CVE-2022-1319

7.5HIGH

A flaw was found in Undertow. For an AJP 400 response, EAP 7 is improperly sending two response packets, and those packets have the reuse flag set even though JBoss EAP closes the connection. A failur

게시됨: 8/31/2022업데이트됨: 11/21/2024
NVD에서 보기MITRE에서 보기

설명

A flaw was found in Undertow. For an AJP 400 response, EAP 7 is improperly sending two response packets, and those packets have the reuse flag set even though JBoss EAP closes the connection. A failure occurs when the connection is reused after a 400 by CPING since it reads in the second SEND_HEADERS response packet instead of a CPONG.

AI 분석AI 기반

영향받는 제품

redhatopenshift_application_runtimes
-
redhatsingle_sign-on
7.0
redhatundertow
redhatundertow
2.2.17
redhatundertow
2.2.17
redhatundertow
2.2.17
redhatundertow
2.2.19
redhatundertow
2.2.19
redhatundertow
2.3.0
netappactive_iq_unified_manager
-
netappactive_iq_unified_manager
-
netappactive_iq_unified_manager
-
netappcloud_secure_agent
-
netapponcommand_insight
-
netapponcommand_workflow_automation
-

참조