Attacker Value
Unknown
(0 users assessed)
Exploitability
Unknown
(0 users assessed)
User Interaction
Unknown
Privileges Required
Unknown
Attack Vector
Unknown
0

CVE-2017-5647

Disclosure Date: April 17, 2017
Add MITRE ATT&CK tactics and techniques that apply to this CVE.

Description

A bug in the handling of the pipelined requests in Apache Tomcat 9.0.0.M1 to 9.0.0.M18, 8.5.0 to 8.5.12, 8.0.0.RC1 to 8.0.42, 7.0.0 to 7.0.76, and 6.0.0 to 6.0.52, when send file was used, results in the pipelined request being lost when send file processing of the previous request completed. This could result in responses appearing to be sent for the wrong request. For example, a user agent that sent requests A, B and C could see the correct response for request A, the response for request C for request B and no response for request C.

Add Assessment

No one has assessed this topic. Be the first to add your voice to the community.

CVSS V3 Severity and Metrics
Base Score:
None
Impact Score:
Unknown
Exploitability Score:
Unknown
Vector:
Unknown
Attack Vector (AV):
Unknown
Attack Complexity (AC):
Unknown
Privileges Required (PR):
Unknown
User Interaction (UI):
Unknown
Scope (S):
Unknown
Confidentiality (C):
Unknown
Integrity (I):
Unknown
Availability (A):
Unknown

General Information

Vendors

  • apache

Products

  • tomcat 6.0.0,
  • tomcat 6.0.1,
  • tomcat 6.0.10,
  • tomcat 6.0.11,
  • tomcat 6.0.12,
  • tomcat 6.0.13,
  • tomcat 6.0.14,
  • tomcat 6.0.15,
  • tomcat 6.0.16,
  • tomcat 6.0.17,
  • tomcat 6.0.18,
  • tomcat 6.0.19,
  • tomcat 6.0.2,
  • tomcat 6.0.20,
  • tomcat 6.0.21,
  • tomcat 6.0.22,
  • tomcat 6.0.23,
  • tomcat 6.0.24,
  • tomcat 6.0.25,
  • tomcat 6.0.26,
  • tomcat 6.0.27,
  • tomcat 6.0.28,
  • tomcat 6.0.29,
  • tomcat 6.0.3,
  • tomcat 6.0.30,
  • tomcat 6.0.31,
  • tomcat 6.0.32,
  • tomcat 6.0.33,
  • tomcat 6.0.34,
  • tomcat 6.0.35,
  • tomcat 6.0.36,
  • tomcat 6.0.37,
  • tomcat 6.0.38,
  • tomcat 6.0.39,
  • tomcat 6.0.4,
  • tomcat 6.0.40,
  • tomcat 6.0.41,
  • tomcat 6.0.42,
  • tomcat 6.0.43,
  • tomcat 6.0.44,
  • tomcat 6.0.45,
  • tomcat 6.0.46,
  • tomcat 6.0.47,
  • tomcat 6.0.48,
  • tomcat 6.0.49,
  • tomcat 6.0.5,
  • tomcat 6.0.50,
  • tomcat 6.0.51,
  • tomcat 6.0.52,
  • tomcat 6.0.6,
  • tomcat 6.0.7,
  • tomcat 6.0.8,
  • tomcat 6.0.9,
  • tomcat 7.0.0,
  • tomcat 7.0.1,
  • tomcat 7.0.10,
  • tomcat 7.0.11,
  • tomcat 7.0.12,
  • tomcat 7.0.13,
  • tomcat 7.0.14,
  • tomcat 7.0.15,
  • tomcat 7.0.16,
  • tomcat 7.0.17,
  • tomcat 7.0.18,
  • tomcat 7.0.19,
  • tomcat 7.0.2,
  • tomcat 7.0.20,
  • tomcat 7.0.21,
  • tomcat 7.0.22,
  • tomcat 7.0.23,
  • tomcat 7.0.24,
  • tomcat 7.0.25,
  • tomcat 7.0.26,
  • tomcat 7.0.27,
  • tomcat 7.0.28,
  • tomcat 7.0.29,
  • tomcat 7.0.3,
  • tomcat 7.0.30,
  • tomcat 7.0.31,
  • tomcat 7.0.32,
  • tomcat 7.0.33,
  • tomcat 7.0.34,
  • tomcat 7.0.35,
  • tomcat 7.0.36,
  • tomcat 7.0.37,
  • tomcat 7.0.38,
  • tomcat 7.0.39,
  • tomcat 7.0.4,
  • tomcat 7.0.40,
  • tomcat 7.0.41,
  • tomcat 7.0.42,
  • tomcat 7.0.43,
  • tomcat 7.0.44,
  • tomcat 7.0.45,
  • tomcat 7.0.46,
  • tomcat 7.0.47,
  • tomcat 7.0.48,
  • tomcat 7.0.49,
  • tomcat 7.0.5,
  • tomcat 7.0.50,
  • tomcat 7.0.51,
  • tomcat 7.0.52,
  • tomcat 7.0.53,
  • tomcat 7.0.54,
  • tomcat 7.0.55,
  • tomcat 7.0.56,
  • tomcat 7.0.57,
  • tomcat 7.0.58,
  • tomcat 7.0.59,
  • tomcat 7.0.6,
  • tomcat 7.0.60,
  • tomcat 7.0.61,
  • tomcat 7.0.62,
  • tomcat 7.0.63,
  • tomcat 7.0.64,
  • tomcat 7.0.65,
  • tomcat 7.0.66,
  • tomcat 7.0.67,
  • tomcat 7.0.68,
  • tomcat 7.0.69,
  • tomcat 7.0.7,
  • tomcat 7.0.70,
  • tomcat 7.0.71,
  • tomcat 7.0.72,
  • tomcat 7.0.73,
  • tomcat 7.0.74,
  • tomcat 7.0.75,
  • tomcat 7.0.76,
  • tomcat 7.0.8,
  • tomcat 7.0.9,
  • tomcat 8.0.0,
  • tomcat 8.0.1,
  • tomcat 8.0.10,
  • tomcat 8.0.11,
  • tomcat 8.0.12,
  • tomcat 8.0.13,
  • tomcat 8.0.14,
  • tomcat 8.0.15,
  • tomcat 8.0.16,
  • tomcat 8.0.17,
  • tomcat 8.0.18,
  • tomcat 8.0.19,
  • tomcat 8.0.2,
  • tomcat 8.0.20,
  • tomcat 8.0.21,
  • tomcat 8.0.22,
  • tomcat 8.0.23,
  • tomcat 8.0.24,
  • tomcat 8.0.25,
  • tomcat 8.0.26,
  • tomcat 8.0.27,
  • tomcat 8.0.28,
  • tomcat 8.0.29,
  • tomcat 8.0.3,
  • tomcat 8.0.30,
  • tomcat 8.0.31,
  • tomcat 8.0.32,
  • tomcat 8.0.33,
  • tomcat 8.0.34,
  • tomcat 8.0.35,
  • tomcat 8.0.36,
  • tomcat 8.0.37,
  • tomcat 8.0.38,
  • tomcat 8.0.39,
  • tomcat 8.0.4,
  • tomcat 8.0.40,
  • tomcat 8.0.41,
  • tomcat 8.0.42,
  • tomcat 8.0.5,
  • tomcat 8.0.6,
  • tomcat 8.0.7,
  • tomcat 8.0.8,
  • tomcat 8.0.9,
  • tomcat 8.5.0,
  • tomcat 8.5.1,
  • tomcat 8.5.10,
  • tomcat 8.5.11,
  • tomcat 8.5.12,
  • tomcat 8.5.2,
  • tomcat 8.5.3,
  • tomcat 8.5.4,
  • tomcat 8.5.5,
  • tomcat 8.5.6,
  • tomcat 8.5.7,
  • tomcat 8.5.8,
  • tomcat 8.5.9,
  • tomcat 9.0.0

References

Advisory

Additional Info

Technical Analysis