CVE-2023-28708

EPSS 0.16%
Published 22.03.2023 11:15:10
Last modified 07.08.2025 11:15:26
Source security@apache.org
Teams watchlist Login
Open Login

When using the RemoteIpFilter with requests received from a    reverse proxy via HTTP that include the X-Forwarded-Proto    header set to https, session cookies created by Apache Tomcat 11.0.0-M1 to 11.0.0.-M2, 10.1.0-M1 to 10.1.5, 9.0.0-M1 to 9.0.71 and 8.5.0 to 8.5.85 did not include the secure attribute. This could result in the user agent transmitting the session cookie over an insecure channel.

Older, EOL versions may also be affected.

Affected products Warnungen 0 Metrics 3 CWE 1 References 4

Data is provided by the National Vulnerability Database (NVD)

Apache ≫ Tomcat Version >= 8.5.0 < 8.5.86

Apache ≫ Tomcat Version > 9.0.0 < 9.0.72

Apache ≫ Tomcat Version > 10.1.0 < 10.1.6

Apache ≫ Tomcat Version11.0.0 Updatemilestone1

Apache ≫ Tomcat Version11.0.0 Updatemilestone2

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.16%	0.378

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	4.3	2.8	1.4	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N
134c704f-9b21-4f2e-91b3-4a467353bcc0	4.3	2.8	1.4	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N

CWE-523 Unprotected Transport of Credentials

Login pages do not use adequate measures to protect the user name and password while they are in transit from the client to the server.

https://lists.apache.org/thread/hdksc59z3s7tm39x0pp33mtwdrt8qr67

Patch

Vendor Advisory

Mailing List

https://nvd.nist.gov/vuln/detail/CVE-2023-28708

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2023-28708

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2023-28708

EUVD