Severity
Medium
Analysis Summary
CVE-2023-42794 CVSS:7.5
Apache Tomcat is vulnerable to a denial of service, caused by accumulation of temporary files on Windows when a web application opened a stream for an uploaded file but failed to close the stream. A remote attacker could exploit this vulnerability to cause a denial of service due to the disk being full.
CVE-2023-42795 CVSS:7.5
Apache Tomcat could allow a remote attacker to obtain sensitive information, caused by an incomplete Cleanup vulnerability when recycling various internal objects. By skipping some parts of the recycling process, an attacker could exploit this vulnerability to obtain sensitive information leaking from the current request/response to the next.
CVE-2023-45648 CVSS:5.3
Apache Tomcat is vulnerable to HTTP request smuggling, caused by improper parsing of HTTP trailer headers. By sending a specially crafted invalid trailer header, an attacker could exploit this vulnerability to poison the web cache, bypass web application firewall protection, and conduct XSS attacks.
Impact
- Denial of Service
- Information Disclosure
- Gain Access
Indicators Of Compromise
CVE
- CVE-2023-42794
- CVE-2023-42795
- CVE-2023-45648
Affected Vendors
Apache
Affected Products
- Apache Tomcat 8.5.85
- Apache Tomcat 9.0.71
- Apache Tomcat 8.5.0
- Apache Tomcat 9.0.0.M1
- Apache Tomcat 10.1.0-M1
- Apache Tomcat 11.0.0-M1
Remediation
Upgrade to the latest version of Apache Tomcat, available from the Apache Website.