Apache Tomcat 10.0.0-M1 to 10.0.0-M6 Loop with Unreachable Exit Condition (‘Infinite Loop’) Vulnerability

Summary

Apache Tomcat 10.0.0-M1 to 10.0.0-M6 suffers from loop with unreachable exit condition (‘Infinite Loop’) vulnerability

Credit:

The information has been provided by Mark Thomas

The original article can be found at:https://lists.apache.org/thread.html/rd48c72bd3255bda87564d4da3791517c074d94f8a701f93b85752651%40%3Cannounce.tomcat.apache.org%3E


Details

The payload length in a WebSocket frame was not correctly validated in Apache Tomcat 10.0.0-M1 to 10.0.0-M6, 9.0.0.M1 to 9.0.36, 8.5.0 to 8.5.56 and 7.0.27 to 7.0.104. Invalid payload lengths could trigger an infinite loop. Multiple requests with invalid payload lengths could lead to a denial of service.

 

Vulnerable Systems:

Apache Tomcat 10.0.0-M1 to 10.0.0-M6

Apache Tomcat 9.0.0.M1 to 9.0.36

Apache Tomcat 8.5.0 to 8.5.56

Apache Tomcat 7.0.27 to 7.0.104

 

CVE Information:

CVE-2020-13935

 

Disclosure Timeline:
Published Date:7/14/2020

Categories: FeaturedNews