CVE-2020-27223 – In Eclipse Jetty 9.4.6.v20170531 to 9.4.36.v20210114 (inclusive), 10.0.0, and 11.0.0 when …

26 February 2021

Vuln ID: CVE-2020-27223

Published: 2021-02-26 22:15:19Z

Description: In Eclipse Jetty 9.4.6.v20170531 to 9.4.36.v20210114 (inclusive), 10.0.0, and 11.0.0 when Jetty handles a request containing multiple Accept headers with a large number of Ã¢â‚¬Å“qualityÃ¢â‚¬? (i.e. q) parameters, the server may enter a denial of service (DoS) state due to high CPU usage processing those quality values, resulting in minutes of CPU time exhausted processing those quality values.

Source: NVD.NIST.GOV

Date:

26 February 2021

Categorie(s):

NVD

Tag(s):

NVD

New Bitsight, Moody’s service seeks to bolster cyber risk management23 April 2024
Russian hackers’ custom tool exploits old Windows Print Spooler flaw (CVE-2022-38028)23 April 2024
Nespresso Domain Hijacked in Phishing Attack Targeting Microsoft Logins23 April 2024
End-to-End Encryption Sparks Concerns Among EU Law Enforcement23 April 2024
GAO: Most Biden cybersecurity EO requirements achieved23 April 2024