CVE-2017-2670

Summary

It was found in Undertow before 1.3.28 that with non-clean TCP close, the Websocket server gets into infinite loop on every IO thread, effectively causing DoS.

Affected Software

VendorProductVersion RangeStatus
[UNKNOWN]undertow1.3.28.Final-redhat-4affected

Weaknesses

  • CWE-835: CWE-835

ADP Enrichment

CVE Program Container

Additional References

References