CVE-2024-24549 | Apache Tomcat up to 8.5.98/9.0.85/10.1.18/11.0.0-M16 HTTP/2 Request denial of service

Posted by Angelo Barbosa | Mar 13, 2024 | CVE

A vulnerability was found in Apache Tomcat up to 8.5.98/9.0.85/10.1.18/11.0.0-M16. It has been classified as problematic. Affected is an unknown function of the component HTTP2 Request Handler. The manipulation leads to denial of service.

This vulnerability is traded as CVE-2024-24549. It is possible to launch the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-24549 | Apache Tomcat up to 8.5.98/9.0.85/10.1.18/11.0.0-M16 HTTP/2 Request denial of service

Related Posts

CVE-2024-22428 | Dell iDRAC Service Module up to 5.3.0.0 default permission (dsa-2024-018)

CVE-2023-51551 | Foxit PDF Reader AcroForm Signature use after free (ZDI-23-1873)

CVE-2023-50985 | Tenda i29 1.0.0.5 lanCfgSet lanGw buffer overflow

CVE-2024-4279 | Tutor LMS Plugin up to 2.7.0 on WordPress Course resource injection