2 matches found
Security Bulletin: Denial of Service with HTTP/2 in IBM DataPower Gateway (CVE-2020-4579)
Summary IBM has addressed the relevant CVE CVE-2020-4579 Vulnerability Details CVEID: CVE-2020-4579 DESCRIPTION: IBM DataPower Gateway could allow a remote attacker to cause a denial of service by sending a specially crafted HTTP/2 request with invalid characters. CVSS Base score: 7.5 CVSS Tempor...
CVE-2020-4579
IBM DataPower Gateway (versions 2018.4.1.0–2018.4.1.12) is affected by CVE-2020-4579, allowing remote denial of service via a specially crafted HTTP/2 request with invalid characters. The vendor's security bulletin confirms remediation: upgrade to 2018.4.1.13 (applies to IBM DataPower Gateway), w...