Follow @Openwall on Twitter for new release announcements and other news
[<prev] [day] [month] [year] [list] 
Message-ID: <663abb59-5876-4f74-a929-8417f5ae8afa@apache.org>
Date: Mon, 28 Apr 2025 20:18:09 +0100
From: Mark Thomas <markt@...che.org>
To: oss-security@...ts.openwall.com
Subject: CVE-2025-31651: Apache Tomcat: Bypass of rules in Rewrite Valve

Severity: low

Affected versions:

- Apache Tomcat 11.0.0-M1 through 11.0.5
- Apache Tomcat 10.1.0-M1 through 10.1.39
- Apache Tomcat 9.0.0.M1 through 9.0.102

Description:

Improper Neutralization of Escape, Meta, or Control Sequences 
vulnerability in Apache Tomcat. For a subset of unlikely rewrite rule 
configurations, it was possible
for a specially crafted request to bypass some rewrite rules. If those
rewrite rules effectively enforced security constraints, those
constraints could be bypassed.

This issue affects Apache Tomcat: from 11.0.0-M1 through 11.0.5, from 
10.1.0-M1 through 10.1.39, from 9.0.0.M1 through 9.0.102.

Users are recommended to upgrade to version [FIXED_VERSION], which fixes 
the issue.

Credit:

COSCO Shipping Lines DIC (finder)

References:

https://lists.apache.org/list.html?announce@tomcat.apache.org
https://tomcat.apache.org/
https://www.cve.org/CVERecord?id=CVE-2025-31651

Powered by blists - more mailing lists

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.