CVE-2024-7885

HIGH EPSS 83.7%
Published Aug 21, 20241y ago · Modified Jun 17, 20261w ago
7.5 CVSS 3.1
High
Find Similar
Published Aug 21, 2024 1y ago
Last Modified Jun 17, 2026 1w ago

Description

A vulnerability was found in Undertow where the ProxyProtocolReadListener reuses the same StringBuilder instance across multiple requests. This issue occurs when the parseProxyProtocolV1 method processes multiple requests on the same HTTP connection. As a result, different requests may share the same StringBuilder instance, potentially leading to information leakage between requests or responses. In some cases, a value from a previous request or response may be erroneously reused, which could lead to unintended data exposure. This issue primarily results in errors and connection termination but creates a risk of data leakage in multi-request environments.

CVSS Details

Base Score
7.5
Exploitability
3.9
Impact
3.6
Vector string
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Attack Vector Network
Attack Complexity Low
Privileges Required None
User Interaction None
Scope Unchanged
Confidentiality None
Integrity None
Availability High

Threat Intelligence

EPSS Exploit Probability
83.7% percentile
Exploit & Patch Status
No Known Exploit
No Patch Available

Weaknesses 1

CWE-362

Affected Products 10

VendorProductVersionRange
redhatbuild_of_apache_camel_-_hawtio*any
redhatbuild_of_apache_camel_for_spring_boot*any
redhatbuild_of_keycloak*any
redhatdata_grid8.0.0any
redhatintegration_camel_k*any
redhatjboss_enterprise_application_platform7.0.0any
redhatjboss_enterprise_application_platform8.0.0any
redhatjboss_fuse7.0.0any
redhatprocess_automation7.0any
redhatsingle_sign-on7.0any

References 13

Remediation

No remediation data recorded yet

Check vendor advisories and the NVD entry for patch availability.