VYPR
Medium severity6.5NVD Advisory· Published Sep 11, 2018· Updated Jun 17, 2026

CVE-2018-1114

CVE-2018-1114

Description

It was found that URLResource.getLastModified() in Undertow closes the file descriptors only when they are finalized which can cause file descriptors to exhaust. This leads to a file handler leak.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
io.undertow:undertow-coreMaven
< 1.4.25.Final1.4.25.Final
io.undertow:undertow-coreMaven
>= 2.0.0.Alpha1, < 2.0.5.Final2.0.5.Final

Affected products

2

Patches

Vulnerability mechanics

References

8

News mentions

0

No linked articles in our index yet.