Description
A flaw was found in Undertow. A remote attacker could exploit this vulnerability by sending an HTTP GET request containing multipart/form-data content. If the underlying application processes parameters using methods like `getParameterMap()`, the server prematurely parses and stores this content to disk. This could lead to resource exhaustion, potentially resulting in a Denial of Service (DoS).
Remediation
References
Related Vulnerabilities
WordPress Plugin SAML SP Single Sign On-SSO login Cross-Site Scripting (4.8.83)
WordPress Plugin MailChimp Forms by MailMunch Unspecified Vulnerability (2.0.6.3)
XWiki Inadequate Encryption Strength Vulnerability (CVE-2022-29161)
WordPress Plugin Vuukle Comments, Reactions, Share Bar, Revenue Unspecified Vulnerability (4.0.2)