CyberSec.Space Logo
返回 CVE 瀏覽器

CVE-2016-8735

Known Exploited (CISA KEV)CRITICAL
9.8
CVSS Severity Score
EPSS Score43.3920%
EPSS Percentile96.52th
Published2017年4月6日
Last Modified2026年4月21日

Vulnerability Description

Remote code execution is possible with Apache Tomcat before 6.0.48, 7.x before 7.0.73, 8.x before 8.0.39, 8.5.x before 8.5.7, and 9.x before 9.0.0.M12 if JmxRemoteLifecycleListener is used and an attacker can reach JMX ports. The issue exists because this listener wasn't updated for consistency with the CVE-2016-3427 Oracle patch that affected credential types.

Affected Platforms (CPE)

📦
Apache

Tomcat

< 6.0.48
📦
Apache

Tomcat

>= 7.0.0 and < 7.0.73
📦
Apache

Tomcat

>= 8.0 and < 8.0.39
📦
Apache

Tomcat

>= 8.5.0 and < 8.5.7
📦
Apache

Tomcat

= 9.0.0
📦
Apache

Tomcat

= 9.0.0
📦
Apache

Tomcat

= 9.0.0
📦
Apache

Tomcat

= 9.0.0
📦
Apache

Tomcat

= 9.0.0
📦
Apache

Tomcat

= 9.0.0
📦
Apache

Tomcat

= 9.0.0
📦
Apache

Tomcat

= 9.0.0
📦
Apache

Tomcat

= 9.0.0
📦
Apache

Tomcat

= 9.0.0
📦
Apache

Tomcat

= 9.0.0
📦
Apache

Tomcat

= 9.0.0
💻
Canonical

Ubuntu Linux

= 16.04
📦
Netapp

7 Mode Transition Tool

All versions
📦
Netapp

Oncommand Insight

All versions
📦
Netapp

Oncommand Shift

All versions
📦
Netapp

Snap Creator Framework

All versions
💻
Debian

Debian Linux

= 8.0
📦
Redhat

Jboss Enterprise Web Server

= 3.0.0
📦
Oracle

Agile Engineering Data Management

= 6.1.3
📦
Oracle

Agile Engineering Data Management

= 6.2.0
📦
Oracle

Agile Engineering Data Management

= 6.2.1.0
📦
Oracle

Agile Plm

= 9.3.5
📦
Oracle

Agile Plm

= 9.3.6
📦
Oracle

Communications Application Session Controller

= 3.7.1
📦
Oracle

Communications Application Session Controller

= 3.8.0
📦
Oracle

Communications Instant Messaging Server

= 10.0.1
📦
Oracle

Communications Interactive Session Recorder

= 6.0
📦
Oracle

Communications Interactive Session Recorder

= 6.1
📦
Oracle

Communications Interactive Session Recorder

= 6.2
📦
Oracle

Hospitality Guest Access

= 4.2.0
📦
Oracle

Hospitality Guest Access

= 4.2.1
📦
Oracle

Micros Relate Crm Software

= 10.8
📦
Oracle

Micros Relate Crm Software

= 11.4
📦
Oracle

Micros Retail Xbri Loss Prevention

= 10.0.1
📦
Oracle

Micros Retail Xbri Loss Prevention

= 10.5.0
📦
Oracle

Micros Retail Xbri Loss Prevention

= 10.6.0
📦
Oracle

Micros Retail Xbri Loss Prevention

= 10.7.7
📦
Oracle

Micros Retail Xbri Loss Prevention

= 10.8.0
📦
Oracle

Micros Retail Xbri Loss Prevention

= 10.8.1
📦
Oracle

Mysql Enterprise Monitor

<= 3.2.8.2223
📦
Oracle

Mysql Enterprise Monitor

>= 3.3.0 and <= 3.3.4.3247
📦
Oracle

Mysql Enterprise Monitor

>= 3.4.0 and <= 3.4.2.4181
📦
Oracle

Retail Convenience And Fuel Pos Software

= 2.1.132
📦
Oracle

Transportation Management

= 6.3.0
📦
Oracle

Transportation Management

= 6.3.1
📦
Oracle

Transportation Management

= 6.3.2
📦
Oracle

Transportation Management

= 6.3.3
📦
Oracle

Transportation Management

= 6.3.4
📦
Oracle

Transportation Management

= 6.3.5
📦
Oracle

Transportation Management

= 6.3.6
📦
Oracle

Transportation Management

= 6.3.7

References & Advisories

🔗 http://rhn.redhat.com/errata/RHSA-2017-0457.html
🔗 http://seclists.org/oss-sec/2016/q4/502
🔗 http://svn.apache.org/viewvc?view=revision&revision=1767644
🔗 http://svn.apache.org/viewvc?view=revision&revision=1767656
🔗 http://svn.apache.org/viewvc?view=revision&revision=1767676
🔗 http://svn.apache.org/viewvc?view=revision&revision=1767684
🔗 http://tomcat.apache.org/security-6.html
🔗 http://tomcat.apache.org/security-7.html

相關漏洞威脅

CVE-2009-384310.0

HP Operations Manager 8.10 on Windows contains a "hidden account" in the XML file that specifies Tomcat users, which allows remote...

CVE-2009-418810.0

HP Operations Dashboard has a default password of j2deployer for the j2deployer account, which allows remote attackers to execute ...

CVE-2008-045710.0

Unrestricted file upload vulnerability in the FileUpload class running on the Symantec LiveState Apache Tomcat server, as used by ...

CVE-2009-418910.0

HP Operations Manager has a default password of OvW*busr1 for the ovwebusr account, which allows remote attackers to execute arbit...