CVE-2024-1635 | Undertow prior 2.2.30.SP1/2.3.10.SP3 HTTP Upgrade WriteTimeoutStreamSinkConduit resource consumption

CVE-2024-1635 | Undertow prior 2.2.30.SP1/2.3.10.SP3 HTTP Upgrade WriteTimeoutStreamSinkConduit resource consumption

A vulnerability has been found in Undertow and classified as problematic. Affected by this vulnerability is the function WriteTimeoutStreamSinkConduit of the component HTTP Upgrade Handler. The manipulation leads to resource consumption. This vulnerability is known as CVE-2024-1635. The attack can be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.