VYPR
Unrated severityNVD Advisory· Published Sep 9, 2020· Updated Aug 4, 2024

CVE-2020-14384

CVE-2020-14384

Description

A flaw was found in JBossWeb in versions before 7.5.31.Final-redhat-3. The fix for CVE-2020-13935 was incomplete in JBossWeb, leaving it vulnerable to a denial of service attack when sending multiple requests with invalid payload length in a WebSocket frame. The highest threat from this vulnerability is to system availability.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • JBossWeb/JBossWebdescription
  • Red Hat/JBossWebllm-create
    Range: <7.5.31.Final-redhat-3

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.