Lucene search
SnykCVELIST:CVE-2020-7693HistoryJul 09, 2020 - 1:20 p.m.
CVE-2020-7693 Denial of Service (DoS)
2020-07-0913:20:24
snyk
www.cve.org
6
CVSS3
5.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:P/RL:O
AI Score
5.7
Confidence
High
EPSS
0.009
Percentile
82.9%
Incorrect handling of Upgrade header with the value websocket leads in crashing of containers hosting sockjs apps. This affects the package sockjs before 0.3.20.
CNA Affected
[
{
"product": "sockjs",
"vendor": "n/a",
"versions": [
{
"lessThan": "0.3.20",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
}
]Related
osv
osv
CVE-2020-7693
2020-07-09 14:15:11
Improper Input Validation in SocksJS-Node
2021-04-13 15:27:51
redhatcve
redhatcve
CVE-2020-7693
2020-07-15 16:07:49
nvd
nvd
CVE-2020-7693
2020-07-09 14:15:11
github
github
Improper Input Validation in SocksJS-Node
2021-04-13 15:27:51
veracode
veracode
Denial Of Service (DoS)
2020-07-13 06:01:49
debiancve
debiancve
CVE-2020-7693
2020-07-09 14:15:11
prion
prion
Code injection
2020-07-09 14:15:00
cve
cve
CVE-2020-7693
2020-07-09 14:15:11
githubexploit
githubexploit
CVSS3
5.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:P/RL:O
AI Score
5.7
Confidence
High
EPSS
0.009
Percentile
82.9%
Related for CVELIST:CVE-2020-7693