Lucene search
GitHub Advisory DatabaseGHSA-RHCW-WJCM-9H6GHistoryFeb 09, 2022 - 12:54 a.m.
Denial of service in Undertow
2022-02-0900:54:12
CWE-400
GitHub Advisory Database
github.com
22
0.001 Low
EPSS
Percentile
36.4%
A flaw was found in the Undertow AJP connector. Malicious requests and abrupt connection closes could be triggered by an attacker using query strings with non-RFC compliant characters resulting in a denial of service. The highest threat from this vulnerability is to system availability. This affects Undertow 2.1.5.SP1, 2.0.33.SP2, and 2.2.3.SP1.
| CPE | Name | Operator | Version |
|---|---|---|---|
| io.undertow:undertow-core | lt | 2.0.33 | |
| io.undertow:undertow-core | lt | 2.1.5 |
Related
veracode
veracode
Denial Of Service (DoS)
2021-12-27 00:41:09
ubuntucve
ubuntucve
CVE-2020-27782
2021-02-23 00:00:00
debiancve
debiancve
CVE-2020-27782
2021-02-23 19:15:00
prion
prion
Denial of service
2021-02-23 19:15:00
cvelist
cvelist
CVE-2020-27782
2021-02-23 18:35:52
redhatcve
redhatcve
CVE-2020-27782
2021-01-25 06:53:09
cve
cve
CVE-2020-27782
2021-02-23 19:15:00
osv
osv
Denial of service in Undertow
2022-02-09 00:54:12
redhat
redhat
nessus
nessus