a packaged renamed copy of Apache Commons FileUpload packaged in tomcat was vulnerable to denial of service triggered by a malicious upload or series of uploads
a packaged renamed copy of Apache Commons FileUpload packaged in tomcat was vulnerable to denial of service triggered by a malicious upload or series of uploads
https://seclists.org/oss-sec/2023/q1/108
source does not specify severity (yet) but DoS is usually medium so I'm putting medium here