Undertow HTTP server core doesn't properly validate the Host header in incoming HTTP requests
Critical severity
GitHub Reviewed
Published
Jan 7, 2026
to the GitHub Advisory Database
•
Updated Mar 18, 2026
Give feedback on Dependabot alerts