Search for packages
| purl | pkg:maven/io.undertow/undertow-servlet@2.0.11.Final |
| Next non-vulnerable version | 2.0.23.Final |
| Latest non-vulnerable version | 2.0.23.Final |
| Risk | 4.0 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-4kdg-asyc-rbdx
Aliases: CVE-2019-10184 GHSA-w69w-jvc7-wjgv |
Undertow Missing Authorization when requesting a protected directory without trailing slash undertow before version 2.0.23.Final is vulnerable to an information leak issue. Web apps may have their directory structures predicted through requests without trailing slashes via the api. |
Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| This package is not known to fix vulnerabilities. | ||
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2026-04-16T20:56:20.149507+00:00 | GitLab Importer | Affected by | VCID-4kdg-asyc-rbdx | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/io.undertow/undertow-servlet/CVE-2019-10184.yml | 38.4.0 |
| 2026-04-11T22:07:20.529629+00:00 | GitLab Importer | Affected by | VCID-4kdg-asyc-rbdx | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/io.undertow/undertow-servlet/CVE-2019-10184.yml | 38.3.0 |
| 2026-04-02T22:20:07.244116+00:00 | GitLab Importer | Affected by | VCID-4kdg-asyc-rbdx | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/io.undertow/undertow-servlet/CVE-2019-10184.yml | 38.1.0 |
| 2026-04-01T16:37:52.927488+00:00 | GitLab Importer | Affected by | VCID-4kdg-asyc-rbdx | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/io.undertow/undertow-servlet/CVE-2019-10184.yml | 38.0.0 |