CVE-2024-4109

Rejected reason: Red Hat Product Security has determined that this CVE is not a security vulnerability.

CVSS

No CVSS.

References

No reference.

Configurations

No configuration.

History

16 Jan 2025, 22:15

Type	Values Removed	Values Added
CVSS	v2 : ~~unknown~~ v3 : ~~0.0~~	v2 : unknown v3 : unknown
References	~~{'url': 'https://access.redhat.com/errata/RHSA-2024:10927', 'source': 'secalert@redhat.com'}~~ ~~{'url': 'https://access.redhat.com/errata/RHSA-2024:10928', 'source': 'secalert@redhat.com'}~~ ~~{'url': 'https://access.redhat.com/errata/RHSA-2024:10929', 'source': 'secalert@redhat.com'}~~ ~~{'url': 'https://access.redhat.com/errata/RHSA-2024:10933', 'source': 'secalert@redhat.com'}~~ ~~{'url': 'https://access.redhat.com/errata/RHSA-2024:11559', 'source': 'secalert@redhat.com'}~~ ~~{'url': 'https://access.redhat.com/errata/RHSA-2024:11560', 'source': 'secalert@redhat.com'}~~ ~~{'url': 'https://access.redhat.com/errata/RHSA-2024:11570', 'source': 'secalert@redhat.com'}~~ ~~{'url': 'https://access.redhat.com/security/cve/CVE-2024-4109', 'source': 'secalert@redhat.com'}~~ ~~{'url': 'https://bugzilla.redhat.com/show_bug.cgi?id=2272325', 'source': 'secalert@redhat.com'}~~
CWE	~~CWE-200~~
Summary	(es) Se encontró un fallo en Undertow. Un valor de encabezado de solicitud HTTP de una secuencia anterior puede reutilizarse incorrectamente para una solicitud asociada con una secuencia posterior en la misma conexión HTTP/2. Este problema puede provocar una fuga de información entre solicitudes.
Summary	(en) A flaw was found in Undertow. An HTTP request header value from a previous stream may be incorrectly reused for a request associated with a subsequent stream on the same HTTP/2 connection. This issue can potentially lead to information leakage between requests.	(en) Rejected reason: Red Hat Product Security has determined that this CVE is not a security vulnerability.

16 Jan 2025, 21:15

Type	Values Removed	Values Added
CVSS	v2 : ~~unknown~~ v3 : ~~7.5~~	v2 : unknown v3 : 0.0

19 Dec 2024, 16:15

Type	Values Removed	Values Added
References		() https://access.redhat.com/errata/RHSA-2024:11560 - () https://access.redhat.com/errata/RHSA-2024:11570 -

19 Dec 2024, 15:15

Type	Values Removed	Values Added
References		() https://access.redhat.com/errata/RHSA-2024:11559 -

17 Dec 2024, 11:15

Type	Values Removed	Values Added
Summary		(es) Se encontró un fallo en Undertow. Un valor de encabezado de solicitud HTTP de una secuencia anterior puede reutilizarse incorrectamente para una solicitud asociada con una secuencia posterior en la misma conexión HTTP/2. Este problema puede provocar una fuga de información entre solicitudes.
References		() https://access.redhat.com/errata/RHSA-2024:10927 - () https://access.redhat.com/errata/RHSA-2024:10928 - () https://access.redhat.com/errata/RHSA-2024:10929 - () https://access.redhat.com/errata/RHSA-2024:10933 -

12 Dec 2024, 09:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2024-12-12 09:15

Updated : 2025-01-16 22:15

NVD link : CVE-2024-4109

Mitre link : CVE-2024-4109

CVE.ORG link : CVE-2024-4109

JSON object : View

Products Affected

No product.

CWE

No CWE.

JSON object

Attach tags to CVE-2024-4109

Attach tags to `CVE-2024-4109`