Apache Tomcat - XSS in generated JSPs

GHSA-f632-9449-3j4w · BIT-tomcat-2024-52318 · CVE-2024-52318

Published Nov 18, 2024 · Modified Jan 31, 2025

Description

Description:

The fix for improvement 69333 caused pooled JSP tags not to be released after use which in turn could cause output of some tags not to escaped as expected. This unescaped output could lead to XSS.

Versions Affected:

Apache Tomcat 11.0.0
Apache Tomcat 10.1.31
Apache Tomcat 9.0.96

Mitigation:

Users of the affected versions should apply one of the following
mitigations:

Upgrade to Apache Tomcat 11.0.1 or later
Upgrade to Apache Tomcat 10.1.33 or later
Note: 10.1.32 was not released
Upgrade to Apache Tomcat 9.0.97 or later

References

ADVISORY https://nvd.nist.gov/vuln/detail/CVE-2024-52318
WEB https://github.com/apache/tomcat/commit/8d1fc4733a06d1a03b9d644c57010f2ec5f0df38
WEB https://github.com/apache/tomcat/commit/9813c5dd3259183f659bbb83312a5cf673cc1ebf
WEB https://github.com/apache/tomcat/commit/be8e32143a3159e78fe5463d09bb8e1b33bf2b1f
WEB https://bz.apache.org/bugzilla/show_bug.cgi?id=69333
PACKAGE https://github.com/apache/tomcat
WEB https://lists.apache.org/thread/co243cw1nlh6p521c5265cm839wkqdp9
WEB https://security.netapp.com/advisory/ntap-20250131-0009
WEB http://www.openwall.com/lists/oss-security/2024/11/18/4

Ready to move

Start Securing

Start for Free Get Demo

Free, no credit card | First findings in minutes