0.023 Low
EPSS
Percentile
89.6%
The HTTPS NIO Connector allows remote attackers to cause a denial of service (thread consumption) by opening a socket and not sending an SSL handshake, aka a read-timeout vulnerability.
rhn.redhat.com/errata/RHSA-2016-0595.html
rhn.redhat.com/errata/RHSA-2016-0596.html
rhn.redhat.com/errata/RHSA-2016-0597.html
rhn.redhat.com/errata/RHSA-2016-0598.html
rhn.redhat.com/errata/RHSA-2016-0599.html
bugzilla.redhat.com/show_bug.cgi?id=1308465