Lucene search
+L

11 matches found

vulnersOsv
vulnersOsv
added 2021/06/16 5:47 p.m.5 views

asia.990121:message-example (=1.0.0), be.yildiz-games:module-webserver-undertow (>=1.1.3 <=1.1.6) +593 more potentially affected by CVE-2021-20220 via io.undertow:undertow-core (>=2.1.0.Final <=2.1.5.Final)

io.undertow:undertow-core MAVEN version =2.1.0.Final, =1.1.3, =20.5.0, =0.0.4-RELEASE, =0.0.4-RELEASE, =0.0.4-RELEASE, =0.0.4-RELEASE, =0.0.4-RELEASE, =0.0.6-RELEASE, =0.0.8-RELEASE, =0.0.4-RELEASE, =3.0.1.RELEASE, =3.0.2.RELEASE and more Source cves: CVE-2021-20220 Source advisory:...

5.8CVSS6.4AI score0.01119EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2021/03/17 12:0 a.m.56 views

RHEL 8 : Red Hat JBoss Enterprise Application Platform 7.3.6 (RHSA-2021:0874)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2021:0874 advisory. Red Hat JBoss Enterprise Application Platform 7 is a platform for Java applications based on the WildFly application runtime. This release o...

8.1CVSS6.6AI score0.0714EPSS
Exploits2References34
RedHat Linux
RedHat Linux
added 2021/03/16 1:41 p.m.93 views

Moderate: Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.3.6 security update

A security update is now available for Red Hat JBoss Enterprise Application Platform 7.3 for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...

8.1CVSS6.6AI score0.0714EPSS
Exploits2References26
RedHat Linux
RedHat Linux
added 2021/03/16 1:38 p.m.82 views

Moderate: Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.3.6 security update

A security update is now available for Red Hat JBoss Enterprise Application Platform 7.3 for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...

8.1CVSS6.6AI score0.0714EPSS
Exploits2References26
RedHat Linux
RedHat Linux
added 2021/03/16 1:37 p.m.81 views

Moderate: Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.3.6 security update

A security update is now available for Red Hat JBoss Enterprise Application Platform 7.3 for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...

8.1CVSS6.6AI score0.0714EPSS
Exploits2References26
RedHat Linux
RedHat Linux
added 2021/03/16 1:19 p.m.128 views

Moderate: Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.3.6 security update

A security update is now available for Red Hat JBoss Enterprise Application Platform 7.3. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

8.1CVSS6.6AI score0.0714EPSS
Exploits2References26
OSV
OSV
added 2021/02/23 6:15 p.m.33 views

CVE-2021-20220

A flaw was found in Undertow. A regression in the fix for CVE-2020-10687 was found. HTTP request smuggling related to CVE-2017-2666 is possible against HTTP/1.x and HTTP/2 due to permitting invalid characters in an HTTP request. This flaw allows an attacker to poison a web-cache, perform an XSS...

4.8CVSS5.5AI score
Exploits0References2
Debian CVE
Debian CVE
added 2021/02/23 5:21 p.m.48 views

CVE-2021-20220

A flaw was found in Undertow. A regression in the fix for CVE-2020-10687 was found. HTTP request smuggling related to CVE-2017-2666 is possible against HTTP/1.x and HTTP/2 due to permitting invalid characters in an HTTP request. This flaw allows an attacker to poison a web-cache, perform an XSS...

5.8CVSS6.2AI score0.01119EPSS
Exploits0
CVE
CVE
added 2021/02/23 5:21 p.m.226 views

CVE-2021-20220

CVE-2021-20220 relates to Undertow. A regression in the fix for CVE-2020-10687 enables HTTP request smuggling in Undertow when processing HTTP/1.x and HTTP/2 traffic due to invalid characters in the request line. The vulnerability can allow an attacker to poison a web-cache, perform an XSS attack...

5.8CVSS5.4AI score0.01119EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2021/02/23 5:21 p.m.46 views

CVE-2021-20220

A flaw was found in Undertow. A regression in the fix for CVE-2020-10687 was found. HTTP request smuggling related to CVE-2017-2666 is possible against HTTP/1.x and HTTP/2 due to permitting invalid characters in an HTTP request. This flaw allows an attacker to poison a web-cache, perform an XSS...

6AI score0.01119EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2021/02/04 12:51 a.m.55 views

CVE-2021-20220

A flaw was found in Undertow. A regression in the fix for CVE-2020-10687 was found. HTTP request smuggling related to CVE-2017-2666 is possible against HTTP/1.x and HTTP/2 due to permitting invalid characters in an HTTP request. This flaw allows an attacker to poison a web-cache, perform an XSS...

6.5CVSS3.5AI score0.02712EPSS
Exploits0References3
Rows per page
Query Builder