Vulnerability Database

289,571

Total vulnerabilities in the database

CVE-2022-2764

A flaw was found in Undertow. Denial of service can be achieved as Undertow server waits for the LAST_CHUNK forever for EJB invocations.

  • Published: Sep 1, 2022
  • Updated: Apr 14, 2023
  • CVE: CVE-2022-2764
  • Severity: Low
  • Exploit:

CVSS v3:

  • Severity: Low
  • Score: 4.9
  • AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H

No CWE or OWASP classifications available.

Software From Fixed in
redhat / jboss_enterprise_application_platform 7.0.0 7.0.0.x
redhat / single_sign-on 7.0 7.0.x
redhat / jboss_fuse 7.0.0 7.0.0.x
redhat / undertow 2.3.0-alpha1 2.3.0-alpha1.x
redhat / undertow 2.0.0 2.2.19.x
redhat / undertow 2.3.0-alpha2 2.3.0-alpha2.x