8.6

CVSS Score

3.1

Basic Information

CVE ID

CVE-2022-25762

GHSA ID

GHSA-h3ch-5pp2-vh6w

EPSS Score

0.57908%

CWE

CWE-404

Published

5/14/2022

Updated

1/27/2023

KEV Status

Technology

Java

Concerned about an active attack path?

Talk to our security experts and see Miggo in action.

Miggo Vulnerability Database

→

CVE-2022-25762

CVE-2022-25762:
Improper socket reuse in Apache Tomcat

If a web application sends a WebSocket message concurrently with the WebSocket connection closing when running on Apache Tomcat 8.5.0 to 8.5.75 or Apache Tomcat 9.0.0.M1 to 9.0.20, it is possible that the application will continue to use the socket after it has been closed. The error handling triggered in this case could cause the a pooled object to be placed in the pool twice. This could result in subsequent connections using the same object concurrently which could result in data being returned to the wrong use and/or other errors.

(GitHub Advisory)

8.6

CVSS Score

3.1

Basic Information

CVE ID

CVE-2022-25762

GHSA ID

GHSA-h3ch-5pp2-vh6w

EPSS Score

0.57908%

CWE

CWE-404

Published

5/14/2022

Updated

1/27/2023

KEV Status

Technology

Java

Technical Details

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L

Package Name	Ecosystem	Vulnerable Versions	First Patched Version
org.apache.tomcat:tomcat	maven	>= 8.5.0, < 8.5.75	8.5.75
org.apache.tomcat:tomcat	maven	>= 9.0.0M1, < 9.0.20	9.0.20

Vulnerability Intelligence
Miggo AI

Root Cause Analysis

The vulnerability stems from improper socket reuse during concurrent WebSocket message transmission and connection closure. Key functions in Tomcat's WebSocket implementation (WsRemoteEndpointImplServer, WsSession) directly manage connection states and resource release. Errors in these methods' synchronization or state checks during closure could allow double-pooling. The SocketProcessorBase.run() is included with medium confidence due to its role in socket task handling, though its direct involvement depends on thread scheduling specifics not explicitly documented in the vulnerability description.

Vulnerable functions

Only Mi**o us*rs **n s** t*is s**tion

WAF Protection Rules

WAF Rule

I* * w** *ppli**tion s*n*s * W**So*k*t m*ss*** *on*urr*ntly wit* t** W**So*k*t *onn**tion *losin* w**n runnin* on *p**** Tom**t *.*.* to *.*.** or *p**** Tom**t *.*.*.M* to *.*.**, it is possi*l* t**t t** *ppli**tion will *ontinu* to us* t** so*k*t *

Reasoning

T** vuln*r**ility st*ms *rom improp*r so*k*t r*us* *urin* *on*urr*nt W**So*k*t m*ss*** tr*nsmission *n* *onn**tion *losur*. K*y *un*tions in Tom**t's W**So*k*t impl*m*nt*tion (WsR*mot**n*pointImplS*rv*r, WsS*ssion) *ir**tly m*n*** *onn**tion st*t*s *

8.6

Basic Information

Concerned about an active attack path?

CVE-2022-25762: Improper socket reuse in Apache Tomcat

8.6

Basic Information

Technical Details

Vulnerability IntelligenceMiggo AI

Root Cause Analysis

Vulnerable functions

WAF Protection Rules

WAF Rule

Reasoning

CVE-2022-25762:
Improper socket reuse in Apache Tomcat

Vulnerability Intelligence
Miggo AI