undertow vulnerabilities

Continuously find & fix vulnerabilities like these in your dependencies. Test and protect your applications

Direct Vulnerabilities

Known vulnerabilities in the undertow package. This does not include vulnerabilities belonging to this package’s dependencies.

Vulnerability Vulnerable versions Snyk patch Published
  • H
Information Exposure
debian:unstable: <2.0.23-1,ubuntu:16.04: *,ubuntu:18.04: * Not available 26 Jul, 2019
  • H
Credentials Management
debian:unstable: <2.0.23-1,ubuntu:16.04: *,ubuntu:18.04: * Not available 11 Jun, 2019
  • M
Information Exposure
debian:unstable: <2.0.23-1 Not available 28 Oct, 2018
  • M
Resource Exhaustion
debian:unstable: <1.4.25-1 Not available 27 Jun, 2018
  • H
Resource Management Errors
debian:unstable: <1.4.18-1,ubuntu:16.04: *,ubuntu:17.04: <1.4.8-1+deb9u1build0.17.04.1 Not available 27 Jun, 2018
  • M
HTTP Request Smuggling
debian:unstable: <1.4.18-1,ubuntu:16.04: *,ubuntu:17.04: <1.4.8-1+deb9u1build0.17.04.1 Not available 27 Jun, 2018
  • H
HTTP Request Smuggling
debian:unstable: <2.0.23-1,ubuntu:16.04: *,ubuntu:18.04: *,ubuntu:18.10: * Not available 27 Jun, 2018
  • M
HTTP Response Splitting
debian:unstable: <1.4.25-1 Not available 21 May, 2018
  • M
Improper Authorization
debian:unstable: <1.4.25-1,ubuntu:16.04: *,ubuntu:18.04: * Not available 18 Apr, 2018
  • H
Directory Traversal
debian:unstable: <1.4.22-1 Not available 24 Jan, 2018
  • M
HTTP Request Smuggling
debian:unstable: <1.4.23-1,ubuntu:16.04: * Not available 10 Jan, 2018
  • M
Resource Management Errors
debian:unstable: <1.4.3-1,ubuntu:16.04: * Not available 03 Oct, 2016
  • M
Improper Neutralization of CRLF Sequences ('CRLF Injection')
debian:unstable: <1.4.3-1 Not available 26 Sep, 2016