CVE-2023-28709: Incomplete Fix for Apache Tomcat Denial of Service Attack Exploiting maxParameterCount Limit
The Apache Tomcat fix for CVE-2023-24998 was incomplete across versions 11..-M2 to 11..-M4, 10.1.5 to 10.1.7, 9..71 to
CVE-2023-24998: Critical Vulnerability in Apache Commons FileUpload Before 1.5 Leading to Potential DoS Attacks
A critical vulnerability, CVE-2023-24998, has been discovered in Apache Commons FileUpload before version 1.5 which may leave your system susceptible to Denial of Service