CVE-2022-1259 - AskarLabs CVE Database

CVE-2022-1259

Vendor N/A

Product undertow

Weakness CWE-400

Published August 31, 2022

Last update August 2, 2024

View on NVD All CVEs

CVSS base score

—

What the vulnerability does

01Description

A flaw was found in Undertow. A potential security issue in flow control handling by the browser over HTTP/2 may cause overhead or a denial of service in the server. This flaw exists because of an incomplete fix for CVE-2021-3629.

Key dates

02Disclosure timeline

August 31, 2022 CVE published

August 2, 2024 Record updated

External resources

03References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2022-1259 CWE — Common Weakness Enumeration https://cwe.mitre.org/data/definitions/400.html

Related vulnerabilities

04Related CVE

CVE-2026-26171 .NET Denial of Service Vulnerability CVE-2024-24762 python-multipart vulnerable to content-type header Regular expression Denial of Service CVE-2024-45626 Apache James: denial of service through JMAP HTML to text conversion CVE-2023-3398 Denial of Service in jgraph/drawio CVE-2026-21435 webtransport-go CloseWithError can block indefinitely