Vulnerabilities > CVE-2023-28709 - Off-by-one Error vulnerability in multiple products

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

HIGH

network

low complexity

NVD

Published: 2023-05-22

Updated: 2024-02-16

Summary

The fix for CVE-2023-24998 was incomplete for Apache Tomcat 11.0.0-M2 to 11.0.0-M4, 10.1.5 to 10.1.7, 9.0.71 to 9.0.73 and 8.5.85 to 8.5.87. If non-default HTTP connector settings were used such that the maxParameterCount could be reached using query string parameters and a request was submitted that supplied exactly maxParameterCount parameters in the query string, the limit for uploaded request parts could be bypassed with the potential for a denial of service to occur.

Vulnerable Configurations

Part	Description	Count
Application	Apache Apache Tomcat 11.0.0 Apache Tomcat 10.1.5 Apache Tomcat 10.1.6 Apache Tomcat 10.1.7 Apache Tomcat 9.0.71 Apache Tomcat 9.0.72 Apache Tomcat 9.0.73 Apache Tomcat 8.5.85 Apache Tomcat 8.5.86 Apache Tomcat 8.5.87	12
Application	Netapp Netapp 7 Mode Transition Tool -	1
OS	Debian Debian Debian Linux 12.0	1

Common Weakness Enumeration (CWE)

CWE-193 - Off-by-one Error

Summary

Vulnerable Configurations

Common Weakness Enumeration (CWE)

References