{"dataType":"CVE_RECORD","dataVersion":"5.2","cveMetadata":{"cveId":"CVE-2026-3260","assignerOrgId":"53f830b8-0a3f-465b-8143-3b8a9948e749","state":"REJECTED","assignerShortName":"redhat","dateReserved":"2026-02-26T14:22:15.920Z","datePublished":"2026-03-24T04:11:16.085Z","dateUpdated":"2026-07-07T19:50:22.087Z","dateRejected":"2026-07-07T19:50:22.087Z"},"containers":{"cna":{"rejectedReasons":[{"lang":"en","value":"The Undertow web server enforces a default maximum HTTP request entity size limit. Any request (including GET or HEAD) containing a body that exceeds this configurable limit is safely dropped by the server, preventing single-request Resource Exhaustion (Out of Memory) Denial of Service attacks."}],"providerMetadata":{"orgId":"53f830b8-0a3f-465b-8143-3b8a9948e749","shortName":"redhat","dateUpdated":"2026-07-07T19:50:22.087Z"},"x_generator":{"engine":"cvelib 1.8.0"}}}}