CVE-2026-3260
Rejected reason: The Undertow web server enforces a default maximum HTTP request entity size limit. Any request (including GET or HEAD) cont
CVSS
—
No CVSS
EPSS
0.4%
p35
KEV
—
Exploit Today
11
0-100
Published: Mar 24, 2026 · Last modified: Jul 7, 2026
0.4%EPSS · 30 days0.4%
2026-06-302026-07-07
Rejected reason: The Undertow web server enforces a default maximum HTTP request entity size limit. Any request (including GET or HEAD) containing a body that exceeds this configurable limit is safely dropped by the server, preventing single-request Resource Exhaustion (Out of Memory) Denial of Service attacks.
No related CVEs by CWE or product.