#VU81803 Exposed dangerous method or function in Apache Tomcat


Published: 2023-10-10

Vulnerability identifier: #VU81803

Vulnerability risk: Medium

CVSSv3.1: 6.5 [CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C]

CVE-ID: CVE-2023-42794

CWE-ID: CWE-749

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
Apache Tomcat
Server applications / Web servers

Vendor: Apache Foundation

Description

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to Tomcat's internal fork of a Commons FileUpload included an unreleased, in progress refactoring that exposed a potential denial of service on Windows. A remote attacker can perform a denial of service attack by uploading multiple files to the server that are not removed.

Mitigation
Install updates from vendor's website.

Vulnerable software versions

Apache Tomcat: 9.0.70 - 9.0.80, 8.5.85 - 8.5.93

External links
http://lists.apache.org/thread/vvbr2ms7lockj1hlhz5q3wmxb2mwcw82
http://github.com/apache/tomcat/commit/c99ffc30e95ddc4daede564d08cb5ea2b9a9da65
http://github.com/apache/tomcat/commit/43b882b8a577684498ab9b8851aa0427216784f7

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.


Latest bulletins with this vulnerability


Multiple vulnerabilities in IBM Sterling B2B Integrator
SUSE update for tomcat
Multiple vulnerabilities in IBM Data Risk Manager
Multiple vulnerabilities in IBM Security Guardium
Multiple vulnerabilities in Communications Unified Assurance
IBM UrbanCode Release update for Apache Tomcat
IBM UrbanCode Build update for Apache Tomcat
IBM Integration Bus update for Apache Tomcat
App Connect Professional update for Apache Tomcat
Multiple vulnerabilities in IBM UrbanCode Deploy (UCD)