阿里云漏洞库

中危 Apache Tomcat：FileUpload：由于 Windows 上临时文件累积而导致 DoS (CVE-2023-42794)

CVE编号

CVE-2023-42794

利用情况

暂无

补丁情况

官方补丁

披露时间

2023-10-11

漏洞描述

Incomplete Cleanup vulnerability in Apache Tomcat.

The internal fork of Commons FileUpload packaged with Apache Tomcat 9.0.70 through 9.0.80 and 8.5.85 through 8.5.93 included an unreleased,

in progress refactoring that exposed a potential denial of service on

Windows if a web application opened a stream for an uploaded file but

failed to close the stream. The file would never be deleted from disk

creating the possibility of an eventual denial of service due to the

disk being full.

Users are recommended to upgrade to version 9.0.81 onwards or 8.5.94 onwards, which fixes the issue.

解决建议

建议您更新当前系统或软件至最新版，完成漏洞的修复。

参考链接
http://www.openwall.com/lists/oss-security/2023/10/10/8
https://lists.apache.org/thread/vvbr2ms7lockj1hlhz5q3wmxb2mwcw82

受影响软件情况

1
#	类型	厂商	产品	版本	影响面
	运行在以下环境
	应用	apache	tomcat	*	From (including) 8.5.85	Up to (excluding) 8.5.94
	运行在以下环境
	应用	apache	tomcat	*	From (including) 9.0.70	Up to (excluding) 9.0.81
	运行在以下环境
	系统	alma_linux_8	tomcat	*		Up to (excluding) 9.0.62-27.el8_9.2
	运行在以下环境
	系统	alma_linux_9	tomcat	*		Up to (excluding) 9.0.62-37.el9_3.1
	运行在以下环境
	系统	anolis_os_23	tomcat	*		Up to (excluding) 9.0.84-1
	运行在以下环境
	系统	debian_10	tomcat9	*		Up to (excluding) 9.0.31-1~deb10u11
	运行在以下环境
	系统	debian_11	tomcat9	*		Up to (excluding) 9.0.43-2~deb11u9
	运行在以下环境
	系统	debian_12	tomcat9	*		Up to (excluding) 10.1.6-1+deb12u1
	运行在以下环境
	系统	oracle_8	tomcat	*		Up to (excluding) 9.0.62-27.el8_9.2
	运行在以下环境
	系统	oracle_9	tomcat	*		Up to (excluding) 9.0.62-37.el9_3.1
	运行在以下环境
	系统	redhat_8	tomcat	*		Up to (excluding) 9.0.62-27.el8_9.2
	运行在以下环境
	系统	redhat_9	tomcat	*		Up to (excluding) 9.0.62-37.el9_3.1

攻击路径

本地
攻击复杂度

复杂
权限要求

普通权限
影响范围

越权影响
EXP成熟度

未验证
补丁情况

官方补丁
数据保密性

无影响
数据完整性

无影响
服务器危害

无影响
全网数量

N/A

CWE-ID	漏洞类型
CWE-459	清理环节不完整