A vulnerability was found in the Undertow HTTP server in versions before 2.0.28.SP1 when listening on HTTPS. An attacker can target the HTTPS port to carry out a Denial Of Service (DOS) to make the service unavailable on SSL.
CPE | Name | Operator | Version |
---|---|---|---|
jboss_data_grid | eq | 7.0.0 | |
jboss_enterprise_application_platform | eq | 7.0.0 | |
jboss_fuse | eq | 6.0.0 | |
jboss_fuse | eq | 7.0.0 | |
single_sign-on | eq | 7.0 | |
undertow | le | 2.0.28 |