CVE-2023-5379 : Undertow: ajp request closes connection exceeding maxrequestsize

获取后续新漏洞提醒登录后订阅

一、漏洞 CVE-2023-5379 基础信息

漏洞信息

对漏洞内容有疑问？看看神龙的深度分析是否有帮助！

查看神龙十问 ↗

尽管我们使用了先进的大模型技术，但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性，但请您根据实际情况进行核实和判断。

Vulnerability Title

Undertow: ajp request closes connection exceeding maxrequestsize

来源: 美国国家漏洞数据库 NVD

Vulnerability Description

A flaw was found in Undertow. When an AJP request is sent that exceeds the max-header-size attribute in ajp-listener, JBoss EAP is marked in an error state by mod_cluster in httpd, causing JBoss EAP to close the TCP connection without returning an AJP response. This happens because mod_proxy_cluster marks the JBoss EAP instance as an error worker when the TCP connection is closed from the backend after sending the AJP request without receiving an AJP response, and stops forwarding. This issue could allow a malicious user could to repeatedly send requests that exceed the max-header-size, causing a Denial of Service (DoS).

来源: 美国国家漏洞数据库 NVD

CVSS Information

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

来源: 美国国家漏洞数据库 NVD

Vulnerability Type

不加限制或调节的资源分配

来源: 美国国家漏洞数据库 NVD

Vulnerability Title

Red Hat Undertow 安全漏洞

来源: 中国国家信息安全漏洞库 CNNVD

Vulnerability Description

Red Hat Undertow是美国红帽（Red Hat）公司的一款基于Java的嵌入式Web服务器，是Wildfly（Java应用服务器）默认的Web服务器。 Red Hat Undertow 存在安全漏洞，该漏洞源于当发送 AJP 请求后未收到 AJP 响应，从后端关闭 TCP 连接时，mod_proxy_cluster 会将 JBoss EAP 实例标记为错误工作器并停止转发，攻击者利用该漏洞可以重复发送超过最大标头大小的请求，从而导致拒绝服务。

来源: 中国国家信息安全漏洞库 CNNVD

CVSS Information

N/A

来源: 中国国家信息安全漏洞库 CNNVD

Vulnerability Type

N/A

来源: 中国国家信息安全漏洞库 CNNVD

受影响产品

厂商	产品	影响版本	CPE
Red Hat	Red Hat JBoss Enterprise Application Platform 7.1 EUS for RHEL 7	0:3.0.1-4.b08_redhat_00005.1.ep7.el7 ~ *	`cpe:/a:redhat:jboss_enterprise_application_platform_eus:7.1::el7`
Red Hat	Red Hat JBoss Enterprise Application Platform 7.1 EUS for RHEL 7	0:5.1.17-3.Final_redhat_00004.1.ep7.el7 ~ *	`cpe:/a:redhat:jboss_enterprise_application_platform_eus:7.1::el7`
Red Hat	Red Hat JBoss Enterprise Application Platform 7.1 EUS for RHEL 7	0:2.8.11.6-3.SP1_redhat_00003.1.ep7.el7 ~ *	`cpe:/a:redhat:jboss_enterprise_application_platform_eus:7.1::el7`
Red Hat	Red Hat JBoss Enterprise Application Platform 7.1 EUS for RHEL 7	0:4.0.12-1.Final_redhat_00002.1.ep7.el7 ~ *	`cpe:/a:redhat:jboss_enterprise_application_platform_eus:7.1::el7`
Red Hat	Red Hat JBoss Enterprise Application Platform 7.1 EUS for RHEL 7	0:4.1.63-2.Final_redhat_00003.1.ep7.el7 ~ *	`cpe:/a:redhat:jboss_enterprise_application_platform_eus:7.1::el7`
Red Hat	Red Hat JBoss Enterprise Application Platform 7.1 EUS for RHEL 7	0:1.4.18-16.SP14_redhat_00001.1.ep7.el7 ~ *	`cpe:/a:redhat:jboss_enterprise_application_platform_eus:7.1::el7`
Red Hat	Red Hat JBoss Enterprise Application Platform 7.1 EUS for RHEL 7	0:7.1.11-4.GA_redhat_00002.1.ep7.el7 ~ *	`cpe:/a:redhat:jboss_enterprise_application_platform_eus:7.1::el7`
Red Hat	Red Hat JBoss Enterprise Application Platform 7.1 EUS for RHEL 7	0:1.1.14-1.Final_redhat_00001.1.ep7.el7 ~ *	`cpe:/a:redhat:jboss_enterprise_application_platform_eus:7.1::el7`
Red Hat	Red Hat JBoss Enterprise Application Platform 7.1 EUS for RHEL 7	0:1.0.21-1.Final_redhat_00001.1.ep7.el7 ~ *	`cpe:/a:redhat:jboss_enterprise_application_platform_eus:7.1::el7`
Red Hat	Red Hat JBoss Enterprise Application Platform 7.1 EUS for RHEL 7	0:1.0.13-1.Final_redhat_00001.1.ep7.el7 ~ *	`cpe:/a:redhat:jboss_enterprise_application_platform_eus:7.1::el7`
Red Hat	Red Hat JBoss Enterprise Application Platform 7.1 EUS for RHEL 7	0:1.0.12-1.Final_redhat_00001.1.ep7.el7 ~ *	`cpe:/a:redhat:jboss_enterprise_application_platform_eus:7.1::el7`
Red Hat	Red Hat JBoss Enterprise Application Platform 7.1 EUS for RHEL 7	0:1.0.12-6.Final_redhat_00001.1.ep7.el7 ~ *	`cpe:/a:redhat:jboss_enterprise_application_platform_eus:7.1::el7`
Red Hat	Red Hat JBoss Enterprise Application Platform 7.3 EUS for RHEL 7	0:2.10.4-3.redhat_00006.1.el7eap ~ *	`cpe:/a:redhat:jboss_enterprise_application_platform_eus:7.3::el7`
Red Hat	Red Hat JBoss Enterprise Application Platform 7.3 EUS for RHEL 7	0:2.10.4-3.redhat_00006.1.el7eap ~ *	`cpe:/a:redhat:jboss_enterprise_application_platform_eus:7.3::el7`
Red Hat	Red Hat JBoss Enterprise Application Platform 7.3 EUS for RHEL 7	0:2.10.4-5.redhat_00006.1.el7eap ~ *	`cpe:/a:redhat:jboss_enterprise_application_platform_eus:7.3::el7`
Red Hat	Red Hat JBoss Enterprise Application Platform 7.3 EUS for RHEL 7	0:2.10.4-3.redhat_00006.1.el7eap ~ *	`cpe:/a:redhat:jboss_enterprise_application_platform_eus:7.3::el7`
Red Hat	Red Hat JBoss Enterprise Application Platform 7.3 EUS for RHEL 7	0:2.10.4-5.redhat_00006.1.el7eap ~ *	`cpe:/a:redhat:jboss_enterprise_application_platform_eus:7.3::el7`
Red Hat	Red Hat JBoss Enterprise Application Platform 7.3 EUS for RHEL 7	0:2.10.4-2.redhat_00006.1.el7eap ~ *	`cpe:/a:redhat:jboss_enterprise_application_platform_eus:7.3::el7`
Red Hat	Red Hat JBoss Enterprise Application Platform 7.3 EUS for RHEL 7	0:1.7.2-16.Final_redhat_00017.1.el7eap ~ *	`cpe:/a:redhat:jboss_enterprise_application_platform_eus:7.3::el7`
Red Hat	Red Hat JBoss Enterprise Application Platform 7.3 EUS for RHEL 7	0:4.1.63-5.Final_redhat_00003.1.el7eap ~ *	`cpe:/a:redhat:jboss_enterprise_application_platform_eus:7.3::el7`
Red Hat	Red Hat JBoss Enterprise Application Platform 7.3 EUS for RHEL 7	0:2.0.41-4.SP5_redhat_00001.1.el7eap ~ *	`cpe:/a:redhat:jboss_enterprise_application_platform_eus:7.3::el7`
Red Hat	Red Hat JBoss Enterprise Application Platform 7.3 EUS for RHEL 7	0:7.3.14-3.GA_redhat_00002.1.el7eap ~ *	`cpe:/a:redhat:jboss_enterprise_application_platform_eus:7.3::el7`
Red Hat	Red Hat JBoss Enterprise Application Platform 7.3 EUS for RHEL 7	0:1.10.17-1.Final_redhat_00001.1.el7eap ~ *	`cpe:/a:redhat:jboss_enterprise_application_platform_eus:7.3::el7`
Red Hat	Red Hat build of Quarkus	-	`cpe:/a:redhat:quarkus:2`
Red Hat	Red Hat Data Grid 8	-	`cpe:/a:redhat:jboss_data_grid:8`
Red Hat	Red Hat Decision Manager 7	-	`cpe:/a:redhat:jboss_enterprise_brms_platform:7`
Red Hat	Red Hat Fuse 7	-	`cpe:/a:redhat:jboss_fuse:7`
Red Hat	Red Hat JBoss Data Grid 7	-	`cpe:/a:redhat:jboss_data_grid:7`
Red Hat	Red Hat JBoss Enterprise Application Platform 7	-	`cpe:/a:redhat:jboss_enterprise_application_platform:7`
Red Hat	Red Hat JBoss Fuse 6	-	`cpe:/a:redhat:jboss_fuse:6`
Red Hat	Red Hat Process Automation 7	-	`cpe:/a:redhat:jboss_enterprise_bpms_platform:7`
Red Hat	Red Hat Single Sign-On 7	-	`cpe:/a:redhat:red_hat_single_sign_on:7`
Red Hat	Red Hat support for Spring Boot	-	`cpe:/a:redhat:openshift_application_runtimes:1.0`

二、漏洞 CVE-2023-5379 的公开POC

#	POC 描述	源链接	神龙链接

AI 生成 POC高级

未找到公开 POC。

登录以生成 AI POC

三、漏洞 CVE-2023-5379 的情报信息

Please 登录 to view more intelligence information

https://access.redhat.com/security/cve/CVE-2023-5379vdb-entryx_refsource_REDHAT
https://bugzilla.redhat.com/show_bug.cgi?id=2242099issue-trackingx_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2023:4509vendor-advisoryx_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2025:9583vendor-advisoryx_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2025:9582vendor-advisoryx_refsource_REDHAT
https://nvd.nist.gov/vuln/detail/CVE-2023-5379

四、漏洞 CVE-2023-5379 的评论

暂无评论

支持本站 — 捐款将帮助我们持续运营

一、漏洞 CVE-2023-5379 基础信息

漏洞信息

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

受影响产品

二、漏洞 CVE-2023-5379 的公开POC

三、漏洞 CVE-2023-5379 的情报信息

四、漏洞 CVE-2023-5379 的评论

发表评论

支持本站 — 捐款将帮助我们持续运营

一、 漏洞 CVE-2023-5379 基础信息

漏洞信息

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

受影响产品

二、漏洞 CVE-2023-5379 的公开POC

三、漏洞 CVE-2023-5379 的情报信息

四、漏洞 CVE-2023-5379 的评论

发表评论

一、漏洞 CVE-2023-5379 基础信息