CVE-2024-5971Uncontrolled Recursion in Redhat Undertow

CWE-674Uncontrolled Recursion8 documents7 sources
Severity
7.5HIGHNVD
EPSS
3.7%
top 12.03%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Redhat Undertow
Timeline
PublishedJul 8
Latest updateOct 15

Description

A vulnerability was found in Undertow, where the chunked response hangs after the body was flushed. The response headers and body were sent but the client would continue waiting as Undertow does not send the expected 0\r\n termination of the chunked response. This results in uncontrolled resource consumption, leaving the server side to a denial of service attack. This happens only with Java 17 TLSv1.3 scenarios.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:HExploitability: 3.9 | Impact: 3.6

Affected Packages1 packages

Debianredhat/undertow< 2.3.18-1

🔴Vulnerability Details

4
OSV
CVE-2024-5971: A vulnerability was found in Undertow, where the chunked response hangs after the body was flushed2024-07-08
GHSA
Undertow Denial of Service vulnerability2024-07-08
CVEList
Undertow: response write hangs in case of java 17 tlsv1.3 newsessionticket2024-07-08
OSV
Undertow Denial of Service vulnerability2024-07-08

📋Vendor Advisories

3
Oracle
Oracle Oracle Communications Risk Matrix: Management Service (Undertow) — CVE-2024-59712024-10-15
Red Hat
undertow: response write hangs in case of Java 17 TLSv1.3 NewSessionTicket2024-07-08
Debian
CVE-2024-5971: undertow - A vulnerability was found in Undertow, where the chunked response hangs after th...2024