Lucene search

K
veracodeVeracode Vulnerability DatabaseVERACODE:25889
HistoryJul 15, 2020 - 8:18 a.m.

Denial Of Service (DoS)

2020-07-1508:18:40
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
18
apache tomcat
denial of service
websocket frames

EPSS

0.148

Percentile

95.8%

apache tomcat is vulnerable to denial of service. An infinite loop to occurs when invalid payload lengths are parsed. An attacker is able to cause a denial of service condition in the application via malicious WebSocket frames with invalid payload lengths.

References