virus logo FortiClient Vulnerability

Apache Tomcat CVE-2020-13934 Denial of Service Vulnerability

description-logoDescription

An h2c direct connection to Apache Tomcat 10.0.0-M1 to 10.0.0-M6, 9.0.0.M5 to 9.0.36 and 8.5.1 to 8.5.56 did not release the HTTP/1.1 processor after the upgrade to HTTP/2. If a sufficient number of such requests were made, an OutOfMemoryException could occur leading to a denial of service.

affected-products-logoAffected Applications

Apache Tomcat

CVE References

CVE-2020-13934

Other References

http://tomcat.apache.org/security.html
ID 70314
Created Jan 12, 2022
Description
Updated		 Dec 14, 2023
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon lightgray-background-circle-icon
Coverage FortiClient
OS Windows
Vendor Apache
Patch manual
Application Apache Tomcat