Denial of Service Vulnerability in Apache Tomcat

Denial of Service Vulnerability in Apache Tomcat

CVE-2014-0230 · HIGH Severity

AV:N/AC:L/AU:N/C:N/I:N/A:C

Apache Tomcat 6.x before 6.0.44, 7.x before 7.0.55, and 8.x before 8.0.9 does not properly handle cases where an HTTP response occurs before finishing the reading of an entire request body, which allows remote attackers to cause a denial of service (thread consumption) via a series of aborted upload attempts.

Learn more about our Cis Benchmark Audit For Apache Tomcat.