5.9
CVE-2020-14340
- EPSS 0.33%
- Veröffentlicht 02.06.2021 13:15:08
- Zuletzt bearbeitet 21.11.2024 05:03:02
- Quelle secalert@redhat.com
- CVE-Watchlists
- Unerledigt
LoginA vulnerability was discovered in XNIO where file descriptor leak caused by growing amounts of NIO Selector file handles between garbage collection cycles. It may allow the attacker to cause a denial of service. It affects XNIO versions 3.6.0.Beta1 through 3.8.1.Final.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Redhat ≫ Jboss Brms Version5
Redhat ≫ Jboss Brms Version6
Redhat ≫ Jboss Data Grid Version6.0.0
Redhat ≫ Jboss Data Grid Version7.0.0
Redhat ≫ Jboss Data Virtualization Version6.0.0 Update-
Redhat ≫ Jboss Enterprise Application Platform Version5.0.0
Redhat ≫ Jboss Enterprise Application Platform Version6.0.0
Redhat ≫ Jboss Fuse Version6.0.0
Redhat ≫ Jboss Fuse Version7.0.0
Redhat ≫ Jboss Operations Network Version3.0
Redhat ≫ Jboss Soa Platform Version5
Oracle ≫ Communications Cloud Native Core Console Version1.9.0
Oracle ≫ Communications Cloud Native Core Network Repository Function Version1.14.0
Oracle ≫ Communications Cloud Native Core Policy Version1.14.0
Oracle ≫ Communications Cloud Native Core Service Communication Proxy Version1.14.0
Oracle ≫ Communications Cloud Native Core Unified Data Repository Version1.14.0
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.33% | 0.555 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 5.9 | 2.2 | 3.6 |
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
|
| nvd@nist.gov | 4.3 | 8.6 | 2.9 |
AV:N/AC:M/Au:N/C:N/I:N/A:P
|
CWE-400 Uncontrolled Resource Consumption
The product does not properly control the allocation and maintenance of a limited resource, thereby enabling an actor to influence the amount of resources consumed, eventually leading to the exhaustion of available resources.