Miggo Logo

CVE-2011-0534: Apache Tomcat does not enforce the maxHttpHeaderSize limit

7.5

CVSS Score
3.1

Basic Information

EPSS Score
0.94657%
CWE
-
Published
5/14/2022
Updated
2/21/2024
KEV Status
No
Technology
TechnologyJava

Technical Details

CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Package NameEcosystemVulnerable VersionsFirst Patched Version
org.apache.tomcat:tomcatmaven>= 6.0.0, <= 6.0.306.0.32
org.apache.tomcat:tomcatmaven>= 7.0.0, <= 7.0.67.0.8

Vulnerability Intelligence
Miggo AIMiggo AI

Miggo AIRoot Cause Analysis:
In progress

WAF Protection Rules

WAF Rule

*p**** Tom**t *.*.* t*rou** *.*.* *n* *.*.* t*rou** *.*.** *o*s not *n*or** t** m*x*ttp*****rSiz* limit *or r*qu*sts involvin* t** NIO *TTP *onn**tor, w*i** *llows r*mot* *tt**k*rs to **us* * **ni*l o* s*rvi** (OutO*M*mory*rror) vi* * *r**t** r*qu*st

Reasoning

No *n*lysis *v*il**l*