CVE-2011-3375: Infoleak
First published: Thu Jan 19 2012(Updated: )
Apache Tomcat 6.0.30 through 6.0.33 and 7.x before 7.0.22 does not properly perform certain caching and recycling operations involving request objects, which allows remote attackers to obtain unintended read access to IP address and HTTP header information in opportunistic circumstances by reading TCP data.
Credit: secalert@redhat.com secalert@redhat.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| maven/org.apache.tomcat:tomcat | >=7.0<7.0.22 | 7.0.22 |
| maven/org.apache.tomcat:tomcat | >=6.0.30<=6.0.33 | 6.0.35 |
| Tomcat | =6.0.33 | |
| Tomcat | =6.0.31 | |
| Tomcat | =6.0.32 | |
| Tomcat | =6.0.30 | |
| Tomcat | =7.0.12 | |
| Tomcat | =7.0.20 | |
| Tomcat | =7.0.8 | |
| Tomcat | =7.0.1 | |
| Tomcat | =7.0.2 | |
| Tomcat | =7.0.5 | |
| Tomcat | =7.0.0 | |
| Tomcat | =7.0.6 | |
| Tomcat | =7.0.18 | |
| Tomcat | =7.0.14 | |
| Tomcat | =7.0.11 | |
| Tomcat | =7.0.7 | |
| Tomcat | =7.0.13 | |
| Tomcat | =7.0.15 | |
| Tomcat | =7.0.19 | |
| Tomcat | =7.0.16 | |
| Tomcat | =7.0.10 | |
| Tomcat | =7.0.21 | |
| Tomcat | =7.0.17 | |
| Tomcat | =7.0.9 | |
| Tomcat | =7.0.4 | |
| Tomcat | =7.0.3 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://tomcat.apache.org/security-6.html
- http://tomcat.apache.org/security-7.html
- http://www.debian.org/security/2012/dsa-2401
- https://nvd.nist.gov/vuln/detail/CVE-2011-3375
- https://github.com/apache/tomcat/commit/9eae334e9492f55a841e6eb7ab302ff11d03ab21
- https://github.com/advisories/GHSA-rp8h-vr48-4j8p (Advisory)
Frequently Asked Questions
What is the severity of CVE-2011-3375?
CVE-2011-3375 has a medium severity rating as it allows unintended read access to sensitive information in specific circumstances.
How do I fix CVE-2011-3375?
To fix CVE-2011-3375, upgrade to Apache Tomcat version 6.0.35 or 7.0.22 or later.
What versions of Apache Tomcat are affected by CVE-2011-3375?
CVE-2011-3375 affects Apache Tomcat versions 6.0.30 to 6.0.33 and all 7.x versions prior to 7.0.22.
Can CVE-2011-3375 be exploited remotely?
Yes, CVE-2011-3375 can be exploited by remote attackers to gain access to sensitive information.
What kind of information can be accessed due to CVE-2011-3375?
CVE-2011-3375 may allow attackers to read access to IP address and HTTP header information.
- agent/type
- collector/github-advisory-latest
- source/GitHub
- alias/GHSA-rp8h-vr48-4j8p
- alias/CVE-2011-3375
- agent/software-canonical-lookup
- agent/references
- agent/weakness
- agent/severity
- agent/description
- agent/author
- agent/softwarecombine
- collector/github-advisory
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/first-publish-date
- agent/event
- agent/trending
- agent/source
- agent/tags
- collector/nvd-historical
- agent/software-canonical-lookup-request
- collector/nvd-index
- collector/nvd-cve
- source/NVD
- package-manager/maven
- vendor/apache
- canonical/tomcat
- version/tomcat/6.0.33
- version/tomcat/6.0.31
- version/tomcat/6.0.32
- version/tomcat/6.0.30
- version/tomcat/7.0.12
- version/tomcat/7.0.20
- version/tomcat/7.0.8
- version/tomcat/7.0.1
- version/tomcat/7.0.2
- version/tomcat/7.0.5
- version/tomcat/7.0.0
- version/tomcat/7.0.6
- version/tomcat/7.0.18
- version/tomcat/7.0.14
- version/tomcat/7.0.11
- version/tomcat/7.0.7
- version/tomcat/7.0.13
- version/tomcat/7.0.15
- version/tomcat/7.0.19
- version/tomcat/7.0.16
- version/tomcat/7.0.10
- version/tomcat/7.0.21
- version/tomcat/7.0.17
- version/tomcat/7.0.9
- version/tomcat/7.0.4
- version/tomcat/7.0.3