CVE-2020-10577

Опубликовано: 14 мар. 2020

Источник: nvd

CVSS3: 4.8

CVSS2: 5.8

EPSS Низкий

Описание

An issue was discovered in Janus through 0.9.1. janus.c has multiple concurrent threads that misuse the source property of a session, leading to a race condition when claiming sessions.

Ссылки

https://github.com/meetecho/janus-gateway/pull/1990
Patch
Third Party Advisory
https://github.com/meetecho/janus-gateway/pull/1990
Patch
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:meetecho:janus:*:*:*:*:*:*:*:*

Версия до 0.9.1 (включая)

EPSS

Процентиль: 48%

0.00254

Низкий

4.8 Medium

CVSS3

5.8 Medium

CVSS2

Дефекты

CWE-362

Связанные уязвимости

CVE-2020-10577

CVSS3: 4.8

ubuntu

почти 6 лет назад

An issue was discovered in Janus through 0.9.1. janus.c has multiple concurrent threads that misuse the source property of a session, leading to a race condition when claiming sessions.

CVE-2020-10577

CVSS3: 4.8

debian

почти 6 лет назад

An issue was discovered in Janus through 0.9.1. janus.c has multiple c ...

GHSA-pqrj-9mq3-j4h7

CVSS3: 4.8

github

больше 3 лет назад

An issue was discovered in Janus through 0.9.1. janus.c has multiple concurrent threads that misuse the source property of a session, leading to a race condition when claiming sessions.

EPSS

Процентиль: 48%

0.00254

Низкий

4.8 Medium

CVSS3

5.8 Medium

CVSS2

Дефекты

CWE-362