Improper Handling of Exceptional Conditions, Uncontrolled Resource Consumption Vulnerability Affects Apache Tomcat

Summary

The vulnerability CVE-2024-34750 affects Apache Tomcat, an open-source server, and can be exploited to overload the server's computing resources, leading to a Denial of Service (DoS) attack. The vulnerability affects various versions of Apache Tomcat, and it was discovered directly by the Tomcat security team. The issue stems from an improper handling of HTTP/2 streams, resulting in an incorrect infinite timeout, which allows connections to remain open when they should have been closed. The impact of this vulnerability can be severe, causing service slowdowns or outages. It is recommended to update Tomcat to the patched versions to mitigate the risk. There is a high urgency in addressing this vulnerability due to its potential impact on service availability.

News Articles

ÇözümPark

CVE-2024-34750

Apache Tomcat'ta Kritik DoS Açığı: Binlerce Sunucu Tehlikede (CVE-2024-34750) - ÇözümPark

Apache Tomcat'ta Kritik DoS Açığı: Binlerce Sunucu Tehlikede (CVE-2024-34750)

5 months ago

Red Hot Cyber

CVE-2024-34750

Critical Apache Tomcat Vulnerability CVE-2024-34750 Could Bring Your Server to a Halt!

Discover the details of the critical CVE-2024-34750 vulnerability in Apache Tomcat. Learn how this flaw can lead to server resource overload and Denial of Service (DoS) attacks. Stay informed and protect your systems.

5 months ago

Red Hot Cyber

CVE-2024-34750

% Apache Tomcat: Un Rischio di Denial of Service minaccia Migliaia di Server!

Vulnerabilità DoS critica in Apache Tomcat: aggiorna subito!La vulnerabilità CVE-2024-34750 in Apache Tomcat permette attacchi DoS che possono bloccare il tuo server. Aggiorna subito a 11.0.0-M21, 10.1.25 o 9.0.90 per proteggerti!

5 months ago