Security Bulletin: DevOps Test Performance contains a vulnerability related to use of the Undertow web server library

Summary Due to use of the Undertow web server library, DevOps Test Performance and Rational Performance Tester contain a potential Denial of Service DoS vulnerability. Vulnerability Details CVEID:CVE-2026-3260 DESCRIPTION: A flaw was found in Undertow. A remote attacker could exploit this...

CVE-2026-3260

creationtimestamp| type| source ---|---|--- 2026-03-25 03:00:14+00:00| seen| https://access.redhat.com/security/cve/CVE-2026-3260...

africa.absa:inception-application (>=1.0.0 <=1.2.0), app.fmgp:scala-did-docs_3 (>=0.1.0-M16 <=0.1.0-M33) +3541 more potentially affected by CVE-2026-3260 via io.undertow:undertow-core (>=2.0.0.Alpha1 <=2.4.0.Alpha1)

io.undertow:undertow-core MAVEN version =2.0.0.Alpha1, =1.0.0, =0.1.0-M16, =0.5.0, =0.10.0, =0.0.1, =1.0.0, =1.0.6, =1.0.6, =1.0.6, =2.0.1, =1.0.6, =1.0.6, =2.1.1 and more Source cves: CVE-2026-3260 Source advisory: SNYK:JAVA-IOUNDERTOW-15809269...

DEBIAN-CVE-2026-3260

A flaw was found in Undertow. A remote attacker could exploit this vulnerability by sending an HTTP GET request containing multipart/form-data content. If the underlying application processes parameters using methods like getParameterMap, the server prematurely parses and stores this content to...