• Report Links
    We do not store any files or images on our server. XenPaste only index and link to content provided by other non-affiliated sites. If your copyrighted material has been posted on XenPaste or if hyperlinks to your copyrighted material are returned through our search engine and you want this material removed, you must contact the owners of such sites where the files and images are stored.

CVE-2021-42340 | Apache Tomcat Memory Leaks (Denial Of Service)


🦊 DNSProxy Layer 7 DDOS Protection 🥷 / DMCA Ignored 🫡 / Advanced Browser Checks 🕸

King

King

Administrator
Joined
Jul 12, 2021
Messages
25,005
Reaction score
5
Points
38
CVE-2021-42340 | Apache Tomcat Memory Leaks (Denial Of Service)

Vulnerability Details : CVE-2021-42340

The fix for bug 63362 present in Apache Tomcat 10.1.0-M1 to 10.1.0-M5, 10.0.0-M1 to 10.0.11, 9.0.40 to 9.0.53 and 8.5.60 to 8.5.71 introduced a memory leak. The object introduced to collect metrics for HTTP upgrade connections was not released for WebSocket connections once the connection was closed. This created a memory leak that, over time, could lead to a denial of service via an OutOfMemoryError.
Publish Date : 2021-10-14 Last Update Date : 2021-10-21

Collapse All Expand All Select Select&Copy Scroll To Comments External Links
Search Twitter Search YouTube Search Google

- CVSS Scores & Vulnerability Types​

CVSS Score5.0
Confidentiality ImpactNone (There is no impact to the confidentiality of the system.)
Integrity ImpactNone (There is no impact to the integrity of the system)
Availability ImpactPartial (There is reduced performance or interruptions in resource availability.)
Access ComplexityLow (Specialized access conditions or extenuating circumstances do not exist. Very...

Read more

Continue reading...
 
Upvote 0 Downvote
You must log in or register to reply here.
Top