WHAT HAPPENED?

 The Apache Software Foundation has released a Moderate security advisory to address vulnerabilities in Apache Tomcat.

Advanced Users: For a complete description of the security advisory go to:

• CVE-2020-17527 Apache Tomcat HTTP/2 Request header mix-up

AFFECTED SYSTEMS:

• Apache Tomcat 10.0.0-M1 to 10.0.0-M9
• Apache Tomcat 9.0.0.M5 to 9.0.39
• Apache Tomcat 8.5.1 to 8.5.59

WHAT’S THE PROBLEM?

An attacker could exploit this vulnerability to cause a denial-of-service condition.  

RELATED LINKS

• IT Security