Description
A flaw was found in Undertow when using Remoting as shipped in Red Hat Jboss EAP before version 7.2.4. A memory leak in HttpOpenListener due to holding remote connections indefinitely may lead to denial of service. Versions before undertow 2.0.25.SP1 and jboss-remoting 5.0.14.SP1 are believed to be vulnerable.
Remediation
References
Related Vulnerabilities
Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2021-32472)
WordPress Plugin Animal Captcha Cross-Site Scripting (1.6.2)
PHP Improper Input Validation Vulnerability (CVE-2007-5128)
WordPress Plugin WordPress Geo-CF Geo Cross-Site Scripting (7.13.11)
silverstripeCMS Incorrect Default Permissions Vulnerability (CVE-2020-6165)