This content is viewable by Everyone
The Apache Software Foundation IMPORTANT security advisory to address vulnerabilities in Apache Tomcat
The Apache Software Foundation has released an IMPORTANT security advisory to address vulnerabilities in Apache Tomcat
Advanced Users: For a complete description of the security advisory go to:
- CVE-2020-11996 Apache Tomcat HTTP/2 Denial of Service: http://mail-archives.us.apache.org/mod_mbox/www-announce/202006.mbox/<fd56bc1d-1219-605b-99c7-946bf7bd8ad4%40apache.org>
- Apache Tomcat 10.0.0-M1 to 10.0.0-M5
- Apache Tomcat 9.0.0.M1 to 9.0.35
- Apache Tomcat 8.5.0 to 8.5.55
What's the Problem?
Exploitation of one of these vulnerabilities could allow an attacker to cause a denial-of-service condition.