Security Alert (A23-08-17): Vulnerability in Apache Tomcat
28 August 2023
The Apache Software Foundation released a security update to address a vulnerability in the Apache Tomcat. A remote attacker could exploit the vulnerability by sending a specially crafted request to the affected systems.
Apache Tomcat 11.0.0-M1 to 11.0.0-M10
Apache Tomcat 10.1.0-M1 to 10.1.12
Apache Tomcat 9.0.0-M1 to 9.0.79
Apache Tomcat 8.5.0 to 8.5.92
A successful exploitation of the vulnerability could lead to spoofing on an affected system.
The Apache Software Foundation has released new versions of the product to address the issue and they can be downloaded at the following URLs: