Lucene search
RedhatCVELIST:CVE-2020-27782HistoryFeb 23, 2021 - 6:35 p.m.
CVE-2020-27782
2021-02-2318:35:52
CWE-400
redhat
www.cve.org
0.001 Low
EPSS
Percentile
36.8%
A flaw was found in the Undertow AJP connector. Malicious requests and abrupt connection closes could be triggered by an attacker using query strings with non-RFC compliant characters resulting in a denial of service. The highest threat from this vulnerability is to system availability. This affects Undertow 2.1.5.SP1, 2.0.33.SP2, and 2.2.3.SP1.
CNA Affected
[
{
"product": "Undertow",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "2.1.5.SP1"
},
{
"status": "affected",
"version": "2.0.33.SP2"
},
{
"status": "affected",
"version": "2.2.3.SP1"
}
]
}
]Related
veracode
veracode
Denial Of Service (DoS)
2021-12-27 00:41:09
nvd
nvd
CVE-2020-27782
2021-02-23 19:15:13
ubuntucve
ubuntucve
CVE-2020-27782
2021-02-23 00:00:00
prion
prion
Denial of service
2021-02-23 19:15:00
redhatcve
redhatcve
CVE-2020-27782
2021-01-25 06:53:09
debiancve
debiancve
CVE-2020-27782
2021-02-23 19:15:13
cve
cve
CVE-2020-27782
2021-02-23 19:15:13
osv
osv
Denial of service in Undertow
2022-02-09 00:54:12
github
github
Denial of service in Undertow
2022-02-09 00:54:12
redhat
redhat
nessus
nessus