3.5

CVSS Score

Basic Information

CVE ID

CVE-2007-5461

GHSA ID

GHSA-v5p2-vg3c-pmrr

EPSS Score

0.91111%

CWE

CWE-22

Published

5/1/2022

Updated

1/8/2024

KEV Status

Technology

Java

Concerned about an active attack path?

Talk to our security experts and see Miggo in action.

Miggo Vulnerability Database

→

CVE-2007-5461

CVE-2007-5461: Apache Tomcat Path Traversal Vulnerability

Absolute path traversal vulnerability in Apache Tomcat 4.0.0 through 4.0.6, 4.1.0, 5.0.0, 5.5.0 through 5.5.25, and 6.0.0 through 6.0.14, under certain configurations, allows remote authenticated users to read arbitrary files via a WebDAV write request that specifies an entity with a SYSTEM tag.

(GitHub Advisory)

3.5

CVSS Score

Basic Information

CVE ID

CVE-2007-5461

GHSA ID

GHSA-v5p2-vg3c-pmrr

EPSS Score

0.91111%

CWE

CWE-22

Published

5/1/2022

Updated

1/8/2024

KEV Status

Technology

Java

Technical Details

CVSS Vector

AV:N/AC:M/Au:S/C:P/I:N/A:N

Package Name	Ecosystem	Vulnerable Versions
org.apache.tomcat:tomcat	maven	>= 4.0.0, <= 4.0.6
org.apache.tomcat:tomcat	maven	= 4.1.0
org.apache.tomcat:tomcat	maven	= 5.0.0
org.apache.tomcat:tomcat	maven	>= 5.5.0, <= 5.5.25
org.apache.tomcat:tomcat	maven	>= 6.0.0, <= 6.0.14

Vulnerability Intelligence
Miggo AI

Root Cause Analysis

The vulnerability stems from improper XML parsing in WebDAV requests. The commit 1e7b31e fixes CVE-2007-5461 by adding documentBuilderFactory.setExpandEntityReferences(false) in WebdavServlet.java. This indicates the original vulnerability was caused by processing external entity references in XML parsing, which could be exploited via SYSTEM entities to access local files. The getDocumentBuilder() function was vulnerable because it didn't disable this dangerous feature initially.

Vulnerable functions

Only Mi**o us*rs **n s** t*is s**tion

WAF Protection Rules

WAF Rule

**solut* p*t* tr*v*rs*l vuln*r**ility in *p**** Tom**t *.*.* t*rou** *.*.*, *.*.*, *.*.*, *.*.* t*rou** *.*.**, *n* *.*.* t*rou** *.*.**, un**r **rt*in *on*i*ur*tions, *llows r*mot* *ut**nti**t** us*rs to r*** *r*itr*ry *il*s vi* * W****V writ* r*qu*

Reasoning

T** vuln*r**ility st*ms *rom improp*r XML p*rsin* in W****V r*qu*sts. T** *ommit ******* *ix*s *V*-****-**** *y ***in* `*o*um*nt*uil**r***tory.s*t*xp*n**ntityR***r*n**s(**ls*)` in `W****vS*rvl*t.j*v*`. T*is in*i**t*s t** ori*in*l vuln*r**ility w*s **

3.5

Basic Information

Concerned about an active attack path?

CVE-2007-5461: Apache Tomcat Path Traversal Vulnerability

3.5

Basic Information

Technical Details

Vulnerability IntelligenceMiggo AI

Root Cause Analysis

Vulnerable functions

WAF Protection Rules

WAF Rule

Reasoning

Vulnerability Intelligence
Miggo AI