logo
DATABASE RESOURCES PRICING ABOUT US

CVE-2020-13943

Description

If an HTTP/2 client connecting to Apache Tomcat 10.0.0-M1 to 10.0.0-M7, 9.0.0.M1 to 9.0.37 or 8.5.0 to 8.5.57 exceeded the agreed maximum number of concurrent streams for a connection (in violation of the HTTP/2 protocol), it was possible that a subsequent request made on that connection could contain HTTP headers - including HTTP/2 pseudo headers - from a previous request rather than the intended headers. This could lead to users seeing responses for unexpected resources.


Affected Software


CPE Name Name Version
apache:tomcat apache tomcat 8.5.0
apache:tomcat apache tomcat 8.5.1
apache:tomcat apache tomcat 8.5.2
apache:tomcat apache tomcat 8.5.3
apache:tomcat apache tomcat 8.5.4
apache:tomcat apache tomcat 8.5.5
apache:tomcat apache tomcat 8.5.6
apache:tomcat apache tomcat 8.5.7
apache:tomcat apache tomcat 8.5.8
apache:tomcat apache tomcat 8.5.9
apache:tomcat apache tomcat 8.5.10
apache:tomcat apache tomcat 8.5.11
apache:tomcat apache tomcat 8.5.12
apache:tomcat apache tomcat 8.5.13
apache:tomcat apache tomcat 8.5.14
apache:tomcat apache tomcat 8.5.15
apache:tomcat apache tomcat 8.5.16
apache:tomcat apache tomcat 8.5.17
apache:tomcat apache tomcat 8.5.18
apache:tomcat apache tomcat 8.5.19
apache:tomcat apache tomcat 8.5.20
apache:tomcat apache tomcat 8.5.21
apache:tomcat apache tomcat 8.5.22
apache:tomcat apache tomcat 8.5.23
apache:tomcat apache tomcat 8.5.24
apache:tomcat apache tomcat 8.5.25
apache:tomcat apache tomcat 8.5.26
apache:tomcat apache tomcat 8.5.27
apache:tomcat apache tomcat 8.5.28
apache:tomcat apache tomcat 8.5.29
apache:tomcat apache tomcat 8.5.30
apache:tomcat apache tomcat 8.5.31
apache:tomcat apache tomcat 8.5.32
apache:tomcat apache tomcat 8.5.33
apache:tomcat apache tomcat 8.5.34
apache:tomcat apache tomcat 8.5.35
apache:tomcat apache tomcat 8.5.36
apache:tomcat apache tomcat 8.5.37
apache:tomcat apache tomcat 8.5.38
apache:tomcat apache tomcat 8.5.39
apache:tomcat apache tomcat 8.5.40
apache:tomcat apache tomcat 8.5.41
apache:tomcat apache tomcat 8.5.42
apache:tomcat apache tomcat 8.5.43
apache:tomcat apache tomcat 8.5.44
apache:tomcat apache tomcat 8.5.45
apache:tomcat apache tomcat 8.5.46
apache:tomcat apache tomcat 8.5.47
apache:tomcat apache tomcat 8.5.48
apache:tomcat apache tomcat 8.5.49
apache:tomcat apache tomcat 8.5.50
apache:tomcat apache tomcat 8.5.51
apache:tomcat apache tomcat 8.5.52
apache:tomcat apache tomcat 8.5.53
apache:tomcat apache tomcat 8.5.54
apache:tomcat apache tomcat 8.5.55
apache:tomcat apache tomcat 8.5.56
apache:tomcat apache tomcat 8.5.57
apache:tomcat apache tomcat 9.0.0
apache:tomcat apache tomcat 9.0.0
apache:tomcat apache tomcat 9.0.0
apache:tomcat apache tomcat 9.0.0
apache:tomcat apache tomcat 9.0.0
apache:tomcat apache tomcat 9.0.0
apache:tomcat apache tomcat 9.0.0
apache:tomcat apache tomcat 9.0.0
apache:tomcat apache tomcat 9.0.0
apache:tomcat apache tomcat 9.0.0
apache:tomcat apache tomcat 9.0.0
apache:tomcat apache tomcat 9.0.0
apache:tomcat apache tomcat 9.0.0
apache:tomcat apache tomcat 9.0.0
apache:tomcat apache tomcat 9.0.0
apache:tomcat apache tomcat 9.0.0
apache:tomcat apache tomcat 9.0.0
apache:tomcat apache tomcat 9.0.0
apache:tomcat apache tomcat 9.0.0
apache:tomcat apache tomcat 9.0.0
apache:tomcat apache tomcat 9.0.0
apache:tomcat apache tomcat 9.0.0
apache:tomcat apache tomcat 9.0.0
apache:tomcat apache tomcat 9.0.1
apache:tomcat apache tomcat 9.0.2
apache:tomcat apache tomcat 9.0.3
apache:tomcat apache tomcat 9.0.4
apache:tomcat apache tomcat 9.0.5
apache:tomcat apache tomcat 9.0.6
apache:tomcat apache tomcat 9.0.7
apache:tomcat apache tomcat 9.0.8
apache:tomcat apache tomcat 9.0.9
apache:tomcat apache tomcat 9.0.10
apache:tomcat apache tomcat 9.0.11
apache:tomcat apache tomcat 9.0.12
apache:tomcat apache tomcat 9.0.13
apache:tomcat apache tomcat 9.0.14
apache:tomcat apache tomcat 9.0.15
apache:tomcat apache tomcat 9.0.16
apache:tomcat apache tomcat 9.0.17
apache:tomcat apache tomcat 9.0.18
apache:tomcat apache tomcat 9.0.19
apache:tomcat apache tomcat 9.0.20
apache:tomcat apache tomcat 9.0.21
apache:tomcat apache tomcat 9.0.22
apache:tomcat apache tomcat 9.0.23
apache:tomcat apache tomcat 9.0.24
apache:tomcat apache tomcat 9.0.25
apache:tomcat apache tomcat 9.0.26
apache:tomcat apache tomcat 9.0.27
apache:tomcat apache tomcat 9.0.28
apache:tomcat apache tomcat 9.0.29
apache:tomcat apache tomcat 9.0.30
apache:tomcat apache tomcat 9.0.31
apache:tomcat apache tomcat 9.0.32
apache:tomcat apache tomcat 9.0.33
apache:tomcat apache tomcat 9.0.34
apache:tomcat apache tomcat 9.0.35
apache:tomcat apache tomcat 9.0.36
apache:tomcat apache tomcat 9.0.37
apache:tomcat apache tomcat 10.0.0
apache:tomcat apache tomcat 10.0.0
apache:tomcat apache tomcat 10.0.0
apache:tomcat apache tomcat 10.0.0
apache:tomcat apache tomcat 10.0.0
apache:tomcat apache tomcat 10.0.0
apache:tomcat apache tomcat 10.0.0
debian:debian_linux debian debian linux 9.0

Related