Security Alert (A23-05-12): Vulnerability in Apache Tomcat
23 May 2023
The Apache Software Foundation released a security update to address a vulnerability in the Apache Tomcat. A remote attacker could exploit the vulnerability by sending a specially crafted request to the affected systems.
Apache Tomcat 11.0.0-M2 to 11.0.0-M4
Apache Tomcat 10.1.5 to 10.1.7
Apache Tomcat 9.0.71 to 9.0.73
Apache Tomcat 8.5.85 to 8.5.87
A successful exploitation of the vulnerability could lead to denial of service or security restriction bypass on an affected system.
The Apache Software Foundation has released new version of the product to address the issue and they can be downloaded at the following URLs: