CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
AI Score
Confidence
High
org.apache.tomcat: tomcat-coyote is vulnerable to Denial of Service (DoS). The vulnerability is due to improper handling of excessive HTTP headers in HTTP/2 streams, which leads to the miscounting of active streams resulting in an infinite connection timeout. This allows connections to remain open longer than intended, allowing an attacker to cause Denial of Service (DoS) due to resource exhaustion or the open connections reaching the maxConnections
limit.
github.com/apache/tomcat/commit/2344a4c0d03e307ba6b8ab6dc8b894cc8bac63f2
github.com/apache/tomcat/commit/2afae300c9ac9c0e516e2e9de580847d925365c3
github.com/apache/tomcat/commit/9fec9a82887853402833a80b584e3762c7423f5f
hackerone.com/reports/2586226
lists.apache.org/thread/4kqf0bc9gxymjc2x7v3p7dvplnl77y8l