High severity7.4NVD Advisory· Published Dec 10, 2020· Updated Jun 17, 2026
CVE-2020-16971
CVE-2020-16971
Description
Azure SDK for Java Security Feature Bypass Vulnerability
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
com.microsoft.azure:azure-eventhubsMaven | < 3.2.1 | 3.2.1 |
com.azure:azure-core-amqpMaven | < 1.6.0 | 1.6.0 |
Affected products
20- osv-coords18 versionspkg:apk/chainguard/logstash-8pkg:apk/chainguard/logstash-8-bitnami-compatpkg:apk/chainguard/logstash-8-compatpkg:apk/chainguard/logstash-8-env2yamlpkg:apk/chainguard/logstash-8-iamguarded-compatpkg:apk/chainguard/logstash-8-with-output-opensearchpkg:apk/chainguard/logstash-jre-bcfipspkg:apk/chainguard/logstash-jre-bcfips-compatpkg:apk/chainguard/logstash-jre-bcfips-env2yamlpkg:apk/chainguard/logstash-jre-bcfips-with-output-opensearchpkg:apk/wolfi/logstash-8pkg:apk/wolfi/logstash-8-bitnami-compatpkg:apk/wolfi/logstash-8-compatpkg:apk/wolfi/logstash-8-env2yamlpkg:apk/wolfi/logstash-8-iamguarded-compatpkg:apk/wolfi/logstash-8-with-output-opensearchpkg:maven/com.azure/azure-core-amqppkg:maven/com.microsoft.azure/azure-eventhubs
< 8.16.0-r0+ 17 more
- (no CPE)range: < 8.16.0-r0
- (no CPE)range: < 8.16.0-r0
- (no CPE)range: < 8.16.0-r0
- (no CPE)range: < 8.16.0-r0
- (no CPE)range: < 8.16.0-r0
- (no CPE)range: < 8.16.0-r0
- (no CPE)range: < 8.16.0-r0
- (no CPE)range: < 8.16.0-r0
- (no CPE)range: < 8.16.0-r0
- (no CPE)range: < 8.16.0-r0
- (no CPE)range: < 8.16.0-r0
- (no CPE)range: < 8.16.0-r0
- (no CPE)range: < 8.16.0-r0
- (no CPE)range: < 8.16.0-r0
- (no CPE)range: < 8.16.0-r0
- (no CPE)range: < 8.16.0-r0
- (no CPE)range: < 1.6.0
- (no CPE)range: < 3.2.1
- Range: 1.0.0
- Range: 1.0.0
Patches
Vulnerability mechanics
References
6- github.com/advisories/GHSA-8q69-pw39-hpqhghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2020-16971ghsaADVISORY
- azure.github.io/azure-sdk/releases/2020-10/index.htmlghsaWEB
- azure.github.io/azure-sdk/releases/2020-10/java.htmlghsaWEB
- msrc.microsoft.com/update-guide/vulnerability/CVE-2020-16971nvdWEB
- portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-16971nvdWEB
News mentions
0No linked articles in our index yet.