Apache Tika RecursiveParserWrapper OOM Vulnerability

Apache Tika RecursiveParserWrapper OOM Vulnerability

CVE-2019-10088 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:P/A:P

A carefully crafted or corrupt zip file can cause an OOM in Apache Tika's RecursiveParserWrapper in versions 1.7-1.21. Users should upgrade to 1.22 or later.

Learn more about our Cis Benchmark Audit For Apache Http Server.