CVE-2023-42795: Apache Tomcat: Failure during request clean-up leads to sensitive data leaking to subsequent requests

CVE-2023-42795: Apache Tomcat: Failure during request clean-up leads to sensitive data leaking to subsequent requests

Open Source Security 

Posted by Mark Thomas on Oct 10

Severity: important

Affected versions:

– Apache Tomcat 11.0.0-M1 through 11.0.0-M11
– Apache Tomcat 10.1.0-M1 through 10.1.13
– Apache Tomcat 9.0.0-M1 through 9.0.80
– Apache Tomcat 8.5.0 through 8.5.93

Description:

Incomplete Cleanup vulnerability in Apache Tomcat.When recycling various
internal objects in Apache Tomcat from 11.0.0-M1 through 11.0.0-M11,
from 10.1.0-M1 through 10.1.13, from 9.0.0-M1 through 9.0.80 and from
8.5.0 through…
 Read More 

Schreibe einen Kommentar

Deine E-Mail-Adresse wird nicht veröffentlicht. Erforderliche Felder sind mit * markiert