Security Advisory

CVE-2024-3884

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-12-03 18:40:25

Last updated 2026-05-06 14:50:10

Assigner redhat

State PUBLISHED

Description

A flaw was found in Undertow that can cause remote denial of service attacks. When the server uses the FormEncodedDataDefinition.doParse(StreamSourceChannel) method to parse large form data encoding with application/x-www-form-urlencoded, the method will cause an OutOfMemory issue. This flaw allows unauthorized users to cause a remote denial of service (DoS) attack.

← Browse all CVEs View on cve.org ↗