Hi All, Currently, In our product we are using 9.0.65 version of Tomcat. We are not using FileUpload option in any of our application and in Servlet. We don't have any config to limit the file uploads also.
Whether our attacker still able to perform a malicious upload to our server via url. Please let me know you input regarding this CVE-2023-24998 vulnerability. Whether our application is vulnerable (or) not. Regards, Abirami.S --------------------------------------------------------------------- To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
