What the vulnerability does

01Description

A flaw was found in Undertow that tripped the client-side invocation timeout with certain calls made over HTTP2. This flaw allows an attacker to carry out denial of service attacks.

Key dates

02Disclosure timeline

August 26, 2022 CVE published
August 3, 2024 Record updated