What the vulnerability does

01Description

A flaw was found in Undertow. A buffer leak on the incoming WebSocket PONG message may lead to memory exhaustion. This flaw allows an attacker to cause a denial of service. The highest threat from this vulnerability is availability.

Key dates

02Disclosure timeline

August 23, 2022 CVE published
August 3, 2024 Record updated