CVE-2024-24549 Apache Tomcat - Denial of Service

https://lists.apache.org/thread/4c50rmomhbbsdgfjsgwlb51xdwfjdcvg

Apache Tomcat输入验证错误漏洞，HTTP/2请求的输入验证不正确，会导致拒绝服务，可以借助该漏洞攻击服务器。

https://mvnrepository.com/artifact/org.apache.tomcat.embed/tomcat-embed-core

**
<dependency>
<groupId>org.apache.tomcat.embed</groupId>
<artifactId>tomcat-embed-core</artifactId>
<version>8.5.99</version>
</dependency>
<dependency>
<groupId>org.apache.tomcat.embed</groupId>
<artifactId>tomcat-embed-el</artifactId>
<version>8.5.99</version>
</dependency>
<dependency>
<groupId>org.apache.tomcat.embed</groupId>
<artifactId>tomcat-embed-websocket</artifactId>
<version>8.5.99</version>
</dependency>
<dependency>
<groupId>org.apache.tomcat</groupId>
<artifactId>tomcat-annotations-api</artifactId>
<version>8.5.99</version>
</dependency>**

标签： apache tomcat java

本文转载自: https://blog.csdn.net/spencer_tseng/article/details/140473914
版权归原作者 spencer_tseng 所有，如有侵权，请联系我们删除。

CVE-2024-24549 Apache Tomcat - Denial of Service

发表评论

“CVE-2024-24549 Apache Tomcat - Denial of Service”的评论:

关于作者

overfit同步小助手

相关阅读

文章导航