A flaw was found in Undertow that can cause remote denial of service attacks. When the server uses the FormEncodedDataDefinition.doParse(StreamSourceChannel) method to parse large form data encoding with application/x-www-form-urlencoded, the method will cause an OutOfMemory issue. This flaw allows unauthorized users to cause a remote denial of service (DoS) attack.
GHSA-6h4f-pj3g-q8fq: A flaw was found in Undertow that can cause remote denial of service attacks. When the server...
A flaw in Undertow allows remote denial of service (DoS) attacks via large form data encoding, causing OutOfMemory issues.