Lucene search

[email protected]NVD:CVE-2020-6937

HistoryMay 29, 2020 - 10:15 p.m.

CVE-2020-6937

2020-05-2922:15:10

[email protected]

web.nvd.nist.gov

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

0.002 Low

EPSS

Percentile

58.9%

JSON

A Denial of Service vulnerability in MuleSoft Mule CE/EE 3.8.x, 3.9.x, and 4.x released before April 7, 2020, could allow remote attackers to submit data which can lead to resource exhaustion.

Affected configurations

NVD

Node

mulesoftmule_runtimeRange3.8.0–3.8.7community

mulesoftmule_runtimeRange3.8.0–3.8.7enterprise

mulesoftmule_runtimeRange3.9.0–3.9.4community

mulesoftmule_runtimeRange3.9.0–3.9.4enterprise

mulesoftmule_runtimeRange4.0.0–4.3.0community

mulesoftmule_runtimeRange4.0.0–4.3.0enterprise

References

help.salesforce.com/articleView?id=000353701&language=en_US&type=1&mode=1

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

0.002 Low

EPSS

Percentile

58.9%

JSON

Related for NVD:CVE-2020-6937

cve1 prion1 cvelist1