undertow vulnerabilities

Continuously find & fix vulnerabilities like these in your dependencies. Test and protect your applications

Direct Vulnerabilities

Known vulnerabilities in the undertow package. This does not include vulnerabilities belonging to this package’s dependencies.

Vulnerability Vulnerable versions Snyk patch Published
  • H
CVE-2019-3888
debian:unstable: * Not available 11 Jun, 2019
  • L
CVE-2018-14642
debian:unstable: * Not available 28 Oct, 2018
  • L
CVE-2018-1114
debian:unstable: <1.4.25-1 Not available 27 Jun, 2018
  • L
CVE-2017-2670
debian:unstable: <1.4.18-1,ubuntu:16.04: *,ubuntu:17.04: <1.4.8-1+deb9u1build0.17.04.1 Not available 27 Jun, 2018
  • M
CVE-2017-2666
debian:unstable: <1.4.18-1,ubuntu:16.04: *,ubuntu:17.04: <1.4.8-1+deb9u1build0.17.04.1 Not available 27 Jun, 2018
  • L
CVE-2017-12165
debian:unstable: *,ubuntu:16.04: *,ubuntu:18.04: *,ubuntu:18.10: * Not available 27 Jun, 2018
  • L
HTTP Response Splitting
debian:unstable: <1.4.25-1 Not available 21 May, 2018
  • M
Improper Authorization
debian:unstable: <1.4.25-1,ubuntu:16.04: *,ubuntu:18.04: * Not available 18 Apr, 2018
  • M
Directory Traversal
debian:unstable: <1.4.22-1 Not available 24 Jan, 2018
  • M
HTTP Request Smuggling
debian:unstable: <1.4.23-1,ubuntu:16.04: * Not available 10 Jan, 2018
  • L
Denial of Service (DoS)
debian:unstable: <1.4.3-1,ubuntu:16.04: * Not available 03 Oct, 2016
  • M
CRLF Injection
debian:unstable: <1.4.3-1 Not available 26 Sep, 2016