CVE-2023-3223

Aliases:GHSA-65h2-wf7m-q2v8

Advisory lineage Upstream: 0 Downstream: 10

Downstream

DEBIAN-CVE-2023-3223 RHSA-2023:4505 RHSA-2023:4506 RHSA-2023:4507 RHSA-2023:4918 RHSA-2023:4919

Modified

Published: 27 Sept 2023, 13:54

Last modified:02 Aug 2024, 06:48

Vulnerability Summary

Overall Risk (default)

medium

30/100

CVSS Score

7.5 HIGH

v3.1 (cve.org)

EPSS Score

0.65% LOW

1% probability -0.23%

KEV

Not listed

Ransomware

No reports

Public exploits

None found

Dark Web

Not detected

Timeline

27 Sept 2023, 13:54

Published

Vulnerability first disclosed

02 Aug 2024, 06:48

Last Modified

Vulnerability information updated

Description

A flaw was found in undertow. Servlets annotated with @MultipartConfig may cause an OutOfMemoryError due to large multipart content. This may allow unauthorized users to cause remote Denial of Service (DoS) attack. If the server uses fileSizeThreshold to limit the file size, it's possible to bypass the limit by setting the file name in the request to null.

CVSS Metrics

v3.1•HIGH•Score: 7.5CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

EPSS Trends

Current EPSS score: 0.65%• Percentile: 71%

Techniques & Countermeasures

CWE-789•Memory Allocation with Excessive Size Value
The product allocates memory based on an untrusted, large size value, but it does not ensure that the size is within expected limits, allowing arbitrary amounts of memory to be allocated.

Affected Systems

io.undertow•undertow-parent
< 2.2.24.Final
redhat•jboss_enterprise_application_platform
7.4
redhat•jboss_enterprise_application_platform_text-only_advisories
na
redhat•openshift_container_platform
4.11 | 4.12
redhat•openshift_container_platform_for_ibm_linuxone
4.9 | 4.10
redhat•openshift_container_platform_for_power
4.9 | 4.10
redhat•single_sign-on
na | 7.6
redhat•undertow
< 2.2.24