Apache Tomcat is a popular web server software used by many organizations. This vulnerability occurs when the software fails to properly clean up temporary files after an error during multipart upload processing, potentially leading to denial-of-service (DoS) attacks.
Apache Tomcat versions 11.0.0-M1 through 11.0.11, 10.1.0-M1 through 10.1.46, and 9.0.0.M1 through 9.0.109 are affected. To check if you're impacted, run the command find / -name "tomcat*.jar" 2>/dev/null or use your package manager to search for Tomcat packages.
Note: This vulnerability is not related to Apache HTTP Server (Nginx), which has its own vulnerabilities.
Upgrade to Apache Tomcat version 11.0.12 or later, 10.1.47 or later, or 9.0.110 or later.
- Immediate mitigations:
- Restrict network access to your Tomcat instance (firewall it from the public internet)
- Audit Tomcat logs for suspicious activity patterns
- Monitor for unauthorized access attempts