Description
Apache Tomcat 6.x before 6.0.44, 7.x before 7.0.55, and 8.x before 8.0.9 does not properly handle cases where an HTTP response occurs before finishing the reading of an entire request body, which allows remote attackers to cause a denial of service (thread consumption) via a series of aborted upload attempts.
Remediation
References
Related Vulnerabilities
MySQL CVE-2019-2738 Vulnerability (CVE-2019-2738)
Moodle Authorization Bypass Through User-Controlled Key Vulnerability (CVE-2024-25983)
Microsoft SQL Server Elevation of Privilege Vulnerability (CVE-2021-1636)
MySQL CVE-2013-3783 Vulnerability (CVE-2013-3783)
WordPress Plugin WordPress Calls to Action Cross-Site Scripting (2.2.7)