PT-2020-15032 · Apache+4 · Apache Tomcat+4

Published

2020-11-17

·

Updated

2026-03-26

·

CVE-2020-17527

CVSS v3.1

7.5

High

VectorAV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Name of the Vulnerable Software and Affected Versions Apache Tomcat versions 10.0.0-M1 through 10.0.0-M9 Apache Tomcat versions 9.0.0-M1 through 9.0.39 Apache Tomcat versions 8.5.0 through 8.5.59
Description The issue allows Apache Tomcat to re-use an HTTP request header value from the previous stream received on an HTTP/2 connection for the request associated with the subsequent stream. This could most likely lead to an error and the closure of the HTTP/2 connection, but it is also possible that information could leak between requests.
Recommendations For Apache Tomcat versions 10.0.0-M1 through 10.0.0-M9, update to a version that contains a fix for this issue. For Apache Tomcat versions 9.0.0-M1 through 9.0.39, update to a version that contains a fix for this issue. For Apache Tomcat versions 8.5.0 through 8.5.59, update to a version that contains a fix for this issue. As a temporary workaround, consider restricting the use of HTTP/2 connections until a patch is available.

Exploit

Fix

Information Disclosure

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-200

Related Identifiers

ALT-PU-2021-1993
ALT-PU-2025-9146
AZL-6909
AZL-7384
BIT-TOMCAT-2020-17527
CVE-2020-17527
DLA-2495-1
DSA-4835-1
GHSA-VVW4-RFWF-P6HX
MGASA-2021-0020
OPENSUSE-SU-2021:0043-1
OPENSUSE-SU-2021:0081-1
OPENSUSE-SU-2021_0043-1
OPENSUSE-SU-2021_0081-1
OPENSUSE-SU-2024:11468-1
OPENSUSE-SU-2024:13441-1
RHSA-2021:0494
ROSA-SA-2024-2544
SUSE-SU-2021:0031-1
SUSE-SU-2021:0040-1
SUSE-SU-2021:0041-1
SUSE-SU-2021:0042-1
SUSE-SU-2021_0031-1
SUSE-SU-2021_0041-1
SUSE-SU-2021_0042-1
SUSE-SU-2026:1058-1
USN-5360-1

Affected Products

Alt Linux
Apache Tomcat
Linuxmint
Suse
Ubuntu