CVE-2024-7885

Summary

CVE-2024-7885 is a vulnerability identified in the Undertow web server, specifically involving the ProxyProtocolReadListener's reuse of a StringBuilder instance across multiple requests, which can lead to information leakage. Affected products include those utilizing Undertow, such as QtrxrA. The flaw arises when the parseProxyProtocolV1 method processes multiple requests over the same HTTP connection, potentially causing data from one request to be erroneously included in another response. To remediate this vulnerability, organizations should ensure they are using an updated version of Undertow that addresses this issue. The potential danger includes unintended data exposure and connection termination in environments with multiple concurrent requests, posing significant risks to confidentiality and availability.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.