Vulnerabilites related to Apache Software Foundation - Apache Commons FileUpload
cve-2023-24998
Vulnerability from cvelistv5
Published
2023-02-20 15:57
Modified
2025-02-13 16:44
Severity ?
EPSS score ?
Summary
Apache Commons FileUpload before 1.5 does not limit the number of request parts to be processed resulting in the possibility of an attacker triggering a DoS with a malicious upload or series of uploads.
Note that, like all of the file upload limits, the
new configuration option (FileUploadBase#setFileCountMax) is not
enabled by default and must be explicitly configured.
References
Impacted products
| Vendor | Product | Version | |||||||
|---|---|---|---|---|---|---|---|---|---|
| ▼ | Apache Software Foundation | Apache Commons FileUpload |
Version: 0 ≤ |
||||||
|
|||||||||
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-02T11:11:43.763Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { url: "https://security.netapp.com/advisory/ntap-20230302-0013/", }, { tags: [ "vendor-advisory", "x_transferred", ], url: "https://lists.apache.org/thread/4xl4l09mhwg4vgsk7dxqogcjrobrrdoy", }, { tags: [ "x_transferred", ], url: "http://www.openwall.com/lists/oss-security/2023/05/22/1", }, { tags: [ "x_transferred", ], url: "https://security.gentoo.org/glsa/202305-37", }, { tags: [ "x_transferred", ], url: "https://www.debian.org/security/2023/dsa-5522", }, { tags: [ "x_transferred", ], url: "https://lists.debian.org/debian-lts-announce/2023/10/msg00020.html", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { defaultStatus: "unaffected", product: "Apache Commons FileUpload", vendor: "Apache Software Foundation", versions: [ { lessThan: "1.5", status: "affected", version: "0", versionType: "semver", }, ], }, { defaultStatus: "unaffected", product: "Apache Tomcat", vendor: "Apache Software Foundation", versions: [ { status: "affected", version: "11.0.0-M1", }, { lessThanOrEqual: "10.1.4", status: "affected", version: "10.0.0-M1", versionType: "semver", }, { lessThanOrEqual: "9.0.70", status: "affected", version: "9.0.0-M1", versionType: "semver", }, { lessThanOrEqual: "8.5.84", status: "affected", version: "8.5.0", versionType: "semver", }, ], }, ], credits: [ { lang: "en", type: "finder", value: "Jakob Ackermann", }, ], descriptions: [ { lang: "en", supportingMedia: [ { base64: false, type: "text/html", value: "<div>Apache Commons FileUpload before 1.5 does not limit the number of request parts to be processed resulting in the possibility of an attacker triggering a DoS with a malicious upload or series of uploads.</div><div><br></div><div>Note that, like all of the file upload limits, the\n new configuration option (FileUploadBase#setFileCountMax) is not\n enabled by default and must be explicitly configured.<br></div>", }, ], value: "Apache Commons FileUpload before 1.5 does not limit the number of request parts to be processed resulting in the possibility of an attacker triggering a DoS with a malicious upload or series of uploads.\n\n\n\n\nNote that, like all of the file upload limits, the\n new configuration option (FileUploadBase#setFileCountMax) is not\n enabled by default and must be explicitly configured.", }, ], metrics: [ { other: { content: { text: "important", }, type: "Textual description of severity", }, }, ], problemTypes: [ { descriptions: [ { cweId: "CWE-770", description: "CWE-770 Allocation of Resources Without Limits or Throttling", lang: "en", type: "CWE", }, ], }, ], providerMetadata: { dateUpdated: "2023-10-13T15:06:16.472Z", orgId: "f0158376-9dc2-43b6-827c-5f631a4d8d09", shortName: "apache", }, references: [ { tags: [ "vendor-advisory", ], url: "https://lists.apache.org/thread/4xl4l09mhwg4vgsk7dxqogcjrobrrdoy", }, { url: "http://www.openwall.com/lists/oss-security/2023/05/22/1", }, { url: "https://security.gentoo.org/glsa/202305-37", }, { url: "https://www.debian.org/security/2023/dsa-5522", }, { url: "https://lists.debian.org/debian-lts-announce/2023/10/msg00020.html", }, ], source: { discovery: "EXTERNAL", }, title: "Apache Commons FileUpload, Apache Tomcat: FileUpload DoS with excessive parts", x_generator: { engine: "Vulnogram 0.1.0-dev", }, }, }, cveMetadata: { assignerOrgId: "f0158376-9dc2-43b6-827c-5f631a4d8d09", assignerShortName: "apache", cveId: "CVE-2023-24998", datePublished: "2023-02-20T15:57:07.372Z", dateReserved: "2023-02-01T10:32:05.492Z", dateUpdated: "2025-02-13T16:44:27.490Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }