CVE-2025-9784

HIGH

Red Hat build of Apache Camel for Spring Boot - Denial of Service via MadeYouReset Attack

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2025-9784. PoCs published by drackyjr.

AI-analyzed exploit summary This repository contains a bash script that tests for the CVE-2025-9784 vulnerability (MadeYouReset HTTP/2 DoS) by checking HTTP/2 support, measuring baseline response times, and simulating concurrent HTTP/2 requests to detect potential vulnerability indicators.

Description

A flaw was found in Undertow where malformed client requests can trigger server-side stream resets without triggering abuse counters. This issue, referred to as the "MadeYouReset" attack, allows malicious clients to induce excessive server workload by repeatedly causing server-side stream aborts. While not a protocol bug, this highlights a common implementation weakness that can be exploited to cause a denial of service (DoS).

Exploits (1)

nomisec SCANNER 2 stars
by drackyjr · poc
https://github.com/drackyjr/CVE-2025-9784

This repository contains a bash script that tests for the CVE-2025-9784 vulnerability (MadeYouReset HTTP/2 DoS) by checking HTTP/2 support, measuring baseline response times, and simulating concurrent HTTP/2 requests to detect potential vulnerability indicators.

Classification
Scanner 95%
Attack Type
Dos
Complexity
Moderate
Reliability
Reliable
Target: Undertow HTTP/2 server implementations (e.g., Red Hat products)
No auth needed
Prerequisites: curl with HTTP/2 support · bash shell
devstral-2 · analyzed Feb 18, 2026 Full analysis →

References (18)

Core 18
Core References
Vendor Advisory vendor-advisory x_refsource_redhat
RHSA-2026:4916
https://access.redhat.com/errata/RHSA-2026:4916
Vendor Advisory vendor-advisory x_refsource_redhat
RHSA-2026:4917
https://access.redhat.com/errata/RHSA-2026:4917
Vendor Advisory vendor-advisory x_refsource_redhat
RHSA-2026:4924
https://access.redhat.com/errata/RHSA-2026:4924
Issue Tracking issue-tracking x_refsource_redhat
https://bugzilla.redhat.com/show_bug.cgi?id=2392306
Third Party Advisory, US Government Resource
https://kb.cert.org/vuls/id/767506
Vendor Advisory vendor-advisory x_refsource_redhat
https://access.redhat.com/errata/RHSA-2026:0383
Vendor Advisory vendor-advisory x_refsource_redhat
https://access.redhat.com/errata/RHSA-2026:3889
Vendor Advisory vendor-advisory x_refsource_redhat
https://access.redhat.com/errata/RHSA-2026:3891
Vendor Advisory vendor-advisory x_refsource_redhat
https://access.redhat.com/errata/RHSA-2026:3892
Third Party Advisory, US Government Resource
https://www.kb.cert.org/vuls/id/767506
Vendor Advisory vendor-advisory x_refsource_redhat
https://access.redhat.com/errata/RHSA-2025:23143
Vendor Advisory vendor-advisory x_refsource_redhat
https://access.redhat.com/errata/RHSA-2026:0384
Vendor Advisory vendor-advisory x_refsource_redhat
https://access.redhat.com/errata/RHSA-2026:0386
Vendor Advisory vendor-advisory x_refsource_redhat
RHSA-2026:4915
https://access.redhat.com/errata/RHSA-2026:4915
Vendor Advisory vdb-entry x_refsource_redhat
https://access.redhat.com/security/cve/CVE-2025-9784

Scores

CVSS v3 7.5
EPSS 0.0223
EPSS Percentile 85.0%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CISA SSVC

Vulnrichment
Exploitation none
Automatable yes
Technical Impact partial

Details

CWE
CWE-404 CWE-770
Status published
Products (50)
io.undertow/undertow-core 0 - 2.2.38.FinalMaven
Red Hat/Red Hat build of Apache Camel - HawtIO 4
Red Hat/Red Hat build of Apache Camel 4.14.2 for Spring Boot 3.5.8
Red Hat/Red Hat Data Grid 8
Red Hat/Red Hat Enterprise Linux 10
Red Hat/Red Hat Enterprise Linux 8
Red Hat/Red Hat Enterprise Linux 9
Red Hat/Red Hat Fuse 7
Red Hat/Red Hat JBoss Enterprise Application Platform 2.2.39.Final-redhat-00001
Red Hat/Red Hat JBoss Enterprise Application Platform 7
... and 40 more
Published Sep 02, 2025
Tracked Since Feb 18, 2026