The Apache Software Foundation has released a security advisory to address a vulnerability (CVE-2021- 42340) in multiple versions of Tomcat. A remote attacker could exploit this vulnerability to trigger denial of service condition on the targeted system. Apache fixed vulnerability in versions 10.1.0-M6 or later, 10.0.12 or later, 9.0.54 or later, 8.5.72 or later.

Detailed information on vulnerability and updates can be found in Apache’s security advisory – apache.org.