You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Affected versions of this package are vulnerable to Information Exposure via the reuse of HTTP/2 request headers. An attacker can access sensitive information from previous requests by exploiting the incorrect reuse of header values across different streams on the same connection.
Remediation
There is no fixed version for io.undertow:undertow-core.
Overview
io.undertow:undertow-core is a Java web server based on non-blocking IO.
Affected versions of this package are vulnerable to Information Exposure via the reuse of HTTP/2 request headers. An attacker can access sensitive information from previous requests by exploiting the incorrect reuse of header values across different streams on the same connection.
Remediation
There is no fixed version for
io.undertow:undertow-core.References
The text was updated successfully, but these errors were encountered: