What the vulnerability does

01Description

A flaw was found in Undertow. Denial of service can be achieved as Undertow server waits for the LAST_CHUNK forever for EJB invocations.

Key dates

02Disclosure timeline

September 1, 2022 CVE published
August 3, 2024 Record updated