CVE & CISA-KEV Catalog

CVE-2024-46544

MEDIUM
5.9
CVSS v3
NVD

Description

Incorrect Default Permissions vulnerability in Apache Tomcat Connectors allows local users to view and modify shared memory containing mod_jk configuration which may lead to information disclosure and/or denial of service. This issue affects Apache Tomcat Connectors: from 1.2.9-beta through 1.2.49. Only mod_jk on Unix like systems is affected. Neither the ISAPI redirector nor mod_jk on Windows is affected. Users are recommended to upgrade to version 1.2.50, which fixes the issue.

How to fix

Remediation Available
libapache-mod-jkDebian
Fixed in:1:1.2.48-1+deb11u2CVE-2024-46544
Fixed in:1:1.2.48-2+deb12u2CVE-2024-46544
Fixed in:1:1.2.50-1CVE-2024-46544
Fixed in:1:1.2.50-1CVE-2024-46544
jbcs-httpd24-httpdRocky
Fixed in:0:2.4.57-15.el7jbcsRHSA-2024:6927
Fixed in:0:2.4.57-15.el7jbcsRHSA-2024:6927
Fixed in:0:2.4.57-15.el8jbcsRHSA-2024:6927
Fixed in:0:2.4.57-15.el8jbcsRHSA-2024:6927
jbcs-httpd24-httpdRed Hat / RHEL
Fixed in:0:2.4.57-15.el7jbcsRHSA-2024:6927
Fixed in:0:2.4.57-15.el7jbcsRHSA-2024:6927
Fixed in:0:2.4.57-15.el8jbcsRHSA-2024:6927
Fixed in:0:2.4.57-15.el8jbcsRHSA-2024:6927
jbcs-httpd24-httpd-debuginfoRed Hat / RHEL
Fixed in:0:2.4.57-15.el7jbcsRHSA-2024:6927
Fixed in:0:2.4.57-15.el8jbcsRHSA-2024:6927
jbcs-httpd24-httpd-debuginfoRocky
Fixed in:0:2.4.57-15.el7jbcsRHSA-2024:6927
Fixed in:0:2.4.57-15.el8jbcsRHSA-2024:6927
jbcs-httpd24-httpd-develRocky
Fixed in:0:2.4.57-15.el7jbcsRHSA-2024:6927
Fixed in:0:2.4.57-15.el8jbcsRHSA-2024:6927
jbcs-httpd24-httpd-develRed Hat / RHEL
Fixed in:0:2.4.57-15.el7jbcsRHSA-2024:6927
Fixed in:0:2.4.57-15.el8jbcsRHSA-2024:6927
jbcs-httpd24-httpd-manualRocky
Fixed in:0:2.4.57-15.el7jbcsRHSA-2024:6927
Fixed in:0:2.4.57-15.el8jbcsRHSA-2024:6927
jbcs-httpd24-httpd-manualRed Hat / RHEL
Fixed in:0:2.4.57-15.el7jbcsRHSA-2024:6927
Fixed in:0:2.4.57-15.el8jbcsRHSA-2024:6927
jbcs-httpd24-httpd-selinuxRed Hat / RHEL
Fixed in:0:2.4.57-15.el7jbcsRHSA-2024:6927
Fixed in:0:2.4.57-15.el8jbcsRHSA-2024:6927
jbcs-httpd24-httpd-selinuxRocky
Fixed in:0:2.4.57-15.el7jbcsRHSA-2024:6927
Fixed in:0:2.4.57-15.el8jbcsRHSA-2024:6927
jbcs-httpd24-httpd-toolsRed Hat / RHEL
Fixed in:0:2.4.57-15.el7jbcsRHSA-2024:6927
Fixed in:0:2.4.57-15.el8jbcsRHSA-2024:6927
jbcs-httpd24-httpd-toolsRocky
Fixed in:0:2.4.57-15.el7jbcsRHSA-2024:6927
Fixed in:0:2.4.57-15.el8jbcsRHSA-2024:6927
jbcs-httpd24-httpd-tools-debuginfoRocky
Fixed in:0:2.4.57-15.el8jbcsRHSA-2024:6927
jbcs-httpd24-httpd-tools-debuginfoRed Hat / RHEL
Fixed in:0:2.4.57-15.el8jbcsRHSA-2024:6927
jbcs-httpd24-mod_http2Rocky
Fixed in:0:1.15.19-43.el7jbcsRHSA-2024:6927
Fixed in:0:1.15.19-43.el7jbcsRHSA-2024:6927
Fixed in:0:1.15.19-43.el8jbcsRHSA-2024:6927
Fixed in:0:1.15.19-43.el8jbcsRHSA-2024:6927
jbcs-httpd24-mod_http2Red Hat / RHEL
Fixed in:0:1.15.19-43.el7jbcsRHSA-2024:6927
Fixed in:0:1.15.19-43.el7jbcsRHSA-2024:6927
Fixed in:0:1.15.19-43.el8jbcsRHSA-2024:6927
Fixed in:0:1.15.19-43.el8jbcsRHSA-2024:6927
jbcs-httpd24-mod_http2-debuginfoRed Hat / RHEL
Fixed in:0:1.15.19-43.el7jbcsRHSA-2024:6927
Fixed in:0:1.15.19-43.el8jbcsRHSA-2024:6927
jbcs-httpd24-mod_http2-debuginfoRocky
Fixed in:0:1.15.19-43.el7jbcsRHSA-2024:6927
Fixed in:0:1.15.19-43.el8jbcsRHSA-2024:6927
jbcs-httpd24-mod_jkRocky
Fixed in:0:1.2.50-3.redhat_1.el7jbcsRHSA-2024:6927
Fixed in:0:1.2.50-3.redhat_1.el8jbcsRHSA-2024:6927
jbcs-httpd24-mod_jkRed Hat / RHEL
Fixed in:0:1.2.50-3.redhat_1.el7jbcsRHSA-2024:6927
Fixed in:0:1.2.50-3.redhat_1.el8jbcsRHSA-2024:6927
jbcs-httpd24-mod_jk-ap24Red Hat / RHEL
Fixed in:0:1.2.50-3.redhat_1.el7jbcsRHSA-2024:6927
Fixed in:0:1.2.50-3.redhat_1.el8jbcsRHSA-2024:6927
jbcs-httpd24-mod_jk-ap24Rocky
Fixed in:0:1.2.50-3.redhat_1.el7jbcsRHSA-2024:6927
Fixed in:0:1.2.50-3.redhat_1.el8jbcsRHSA-2024:6927
jbcs-httpd24-mod_jk-ap24-debuginfoRed Hat / RHEL
Fixed in:0:1.2.50-3.redhat_1.el8jbcsRHSA-2024:6927
jbcs-httpd24-mod_jk-ap24-debuginfoRocky
Fixed in:0:1.2.50-3.redhat_1.el8jbcsRHSA-2024:6927
jbcs-httpd24-mod_jk-debuginfoRocky
Fixed in:0:1.2.50-3.redhat_1.el7jbcsRHSA-2024:6927
jbcs-httpd24-mod_jk-debuginfoRed Hat / RHEL
Fixed in:0:1.2.50-3.redhat_1.el7jbcsRHSA-2024:6927
jbcs-httpd24-mod_ldapRed Hat / RHEL
Fixed in:0:2.4.57-15.el7jbcsRHSA-2024:6927
Fixed in:0:2.4.57-15.el8jbcsRHSA-2024:6927
jbcs-httpd24-mod_ldapRocky
Fixed in:0:2.4.57-15.el7jbcsRHSA-2024:6927
Fixed in:0:2.4.57-15.el8jbcsRHSA-2024:6927
jbcs-httpd24-mod_ldap-debuginfoRocky
Fixed in:0:2.4.57-15.el8jbcsRHSA-2024:6927
jbcs-httpd24-mod_ldap-debuginfoRed Hat / RHEL
Fixed in:0:2.4.57-15.el8jbcsRHSA-2024:6927
jbcs-httpd24-mod_mdRocky
Fixed in:1:2.4.24-13.el7jbcsRHSA-2024:6927
Fixed in:1:2.4.24-13.el7jbcsRHSA-2024:6927
Fixed in:1:2.4.24-13.el8jbcsRHSA-2024:6927
Fixed in:1:2.4.24-13.el8jbcsRHSA-2024:6927
jbcs-httpd24-mod_mdRed Hat / RHEL
Fixed in:1:2.4.24-13.el7jbcsRHSA-2024:6927
Fixed in:1:2.4.24-13.el7jbcsRHSA-2024:6927
Fixed in:1:2.4.24-13.el8jbcsRHSA-2024:6927
Fixed in:1:2.4.24-13.el8jbcsRHSA-2024:6927
jbcs-httpd24-mod_md-debuginfoRed Hat / RHEL
Fixed in:1:2.4.24-13.el7jbcsRHSA-2024:6927
Fixed in:1:2.4.24-13.el8jbcsRHSA-2024:6927
jbcs-httpd24-mod_md-debuginfoRocky
Fixed in:1:2.4.24-13.el7jbcsRHSA-2024:6927
Fixed in:1:2.4.24-13.el8jbcsRHSA-2024:6927
jbcs-httpd24-mod_proxy_clusterRocky
Fixed in:0:1.3.20-10.el7jbcsRHSA-2024:6927
Fixed in:0:1.3.20-10.el7jbcsRHSA-2024:6927
Fixed in:0:1.3.20-10.el8jbcsRHSA-2024:6927
Fixed in:0:1.3.20-10.el8jbcsRHSA-2024:6927
jbcs-httpd24-mod_proxy_clusterRed Hat / RHEL
Fixed in:0:1.3.20-10.el7jbcsRHSA-2024:6927
Fixed in:0:1.3.20-10.el7jbcsRHSA-2024:6927
Fixed in:0:1.3.20-10.el8jbcsRHSA-2024:6927
Fixed in:0:1.3.20-10.el8jbcsRHSA-2024:6927
jbcs-httpd24-mod_proxy_cluster-debuginfoRocky
Fixed in:0:1.3.20-10.el7jbcsRHSA-2024:6927
Fixed in:0:1.3.20-10.el8jbcsRHSA-2024:6927
jbcs-httpd24-mod_proxy_cluster-debuginfoRed Hat / RHEL
Fixed in:0:1.3.20-10.el7jbcsRHSA-2024:6927
Fixed in:0:1.3.20-10.el8jbcsRHSA-2024:6927
jbcs-httpd24-mod_proxy_htmlRed Hat / RHEL
Fixed in:1:2.4.57-15.el7jbcsRHSA-2024:6927
Fixed in:1:2.4.57-15.el8jbcsRHSA-2024:6927
jbcs-httpd24-mod_proxy_htmlRocky
Fixed in:1:2.4.57-15.el7jbcsRHSA-2024:6927
Fixed in:1:2.4.57-15.el8jbcsRHSA-2024:6927
jbcs-httpd24-mod_proxy_html-debuginfoRocky
Fixed in:1:2.4.57-15.el8jbcsRHSA-2024:6927
jbcs-httpd24-mod_proxy_html-debuginfoRed Hat / RHEL
Fixed in:1:2.4.57-15.el8jbcsRHSA-2024:6927
jbcs-httpd24-mod_securityRocky
Fixed in:0:2.9.3-42.el7jbcsRHSA-2024:6927
Fixed in:0:2.9.3-42.el7jbcsRHSA-2024:6927
Fixed in:0:2.9.3-42.el8jbcsRHSA-2024:6927
Fixed in:0:2.9.3-42.el8jbcsRHSA-2024:6927
jbcs-httpd24-mod_securityRed Hat / RHEL
Fixed in:0:2.9.3-42.el7jbcsRHSA-2024:6927
Fixed in:0:2.9.3-42.el7jbcsRHSA-2024:6927
Fixed in:0:2.9.3-42.el8jbcsRHSA-2024:6927
Fixed in:0:2.9.3-42.el8jbcsRHSA-2024:6927
jbcs-httpd24-mod_security-debuginfoRed Hat / RHEL
Fixed in:0:2.9.3-42.el7jbcsRHSA-2024:6927
Fixed in:0:2.9.3-42.el8jbcsRHSA-2024:6927
jbcs-httpd24-mod_security-debuginfoRocky
Fixed in:0:2.9.3-42.el7jbcsRHSA-2024:6927
Fixed in:0:2.9.3-42.el8jbcsRHSA-2024:6927
jbcs-httpd24-mod_sessionRocky
Fixed in:0:2.4.57-15.el7jbcsRHSA-2024:6927
Fixed in:0:2.4.57-15.el8jbcsRHSA-2024:6927
jbcs-httpd24-mod_sessionRed Hat / RHEL
Fixed in:0:2.4.57-15.el7jbcsRHSA-2024:6927
Fixed in:0:2.4.57-15.el8jbcsRHSA-2024:6927
jbcs-httpd24-mod_session-debuginfoRocky
Fixed in:0:2.4.57-15.el8jbcsRHSA-2024:6927
jbcs-httpd24-mod_session-debuginfoRed Hat / RHEL
Fixed in:0:2.4.57-15.el8jbcsRHSA-2024:6927
jbcs-httpd24-mod_sslRocky
Fixed in:1:2.4.57-15.el7jbcsRHSA-2024:6927
Fixed in:1:2.4.57-15.el8jbcsRHSA-2024:6927
jbcs-httpd24-mod_sslRed Hat / RHEL
Fixed in:1:2.4.57-15.el7jbcsRHSA-2024:6927
Fixed in:1:2.4.57-15.el8jbcsRHSA-2024:6927
jbcs-httpd24-mod_ssl-debuginfoRocky
Fixed in:1:2.4.57-15.el8jbcsRHSA-2024:6927
jbcs-httpd24-mod_ssl-debuginfoRed Hat / RHEL
Fixed in:1:2.4.57-15.el8jbcsRHSA-2024:6927
mod_jkRed Hat / RHEL
Fixed in:0:1.2.50-1.el9_2.1RHSA-2024:8929
Fixed in:0:1.2.50-1.el9_4.1RHSA-2024:7457
Fixed in:0:1.2.50-1.el9_0.1RHSA-2024:8928
Fixed in:0:1.2.50-1.el9_4.1RHSA-2024:7457
Fixed in:0:1.2.50-1.el9_2.1RHSA-2024:8929
Fixed in:0:1.2.50-1.el9_4.1RHSA-2024:7457
Fixed in:0:1.2.50-1.el9_2.1RHSA-2024:8929
Fixed in:0:1.2.50-1.el9_2.1RHSA-2024:8929
Fixed in:0:1.2.50-1.el9_2.1RHSA-2024:8929
Fixed in:0:1.2.50-1.el9_0.1RHSA-2024:8928
Fixed in:0:1.2.50-1.el9_0.1RHSA-2024:8928
Fixed in:0:1.2.50-1.el9_4.1RHSA-2024:7457
Fixed in:0:1.2.50-1.el9_0.1RHSA-2024:8928
Fixed in:0:1.2.50-1.el9_4.1RHSA-2024:7457
Fixed in:0:1.2.50-1.el9_0.1RHSA-2024:8928
mod_jkRocky
Fixed in:0:1.2.50-1.el9_0.1RHSA-2024:8928
Fixed in:0:1.2.50-1.el9_4.1RHSA-2024:7457
Fixed in:0:1.2.50-1.el9_2.1RHSA-2024:8929
Fixed in:0:1.2.50-1.el9_0.1RHSA-2024:8928
Fixed in:0:1.2.50-1.el9_4.1RHSA-2024:7457
Fixed in:0:1.2.50-1.el9_2.1RHSA-2024:8929
Fixed in:0:1.2.50-1.el9_0.1RHSA-2024:8928
Fixed in:0:1.2.50-1.el9_4.1RHSA-2024:7457
Fixed in:0:1.2.50-1.el9_2.1RHSA-2024:8929
Fixed in:0:1.2.50-1.el9_0.1RHSA-2024:8928
Fixed in:0:1.2.50-1.el9_4.1RHSA-2024:7457
Fixed in:0:1.2.50-1.el9_0.1RHSA-2024:8928
Fixed in:0:1.2.50-1.el9_2.1RHSA-2024:8929
Fixed in:0:1.2.50-1.el9_4.1RHSA-2024:7457
Fixed in:0:1.2.50-1.el9_2.1RHSA-2024:8929
mod_jk-debuginfoRed Hat / RHEL
Fixed in:0:1.2.50-1.el9_2.1RHSA-2024:8929
Fixed in:0:1.2.50-1.el9_0.1RHSA-2024:8928
Fixed in:0:1.2.50-1.el9_0.1RHSA-2024:8928
Fixed in:0:1.2.50-1.el9_0.1RHSA-2024:8928
Fixed in:0:1.2.50-1.el9_0.1RHSA-2024:8928
Fixed in:0:1.2.50-1.el9_2.1RHSA-2024:8929
Fixed in:0:1.2.50-1.el9_2.1RHSA-2024:8929
Fixed in:0:1.2.50-1.el9_2.1RHSA-2024:8929
Fixed in:0:1.2.50-1.el9_4.1RHSA-2024:7457
Fixed in:0:1.2.50-1.el9_4.1RHSA-2024:7457
Fixed in:0:1.2.50-1.el9_4.1RHSA-2024:7457
Fixed in:0:1.2.50-1.el9_4.1RHSA-2024:7457
mod_jk-debuginfoRocky
Fixed in:0:1.2.50-1.el9_0.1RHSA-2024:8928
Fixed in:0:1.2.50-1.el9_0.1RHSA-2024:8928
Fixed in:0:1.2.50-1.el9_0.1RHSA-2024:8928
Fixed in:0:1.2.50-1.el9_0.1RHSA-2024:8928
Fixed in:0:1.2.50-1.el9_2.1RHSA-2024:8929
Fixed in:0:1.2.50-1.el9_2.1RHSA-2024:8929
Fixed in:0:1.2.50-1.el9_2.1RHSA-2024:8929
Fixed in:0:1.2.50-1.el9_2.1RHSA-2024:8929
Fixed in:0:1.2.50-1.el9_4.1RHSA-2024:7457
Fixed in:0:1.2.50-1.el9_4.1RHSA-2024:7457
Fixed in:0:1.2.50-1.el9_4.1RHSA-2024:7457
Fixed in:0:1.2.50-1.el9_4.1RHSA-2024:7457
mod_jk-debugsourceRocky
Fixed in:0:1.2.50-1.el9_4.1RHSA-2024:7457
Fixed in:0:1.2.50-1.el9_0.1RHSA-2024:8928
Fixed in:0:1.2.50-1.el9_2.1RHSA-2024:8929
Fixed in:0:1.2.50-1.el9_4.1RHSA-2024:7457
Fixed in:0:1.2.50-1.el9_4.1RHSA-2024:7457
Fixed in:0:1.2.50-1.el9_2.1RHSA-2024:8929
Fixed in:0:1.2.50-1.el9_0.1RHSA-2024:8928
Fixed in:0:1.2.50-1.el9_2.1RHSA-2024:8929
Fixed in:0:1.2.50-1.el9_0.1RHSA-2024:8928
Fixed in:0:1.2.50-1.el9_2.1RHSA-2024:8929
Fixed in:0:1.2.50-1.el9_0.1RHSA-2024:8928
Fixed in:0:1.2.50-1.el9_4.1RHSA-2024:7457
mod_jk-debugsourceRed Hat / RHEL
Fixed in:0:1.2.50-1.el9_2.1RHSA-2024:8929
Fixed in:0:1.2.50-1.el9_2.1RHSA-2024:8929
Fixed in:0:1.2.50-1.el9_2.1RHSA-2024:8929
Fixed in:0:1.2.50-1.el9_2.1RHSA-2024:8929
Fixed in:0:1.2.50-1.el9_0.1RHSA-2024:8928
Fixed in:0:1.2.50-1.el9_4.1RHSA-2024:7457
Fixed in:0:1.2.50-1.el9_0.1RHSA-2024:8928
Fixed in:0:1.2.50-1.el9_4.1RHSA-2024:7457
Fixed in:0:1.2.50-1.el9_0.1RHSA-2024:8928
Fixed in:0:1.2.50-1.el9_4.1RHSA-2024:7457
Fixed in:0:1.2.50-1.el9_0.1RHSA-2024:8928
Fixed in:0:1.2.50-1.el9_4.1RHSA-2024:7457
libapache-mod-jkUbuntu
Fixed in:1:1.2.41-1ubuntu0.1~esm1USN-8369-1
Fixed in:1:1.2.43-1ubuntu0.1~esm2USN-8369-1
Fixed in:1:1.2.46-1ubuntu0.1+esm1USN-8369-1
Fixed in:1:1.2.48-1ubuntu0.1+esm1USN-8369-1
Fixed in:1:1.2.49-1ubuntu0.1~esm1USN-8369-1
libapache2-mod-jkUbuntu
Fixed in:1:1.2.41-1ubuntu0.1~esm1USN-8369-1
Fixed in:1:1.2.43-1ubuntu0.1~esm2USN-8369-1
Fixed in:1:1.2.46-1ubuntu0.1+esm1USN-8369-1
Fixed in:1:1.2.48-1ubuntu0.1+esm1USN-8369-1
Fixed in:1:1.2.49-1ubuntu0.1~esm1USN-8369-1

Remediation is compiled from vendor and distribution security advisories. Always confirm against the linked source for your exact version and platform.

CVSS v3 Vector

Exploitability

Attack VectorLocal
Attack ComplexityLow
Privileges RequiredNone
User InteractionNone
ScopeUnchanged

Impact

ConfidentialityLow
IntegrityLow
AvailabilityLow

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

Exploit Intelligence

0.33%probability of exploitation in 30 days
25thpercentile

Low risk: more likely to be exploited than 25% of all known CVEs.

References

Vendor Advisory1
Third-Party Advisory2

Related Vulnerabilities

Other CWE-276 vulnerabilities, ordered by exploit likelihood. View all

CVESeverityCVSSEPSSExploitedFix
CVE-2013-0632Critical9.894%KEV-
CVE-2017-11610High8.888%-Fix
CVE-2023-29919Critical9.160%--
CVE-2019-17124Critical9.823%--
CVE-2020-12608High7.822%-Fix
CVE-2021-3437Critical9.816%-Fix
Embed a live status badge for CVE-2024-46544
CVE-2024-46544 severity badge

Markdown

[![CVE-2024-46544](https://tridentstack.com/cve/badge/CVE-2024-46544.svg)](https://tridentstack.com/cve/CVE-2024-46544)

HTML

<a href="https://tridentstack.com/cve/CVE-2024-46544"><img src="https://tridentstack.com/cve/badge/CVE-2024-46544.svg" alt="CVE-2024-46544"></a>

Find and fix vulnerabilities across your fleet

TridentStack Control continuously scans your Windows, macOS, and Linux fleet for known vulnerabilities, prioritizes them by severity and active exploitation, and patches them automatically.

Start free

This product uses NVD data but is not endorsed or certified by the NVD. EPSS scores courtesy of FIRST.org (https://www.first.org/epss). Source: CISA KEV Catalog. Data as of 2025-07-10.