Re-sending with corrected credit
CVE-2023-24998 Apache Tomcat - FileUpload DoS with excessive parts
Severity: Important
Vendor: The Apache Software Foundation
Versions Affected:
Apache Tomcat 11.0.0-M1
Apache Tomcat 10.1.0-M1 to 10.1.4
Apache Tomcat 9.0.0-M1 to 9.0.70
Apache Tomcat 8.5.0 to
CVE-2023-24998 Apache Tomcat - FileUpload DoS with excessive parts
Severity: Important
Vendor: The Apache Software Foundation
Versions Affected:
Apache Tomcat 11.0.0-M1
Apache Tomcat 10.1.0-M1 to 10.1.4
Apache Tomcat 9.0.0-M1 to 9.0.70
Apache Tomcat 8.5.0 to 8.5.84
Description:
Apache Tomcat
CVE-2023-24998 Apache Commons FileUpload - DoS with excessive parts
Severity: Important
Vendor: The Apache Software Foundation
Versions Affected:
Apache Commons FileUpload 1.0-beta-1 to 1.4
Description:
Apache Commons FileUpload before 1.5 does not limit the number of
request parts to be
The Apache Syncope team is pleased to announce the release of Syncope 3.0.2
Apache Syncope is an Open Source system for managing digital identities in
enterprise environments, implemented in Java EE technology .
Syncope 3.0 Maggiore is now a full-fledged IAM system covering provisioning,
Description:
An LDAP Injection vulnerability exists in the LdapIdentityBackend of
Apache Kerby before 2.0.3.
Credit:
4ra1n of Chaitin Tech (finder)
References:
https://directory.apache.org/
https://www.cve.org/CVERecord?id=CVE-2023-25613
The Apache BookKeeper team is proud to announce Apache BookKeeper
version 4.14.7.
Apache BookKeeper is a scalable, fault-tolerant, and low-latency
storage service optimized for real-time workloads. It has been used
for a fundamental service to build reliable services. It is also the
log segment