Vulnerability Details : CVE-2023-42794
Incomplete Cleanup vulnerability in Apache Tomcat.
The internal fork of Commons FileUpload packaged with Apache Tomcat 9.0.70 through 9.0.80 and 8.5.85 through 8.5.93 included an unreleased,
in progress refactoring that exposed a potential denial of service on
Windows if a web application opened a stream for an uploaded file but
failed to close the stream. The file would never be deleted from disk
creating the possibility of an eventual denial of service due to the
disk being full.
Users are recommended to upgrade to version 9.0.81 onwards or 8.5.94 onwards, which fixes the issue.
Vulnerability category: Denial of service
Products affected by CVE-2023-42794
- cpe:2.3:a:apache:tomcat:*:*:*:*:*:*:*:*
- cpe:2.3:a:apache:tomcat:*:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2023-42794
0.06%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 26 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2023-42794
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
5.9
|
MEDIUM | CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H |
2.2
|
3.6
|
NIST | |
7.5
|
HIGH | CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H |
3.9
|
3.6
|
NIST |
CWE ids for CVE-2023-42794
-
The product does not properly "clean up" and remove temporary or supporting resources after they have been used.Assigned by: security@apache.org (Primary)
References for CVE-2023-42794
-
https://lists.apache.org/thread/vvbr2ms7lockj1hlhz5q3wmxb2mwcw82
[SECURITY] CVE-2023-42794 Apache Tomcat - denial of service-Apache Mail ArchivesMailing List;Vendor Advisory
-
http://www.openwall.com/lists/oss-security/2023/10/10/8
oss-security - CVE-2023-42794: Apache Tomcat: FileUpload: DoS due to accumulation of temporary files on WindowsMailing List;Third Party Advisory
Jump to