CVE-2016-6817

moderate-risk
Published 2017-08-10

The HTTP/2 header parser in Apache Tomcat 9.0.0.M1 to 9.0.0.M11 and 8.5.0 to 8.5.6 entered an infinite loop if a header was received that was larger than the available buffer. This made a denial of service attack possible.

Do I need to act?

-
0.76% chance of exploitation
EPSS score — low exploit probability
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
7
CVSS 7.5/10 High
NETWORK / LOW complexity

Affected Products (18)

Affected Vendors

Apache

References (16)

Third Party Advisory http://www.securityfocus.com/bid/94462
Third Party Advisory http://www.securitytracker.com/id/1037330
https://lists.apache.org/thread.html/343558d982879bf88ec20dbf707f8c11255f8e219e8...
https://lists.apache.org/thread.html/6af47120905aa7d8fe12f42e8ff2284fb338ba141d3...
https://lists.apache.org/thread.html/88855876c33f2f9c532ffb75bfee570ccf0b17ffa77...
https://lists.apache.org/thread.html/a9f24571460af003071475b75f18cad81ebcc36fa7c...
https://lists.apache.org/thread.html/b5e3f51d28cd5d9b1809f56594f2cf63dcd6a90429e...
https://security.netapp.com/advisory/ntap-20180607-0001/
Third Party Advisory http://www.securityfocus.com/bid/94462
Third Party Advisory http://www.securitytracker.com/id/1037330
https://lists.apache.org/thread.html/343558d982879bf88ec20dbf707f8c11255f8e219e8...
https://lists.apache.org/thread.html/6af47120905aa7d8fe12f42e8ff2284fb338ba141d3...
https://lists.apache.org/thread.html/88855876c33f2f9c532ffb75bfee570ccf0b17ffa77...
https://lists.apache.org/thread.html/a9f24571460af003071475b75f18cad81ebcc36fa7c...
https://lists.apache.org/thread.html/b5e3f51d28cd5d9b1809f56594f2cf63dcd6a90429e...
https://security.netapp.com/advisory/ntap-20180607-0001/
48
/ 100
moderate-risk
Severity 26/34 · High
Exploitability 3/34 · Minimal
Exposure 19/34 · Moderate