Description

A flaw was found in Undertow package. Using the FormAuthenticationMechanism, a malicious user could trigger a Denial of Service by sending crafted requests, leading the server to an OutofMemory error, exhausting the server's memory.

INFO

Published Date :

2024-11-07T10:01:57.995Z

Last Modified :

2024-11-07T14:06:43.345Z

Source :

redhat
AFFECTED PRODUCTS

The following products are affected by CVE-2023-1973 vulnerability.

Vendors Products
Redhat
  • Jboss Enterprise Application Platform
  • Jboss Enterprise Application Platform Eus

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact