CVE-2024-4027 - Undertow: outofmemoryerror in httpservletrequestimpl.getparameternames() can caus...

CVE ID : CVE-2024-4027 Published : Jan. 30, 2026, 3:16 p.m. | 1 hour, 5 minutes ago Description : A flaw was found in Undertow. Servlets using a method that calls HttpServletRequestImpl.getParameterNames() can cause an OutOfMemoryError when the client sends a request with large parameter names. This issue can be exploited by an unauthorized user to cause a remote denial-of-service (DoS) attack. Severity: 7.5 | HIGH Visit the link for more details, such as CVSS details, affected products, timeline, and more...