CVE-2023-24998 Vulnerability Alert Mitigation For erwin MART
说明
- Apache Commons FileUpload before 1.5 does not limit the number of request parts to be processed resulting in the possibility of an attacker triggering a DoS with a malicious upload or series of uploads.
https://nvd.nist.gov/vuln/detail/CVE-2023-24998
原因
Affected erwin Mart version erwinMart 2021R1 erwinMart 12.0 erwinMart 12.1
解决办法
Fixed in Apache Tomcat 9.0.71 and Higher Please download our patch for upgrading to Apache Tomcat 9.0.73