CVE-2023-24998 log

Source
Severity Medium
Remote Yes
Type Denial of service
Description
a packaged renamed copy of Apache Commons FileUpload packaged in tomcat was vulnerable to denial of service triggered by a malicious upload or series of uploads
Group Package Affected Fixed Severity Status Ticket
AVG-2831 tomcat8 8.5.84-1 8.5.85-1 Medium Fixed
AVG-2830 tomcat9 9.0.70-1 9.0.71-1 Medium Fixed
AVG-2829 tomcat10 10.1.4-1 10.1.5-1 Medium Fixed
References
https://seclists.org/oss-sec/2023/q1/108
Notes
source does not specify severity (yet) but DoS is usually medium so I'm putting medium here