Vulnerability Details : CVE-2023-28709
The fix for CVE-2023-24998 was incomplete for Apache Tomcat 11.0.0-M2 to 11.0.0-M4, 10.1.5 to 10.1.7, 9.0.71 to 9.0.73 and 8.5.85 to 8.5.87. If non-default HTTP connector settings were used such that the maxParameterCount could be reached using query string parameters and a request was submitted that supplied exactly maxParameterCount parameters in the query string, the limit for uploaded request parts could be bypassed with the potential for a denial of service to occur.
Vulnerability category: Denial of service
Products affected by CVE-2023-28709
- cpe:2.3:o:debian:debian_linux:12.0:*:*:*:*:*:*:*
- cpe:2.3:a:apache:tomcat:*:*:*:*:*:*:*:*
- cpe:2.3:a:apache:tomcat:*:*:*:*:*:*:*:*
- cpe:2.3:a:apache:tomcat:*:*:*:*:*:*:*:*
- cpe:2.3:a:apache:tomcat:11.0.0:milestone2:*:*:*:*:*:*
- cpe:2.3:a:apache:tomcat:11.0.0:milestone4:*:*:*:*:*:*
- cpe:2.3:a:apache:tomcat:11.0.0:milestone3:*:*:*:*:*:*
- cpe:2.3:a:netapp:7-mode_transition_tool:-:*:*:*:*:*:*:*
Threat overview for CVE-2023-28709
Top countries where our scanners detected CVE-2023-28709
Top open port discovered on systems with this issue
80
IPs affected by CVE-2023-28709 24,958
Threat actors abusing to this issue?
Yes
Find out if you* are
affected by CVE-2023-28709!
*Directly or indirectly through your vendors, service providers and 3rd parties.
Powered by
attack surface intelligence
from SecurityScorecard.
Exploit prediction scoring system (EPSS) score for CVE-2023-28709
0.67%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 80 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2023-28709
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
7.5
|
HIGH | CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H |
3.9
|
3.6
|
NIST | |
7.5
|
HIGH | AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H |
N/A
|
N/A
|
Oracle:CPUOct2023 |
CWE ids for CVE-2023-28709
-
A product calculates or uses an incorrect maximum or minimum value that is 1 more, or 1 less, than the correct value.Assigned by: security@apache.org (Primary)
References for CVE-2023-28709
-
https://www.debian.org/security/2023/dsa-5521
Debian -- Security Information -- DSA-5521-1 tomcat10Third Party Advisory
-
https://lists.apache.org/thread/7wvxonzwb7k9hx9jt3q33cmy7j97jo3j
[SECURITY] CVE-2023-28709 Apache Tomcat - Fix for CVE-2023-24998 was incomplete-Apache Mail ArchivesMailing List;Vendor Advisory
-
https://security.netapp.com/advisory/ntap-20230616-0004/
CVE-2023-28709 Apache Tomcat Vulnerability in NetApp Products | NetApp Product SecurityThird Party Advisory
-
https://security.gentoo.org/glsa/202305-37
Apache Tomcat: Multiple Vulnerabilities (GLSA 202305-37) — Gentoo securityThird Party Advisory
-
http://www.openwall.com/lists/oss-security/2023/05/22/1
oss-security - CVE-2023-28709 Apache Tomcat - Fix for CVE-2023-24998 was incompleteMailing List;Third Party Advisory
Jump to