Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2020-10705

Опубликовано: 10 июн. 2020
Источник: nvd
CVSS3: 7.5
CVSS2: 5
EPSS Низкий

Описание

A flaw was discovered in Undertow in versions before Undertow 2.1.1.Final where certain requests to the "Expect: 100-continue" header may cause an out of memory error. This flaw may potentially lead to a denial of service.

Ссылки

Уязвимые конфигурации

Конфигурация 1
cpe:2.3:a:redhat:undertow:*:*:*:*:*:*:*:*
Версия до 2.1.1 (исключая)
Конфигурация 2
cpe:2.3:a:netapp:oncommand_insight:-:*:*:*:*:*:*:*
Конфигурация 3

Одно из

cpe:2.3:a:redhat:jboss_enterprise_application_platform:-:*:*:*:text-only:*:*:*
cpe:2.3:a:redhat:openshift_application_runtimes:-:*:*:*:text-only:*:*:*
Конфигурация 4

Одновременно

cpe:2.3:a:redhat:jboss_enterprise_application_platform:7.2:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:*
Конфигурация 5

Одновременно

cpe:2.3:a:redhat:jboss_enterprise_application_platform:7.2:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux:7.0:*:*:*:*:*:*:*
Конфигурация 6

Одновременно

cpe:2.3:a:redhat:jboss_enterprise_application_platform:7.2:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux:6.0:*:*:*:*:*:*:*

EPSS

Процентиль: 59%
0.00384
Низкий

7.5 High

CVSS3

5 Medium

CVSS2

Дефекты

CWE-770

Связанные уязвимости

ubuntu логотип

CVE-2020-10705

CVSS3: 7.5
ubuntu
больше 5 лет назад

A flaw was discovered in Undertow in versions before Undertow 2.1.1.Final where certain requests to the "Expect: 100-continue" header may cause an out of memory error. This flaw may potentially lead to a denial of service.

redhat логотип

CVE-2020-10705

CVSS3: 7.5
redhat
больше 5 лет назад

A flaw was discovered in Undertow in versions before Undertow 2.1.1.Final where certain requests to the "Expect: 100-continue" header may cause an out of memory error. This flaw may potentially lead to a denial of service.

debian логотип

CVE-2020-10705

CVSS3: 7.5
debian
больше 5 лет назад

A flaw was discovered in Undertow in versions before Undertow 2.1.1.Fi ...

github логотип

GHSA-g4cp-h53p-v3v8

CVSS3: 7.5
github
почти 5 лет назад

Allocation of Resources Without Limits or Throttling in Undertow

EPSS

Процентиль: 59%
0.00384
Низкий

7.5 High

CVSS3

5 Medium

CVSS2

Дефекты

CWE-770