Apache Tomcat 8.5.x < 8.5.56 Denial of Service

The version of Apache Tomcat installed on the remote host is 10.0.0-M1 to 10.0.0-M5, 9.0.0.M1 to 9.0.35 or 8.5.0 to 8.5.55. It is, therefore, affected by a denial of service via HTTP/2 requests. Note that the scanner has not attempted to exploit these issues but has instead relied only on the...

Apache Tomcat Multiple DoS Vulnerabilities (Jul 2020) - Linux

Apache Tomcat is prone to multiple denial of service vulnerabilities. SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

Apache Tomcat 8.5.0 < 8.5.56

The version of Tomcat installed on the remote host is prior to 8.5.56. It is, therefore, affected by a vulnerability as referenced in the fixedinapachetomcat8.5.56security-8 advisory. - A specially crafted sequence of HTTP/2 requests sent to Apache Tomcat 10.0.0-M1 to 10.0.0-M5, 9.0.0.M1 to 9.0.3...

Vulnerability fixed in Apache Tomcat

A vulnerability has been fixed in Apache Tomcat. A malicious party could potentially exploit the vulnerability to cause a Denial-of-Service on the Tomcat server. To do this the malicious party needs to send a specially crafted HTTP/2 request to the server. This request causes an increased CPU loa...