Description
A flaw was found in Undertow. A potential security issue in flow control handling by the browser over http/2 may potentially cause overhead or a denial of service in the server. The highest threat from this vulnerability is availability. This flaw affects Undertow versions prior to 2.0.40.Final and prior to 2.2.11.Final.
Remediation
References
Related Vulnerabilities
Oracle JRE CVE-2013-5784 Vulnerability (CVE-2013-5784)
WordPress Plugin WPeMatico RSS Feed Fetcher Cross-Site Scripting (2.3.7)
WordPress 4.1.x Multiple Vulnerabilities (4.1 - 4.1.17)
MyBB URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2018-10678)
Oracle Application Server CVE-2006-5364 Vulnerability (CVE-2006-5364)