Tomcat 8.5.8587/9.0.7173/10.1.57/11.0.0M2M4: maxParameterCount Bypass DoS
CVE-2023-28709 Published on May 22, 2023
Apache Tomcat: Fix for CVE-2023-24998 is incomplete
The fix for CVE-2023-24998 was incomplete for Apache Tomcat 11.0.0-M2 to 11.0.0-M4, 10.1.5 to 10.1.7, 9.0.71 to 9.0.73 and 8.5.85 to 8.5.87. If non-default HTTP connector settings were used such that the maxParameterCount could be reached using query string parameters and a request was submitted that supplied exactly maxParameterCount parameters in the query string, the limit for uploaded request parts could be bypassed with the potential for a denial of service to occur.
Weakness Type
What is an off-by-five Vulnerability?
A product calculates or uses an incorrect maximum or minimum value that is 1 more, or 1 less, than the correct value.
CVE-2023-28709 has been classified to as an off-by-five vulnerability or weakness.
Products Associated with CVE-2023-28709
You can be notified by email with stack.watch whenever vulnerabilities like CVE-2023-28709 are published in these products:
Affected Versions
Apache Software Foundation Apache Tomcat:- Version 11.0.0-M2, <= 11.0.0-M4 is affected.
- Version 10.1.5, <= 10.1.7 is affected.
- Version 9.0.71, <= 9.0.73 is affected.
- Version 8.5.85, <= 8.5.87 is affected.
Exploit Probability
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.