A flaw was found in the Undertow HTTP server core, which is used in WildFly, JBoss EAP, and other Java applications. The Undertow library fails to properly validate the Host header in incoming HTTP requests.As a result, requests containing malformed or malicious Host headers are processed without rejection, enabling attackers to poison caches, perform internal network scans, or hijack user sessions.
Attack Parameters
Attack Vector
Network
Can be exploited remotely
Attack Complexity
Low
Easy to exploit
Privileges Required
None
No privileges needed
User Interaction
Required
User action required
Impact Assessment
Confidentiality
High
Complete data leak
Integrity
High
Complete data modification
Availability
High
Complete denial of service
CVSS Vector v3.1
Weakness Type (CWE)
Vulnerable Products 12
| Configuration | From (including) | Up to (excluding) |
|---|---|---|
|
Redhat Build_Of_Apache_Camel
cpe:2.3:a:redhat:build_of_apache_camel:*:*:*:*:*:spring_boot:*:*
|
— |
4.14.4
|
|
Redhat Data_Grid
cpe:2.3:a:redhat:data_grid:8.0:*:*:*:*:*:*:*
|
— | — |
|
Redhat Fuse
cpe:2.3:a:redhat:fuse:7.0.0:*:*:*:*:*:*:*
|
— | — |
|
Redhat Jboss_Enterprise_Application_Platform
cpe:2.3:a:redhat:jboss_enterprise_application_platform:*:*:*:*:*:*:*:*
|
8.0
|
8.0.12
|
|
Redhat Jboss_Enterprise_Application_Platform
cpe:2.3:a:redhat:jboss_enterprise_application_platform:*:*:*:*:*:*:*:*
|
8.1.0
|
8.1.3
|
|
Redhat Jboss_Enterprise_Application_Platform
cpe:2.3:a:redhat:jboss_enterprise_application_platform:-:*:*:*:text-only:*:*:*
|
— | — |
|
Redhat Jboss_Enterprise_Application_Platform
cpe:2.3:a:redhat:jboss_enterprise_application_platform:7.0.0:*:*:*:*:*:*:*
|
— | — |
|
Redhat Jboss_Enterprise_Application_Platform_Expansion_Pack
cpe:2.3:a:redhat:jboss_enterprise_application_platform_expansion_pack:-:*:*:*:*:*:*:*
|
— | — |
|
Redhat Process_Automation
cpe:2.3:a:redhat:process_automation:7.0:*:*:*:*:*:*:*
|
— | — |
|
Redhat Single_Sign-On
cpe:2.3:a:redhat:single_sign-on:7.0:*:*:*:*:*:*:*
|
— | — |
|
Redhat Undertow
cpe:2.3:a:redhat:undertow:*:*:*:*:*:*:*:*
|
— |
2.2.39
|
|
Redhat Undertow
cpe:2.3:a:redhat:undertow:*:*:*:*:*:*:*:*
|
2.3.0
|
2.3.21
|
References 13
https://access.redhat.com/errata/RHSA-2026:0383
secalert@redhat.com
https://access.redhat.com/errata/RHSA-2026:0384
secalert@redhat.com
https://access.redhat.com/errata/RHSA-2026:0386
secalert@redhat.com
https://access.redhat.com/security/cve/CVE-2025-12543
secalert@redhat.com
https://bugzilla.redhat.com/show_bug.cgi?id=2408784
secalert@redhat.com
https://access.redhat.com/errata/RHSA-2026:3889
secalert@redhat.com
https://access.redhat.com/errata/RHSA-2026:3890
secalert@redhat.com
https://access.redhat.com/errata/RHSA-2026:3891
secalert@redhat.com
https://access.redhat.com/errata/RHSA-2026:3892
secalert@redhat.com
https://access.redhat.com/errata/RHSA-2026:4915
secalert@redhat.com
https://access.redhat.com/errata/RHSA-2026:4916
secalert@redhat.com
https://access.redhat.com/errata/RHSA-2026:4917
secalert@redhat.com
https://access.redhat.com/errata/RHSA-2026:4924
secalert@redhat.com