CVE-2026-3260 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

A flaw was found in Undertow. A remote attacker could exploit this vulnerability by sending an HTTP GET request containing multipart/form-data content. If the u…
Medium CVSS: 5.9

CVE-2026-3260

A flaw was found in Undertow. A remote attacker could exploit this vulnerability by sending an HTTP GET request containing multipart/form-data content. If the underlying application processes parameters using methods like `getParameterMap()`, the server prematurely parses and stores this content to disk. This could lead to resource exhaustion, potentially resulting in a Denial of Service (DoS).
Vendor
-
Product
-
CWE
CWE-770
Yayın Tarihi
2026-03-24 05:16:24
Güncelleme
2026-03-24 15:53:48
Source Identifier
secalert@redhat.com
KEV Date Added
-

Kategoriler

CWE-770 MEDIUM 2026

Referanslar

https://access.redhat.com/security/cve/CVE-2026-3260 https://bugzilla.redhat.com/show_bug.cgi?id=2443010