- Description
- Incorrect object re-cycling and re-use vulnerability in Apache Tomcat. Incorrect recycling of the request and response used by HTTP/2 requests could lead to request and/or response mix-up between users. This issue affects Apache Tomcat: from 11.0.0-M23 through 11.0.0-M26, from 10.1.27 through 10.1.30, from 9.0.92 through 9.0.95. Users are recommended to upgrade to version 11.0.0, 10.1.31 or 9.0.96, which fixes the issue.
- Source
- security@apache.org
- NVD status
- Awaiting Analysis
CVSS 3.1
- Type
- Secondary
- Base score
- 6.5
- Impact score
- 2.5
- Exploitability score
- 3.9
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
- Severity
- MEDIUM
- 134c704f-9b21-4f2e-91b3-4a467353bcc0
- CWE-326
- Hype score
- Not currently trending
https://t.co/JWLyYGDexs CVE-2024-52317 - Apache Tomcat HTTP/2 Data Leakage Vulnerability #github #exploit
@HackingTeam777
10 Dec 2024
57 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2024-52317 - Apache Tomcat HTTP/2 Data Leakage Vulnerability https://t.co/xtaVDBJdrU
@johntroony
23 Nov 2024
48 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🔒 CVE-2024-52317 - Apache Tomcat HTTP/2 Data Leakage Vulnerability 🔒 Improper HTTP/2 resource recycling in Apache Tomcat can cause sensitive data leaks between users. https://t.co/7YTpdgW0an #Vulnerability #ApacheTomcat
@vaexdanny
21 Nov 2024
20 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🚨🚨Trio of Apache Tomcat Flaws Disclosed CVE-2024-52316: Authentication Bypass When Using Jakarta Authentication API CVE-2024-52317: Request/Response Mix-Up With HTTP/2 CVE-2024-52318: Incorrect JSP Tag Recycling Leads To XSS ZoomEye Dork👉app="Apache Tomcat" 892k+ results are…
@zoomeye_team
19 Nov 2024
8143 Impressions
45 Retweets
130 Likes
56 Bookmarks
0 Replies
1 Quote
CVE-2024-52317 Incorrect object re-cycling and re-use vulnerability in Apache Tomcat. Incorrect recycling of the request and response used by HTTP/2 requests could lead to request … https://t.co/GPWk43GvJn
@CVEnew
18 Nov 2024
540 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes