Undertow Server Vulnerability: Denial of Service via EJB Invocation

Undertow Server Vulnerability: Denial of Service via EJB Invocation

CVE-2022-2764 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H

A flaw was found in Undertow. Denial of service can be achieved as Undertow server waits for the LAST_CHUNK forever for EJB invocations.

Learn more about our Cis Benchmark Audit For Server Software.