4.3

CVSS Score

Basic Information

CVE ID

CVE-2014-0096

GHSA ID

GHSA-qprx-q2r7-3rx6

EPSS Score

0.80978%

CWE

CWE-20

Published

5/14/2022

Updated

2/22/2024

KEV Status

Technology

Java

Concerned about an active attack path?

Talk to our security experts and see Miggo in action.

Miggo Vulnerability Database

→

CVE-2014-0096

CVE-2014-0096: Improper Input Validation in Apache Tomcat

java/org/apache/catalina/servlets/DefaultServlet.java in the default servlet in Apache Tomcat before 6.0.40, 7.x before 7.0.53, and 8.x before 8.0.4 does not properly restrict XSLT stylesheets, which allows remote attackers to bypass security-manager restrictions and read arbitrary files via a crafted web application that provides an XML external entity declaration in conjunction with an entity reference, related to an XML External Entity (XXE) issue.

(GitHub Advisory)

4.3

CVSS Score

Basic Information

CVE ID

CVE-2014-0096

GHSA ID

GHSA-qprx-q2r7-3rx6

EPSS Score

0.80978%

CWE

CWE-20

Published

5/14/2022

Updated

2/22/2024

KEV Status

Technology

Java

Technical Details

CVSS Vector

AV:N/AC:M/Au:N/C:P/I:N/A:N

Package Name	Ecosystem	Vulnerable Versions	First Patched Version
org.apache.tomcat:tomcat	maven	< 6.0.40	6.0.40
org.apache.tomcat:tomcat	maven	>= 7.0.0, < 7.0.54	7.0.54
org.apache.tomcat:tomcat	maven	>= 8.0.0, < 8.0.6	8.0.6

Vulnerability Intelligence
Miggo AI

Root Cause Analysis

The analysis focused on the changes made to the DefaultServlet class, particularly how XSLT stylesheets are processed and how external entities are handled. The vulnerable function is identified as findXsltInputStream (and its variants) because it was directly modified to address the XXE vulnerability. The secureXslt method and SecureEntityResolver class are part of the mitigation and are not vulnerable themselves but are crucial in preventing the vulnerability.

Vulnerable functions

Only Mi**o us*rs **n s** t*is s**tion

WAF Protection Rules

WAF Rule

j*v*/or*/*p****/**t*lin*/s*rvl*ts/****ultS*rvl*t.j*v* in t** ****ult s*rvl*t in *p**** Tom**t ***or* *.*.**, *.x ***or* *.*.**, *n* *.x ***or* *.*.* *o*s not prop*rly r*stri*t XSLT styl*s***ts, w*i** *llows r*mot* *tt**k*rs to *yp*ss s**urity-m*n***r

Reasoning

T** *n*lysis *o*us** on t** ***n**s m*** to t** `****ultS*rvl*t` *l*ss, p*rti*ul*rly *ow XSLT styl*s***ts *r* pro**ss** *n* *ow *xt*rn*l *ntiti*s *r* **n*l**. T** vuln*r**l* *un*tion is i**nti*i** *s `*in*XsltInputStr**m` (*n* its v*ri*nts) ****us* i

4.3

Basic Information

Concerned about an active attack path?

CVE-2014-0096: Improper Input Validation in Apache Tomcat

4.3

Basic Information

Technical Details

Vulnerability IntelligenceMiggo AI

Root Cause Analysis

Vulnerable functions

WAF Protection Rules

WAF Rule

Reasoning

Vulnerability Intelligence
Miggo AI