Описание
A vulnerability was found in Undertow, where URL-encoded request paths can be mishandled during concurrent requests on the AJP listener. This issue arises because the same buffer is used to decode the paths for multiple requests simultaneously, leading to incorrect path information being processed. As a result, the server may attempt to access the wrong path, causing errors such as "404 Not Found" or other application failures. This flaw can potentially lead to a denial of service, as legitimate resources become inaccessible due to the path mix-up.
Отчет
This issue is classified as moderate severity rather than important because it specifically affects URL-encoded request paths under concurrent access conditions, primarily through the AJP listener. While it can lead to 404 errors or application failures, it does not inherently compromise data integrity, security, or lead to direct unauthorized access. The impact is limited to incorrect handling of certain URL-encoded paths, which means it primarily disrupts access to static or encoded resources rather than posing a broader risk to the system’s overall security or functionality.
Меры по смягчению последствий
To mitigate this issue, you can either switch to a different listener like the http-listener, or adjust the AJP listener configuration. By setting decode-url="false" on the AJP listener and configuring a separate URL decoding filter, you can prevent the path decoding errors. This adjustment ensures that each request is processed correctly without interference from concurrent requests.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat build of Apache Camel for Spring Boot 3 | undertow | Will not fix | ||
| Red Hat build of Apache Camel - HawtIO 4 | undertow | Not affected | ||
| Red Hat Build of Keycloak | undertow | Not affected | ||
| Red Hat Data Grid 8 | undertow | Not affected | ||
| Red Hat Fuse 7 | undertow | Will not fix | ||
| Red Hat Integration Camel K 1 | undertow | Will not fix | ||
| Red Hat JBoss Data Grid 7 | undertow | Will not fix | ||
| Red Hat JBoss Enterprise Application Platform 7 | undertow | Not affected | ||
| Red Hat JBoss Enterprise Application Platform 8 | undertow | Not affected | ||
| Red Hat JBoss Enterprise Application Platform Expansion Pack | undertow | Affected |
Показывать по
Дополнительная информация
Статус:
7.5 High
CVSS3
Связанные уязвимости
A vulnerability was found in Undertow, where URL-encoded request paths can be mishandled during concurrent requests on the AJP listener. This issue arises because the same buffer is used to decode the paths for multiple requests simultaneously, leading to incorrect path information being processed. As a result, the server may attempt to access the wrong path, causing errors such as "404 Not Found" or other application failures. This flaw can potentially lead to a denial of service, as legitimate resources become inaccessible due to the path mix-up.
A vulnerability was found in Undertow, where URL-encoded request paths can be mishandled during concurrent requests on the AJP listener. This issue arises because the same buffer is used to decode the paths for multiple requests simultaneously, leading to incorrect path information being processed. As a result, the server may attempt to access the wrong path, causing errors such as "404 Not Found" or other application failures. This flaw can potentially lead to a denial of service, as legitimate resources become inaccessible due to the path mix-up.
A vulnerability was found in Undertow, where URL-encoded request paths ...
Undertow's url-encoded request path information can be broken on ajp-listener
Уязвимость класса AjpRequestParser компонента ajp-listener веб-сервера Undertow, позволяющая нарушителю вызвать отказ в обслуживании
7.5 High
CVSS3