.el7jws	*
Red Hat JBoss Web Server 5.5 on RHEL 7	RedHat	jws5-mod_cluster-0:1.4.3-2.Final_redhat_00002.1.el7jws	*
Red Hat JBoss Web Server 5.5 on RHEL 7	RedHat	jws5-tomcat-0:9.0.43-11.redhat_00011.1.el7jws	*
Red Hat JBoss Web Server 5.5 on RHEL 7	RedHat	jws5-tomcat-native-0:1.2.26-3.redhat_3.el7jws	*
Red Hat JBoss Web Server 5.5 on RHEL 7	RedHat	jws5-tomcat-vault-0:1.1.8-2.Final_redhat_00003.1.el7jws	*
Red Hat JBoss Web Server 5.5 on RHEL 8	RedHat	jws5-ecj-0:4.12.0-3.redhat_2.2.el8jws	*
Red Hat JBoss Web Server 5.5 on RHEL 8	RedHat	jws5-mod_cluster-0:1.4.3-2.Final_redhat_00002.1.el8jws	*
Red Hat JBoss Web Server 5.5 on RHEL 8	RedHat	jws5-tomcat-0:9.0.43-11.redhat_00011.1.el8jws	*
Red Hat JBoss Web Server 5.5 on RHEL 8	RedHat	jws5-tomcat-native-0:1.2.26-3.redhat_3.el8jws	*
Red Hat JBoss Web Server 5.5 on RHEL 8	RedHat	jws5-tomcat-vault-0:1.1.8-2.Final_redhat_00003.1.el8jws	*
Red Hat support for Spring Boot 2.3.10	RedHat	tomcat	*
Tomcat6	Ubuntu	precise/esm	*
Tomcat6	Ubuntu	trusty	*
Tomcat6	Ubuntu	trusty/esm	*
Tomcat6	Ubuntu	xenial	*
Tomcat7	Ubuntu	bionic	*
Tomcat7	Ubuntu	esm-apps/bionic	*
Tomcat7	Ubuntu	esm-apps/xenial	*
Tomcat7	Ubuntu	trusty	*
Tomcat7	Ubuntu	trusty/esm	*
Tomcat7	Ubuntu	xenial	*
Tomcat8	Ubuntu	bionic	*
Tomcat8	Ubuntu	xenial	*
Tomcat9	Ubuntu	bionic	*
Tomcat9	Ubuntu	focal	*
Tomcat9	Ubuntu	groovy	*
Tomcat9	Ubuntu	hirsute	*
Tomcat9	Ubuntu	impish	*
Tomcat9	Ubuntu	kinetic	*
Tomcat9	Ubuntu	lunar	*
Tomcat9	Ubuntu	mantic	*

NVD	https://nvd.nist.gov/vuln/detail/CVE-2021-25329
CWE	https://cwe.mitre.org/data/definitions/.html

Affected Software

References