VYPR
High severity7.5GHSA Advisory· Published Nov 7, 2024· Updated Apr 15, 2026

CVE-2023-1973

CVE-2023-1973

Description

A flaw was found in Undertow package. Using the FormAuthenticationMechanism, a malicious user could trigger a Denial of Service by sending crafted requests, leading the server to an OutofMemory error, exhausting the server's memory.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
io.undertow:undertow-coreMaven
< 2.2.32.Final2.2.32.Final
io.undertow:undertow-coreMaven
>= 2.3.0.Alpha1, < 2.3.13.Final2.3.13.Final

Affected products

3

Patches

Vulnerability mechanics

References

12

News mentions

0

No linked articles in our index yet.