io.undertow:undertow-core vulnerabilities

Browse known CVEs and advisories by package and ecosystem. Severity tells you the worst case. What determines real risk is whether the vulnerable code actually runs in your applications.

Get a demo

Browse by ecosystem

npmPyPIMavenGoRubyGemsCargoNuGetComposerpubSwiftGitHub Actions
CVE-IDSeverityPackage summary
CVE-2026-3260Mediumio.undertow:undertow-core: Undertow: Denial of Service via Multipart/Form-Data Parsing on HTTP GET RequestsCVE-2024-4027Highio.undertow:undertow-core: Undertow Servlets Vulnerable to Remote DoS via OutOfMemoryError when Passed Large Parameter NamesCVE-2025-12543Criticalio.undertow:undertow-core: Undertow HTTP server core doesn't properly validate the Host header in incoming HTTP requestsCVE-2024-3884Highio.undertow:undertow-core: Undertow OutOfMemory when parsing form data encoding with application/x-www-form-urlencodedCVE-2025-9784Highio.undertow:undertow-core: Undertow MadeYouReset HTTP/2 DDoS VulnerabilityCVE-2023-4639Highio.undertow:undertow-core: Undertow incorrectly parses cookiesCVE-2023-1973Mediumio.undertow:undertow-core: Undertow Denial of Service vulnerabilityCVE-2024-7885Highio.undertow:undertow-core: Undertow vulnerable to Race ConditionCVE-2024-3653Mediumio.undertow:undertow-core: Undertow Missing Release of Memory after Effective Lifetime vulnerabilityCVE-2024-5971Highio.undertow:undertow-core: Undertow Denial of Service vulnerabilityCVE-2024-6162Highio.undertow:undertow-core: Undertow's url-encoded request path information can be broken on ajp-listenerCVE-2024-1635Highio.undertow:undertow-core: Undertow Uncontrolled Resource Consumption VulnerabilityCVE-2024-1459Mediumio.undertow:undertow-core: Undertow Path Traversal vulnerabilityCVE-2023-1108Highio.undertow:undertow-core: Undertow denial of service vulnerabilityCVE-2022-4492Criticalio.undertow:undertow-core: Undertow client not checking server identity presented by server certificate in https connectionsCVE-2022-2053Highio.undertow:undertow-core: Undertow vulnerable to Dos via Large AJP requestCVE-2021-3859Highio.undertow:undertow-core: Undertow vulnerable to Denial of Service (DoS) attacksCVE-2021-3690Highio.undertow:undertow-core: Undertow vulnerable to memory exhaustion due to buffer leakCVE-2021-3629Highio.undertow:undertow-core: Undertow Uncontrolled Resource ConsumptionCVE-2021-3597Mediumio.undertow:undertow-core: undertow Race Condition vulnerabilityCVE-2020-1745Highio.undertow:undertow-core: Improper Authorization in UndertoeCVE-2020-1757Highio.undertow:undertow-core: Improper Input Validation in UndertowCVE-2019-14888Highio.undertow:undertow-core: Undertow vulnerable to Uncontrolled Resource ConsumptionCVE-2014-7816Mediumio.undertow:undertow-core: Improper Limitation of a Pathname to a Restricted Directory in JBoss UndertowCVE-2016-7046Mediumio.undertow:undertow-core: Undertow Uncaught Exception vulnerability

Stop the waste.
Protect your environment with Kodem.