CVE-2020-1757

HIGH

undertow <2.0.30.SP1 - Security Bypass

Title source: llm
STIX 2.1

Description

A flaw was found in all undertow-2.x.x SP1 versions prior to undertow-2.0.30.SP1, all undertow-1.x.x and undertow-2.x.x versions prior to undertow-2.1.0.Final, where the Servlet container causes servletPath to normalize incorrectly by truncating the path after semicolon which may lead to an application mapping resulting in the security bypass.

References (1)

Core 1
Core References
Issue Tracking, Vendor Advisory x_refsource_confirm
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2020-1757

Scores

CVSS v3 8.1
EPSS 0.0046
EPSS Percentile 64.5%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

Details

CWE
CWE-20 CWE-200
Status published
Products (12)
io.undertow/undertow-core 0 - 2.1.0Maven
redhat/jboss_data_grid 7.0.0
redhat/jboss_enterprise_application_platform 7.0.0
redhat/jboss_fuse 6.0.0
redhat/jboss_fuse 7.0.0
redhat/openshift_application_runtimes
redhat/single_sign-on 7.0
redhat/undertow 2.0.0 sp1
redhat/undertow 2.0.25 sp1
redhat/undertow 2.0.26 sp3
... and 2 more
Published Apr 21, 2020
Tracked Since Feb 18, 2026