VYPR
← All advisories
Moderate severityNVD Advisory· Published Dec 16, 2021· Updated Aug 4, 2024

CVE-2020-35210

CVE-2020-35210

Description

A vulnerability in Atomix v3.1.5 allows attackers to cause a denial of service (DoS) via a Raft session flooding attack using Raft OpenSessionRequest messages.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Atomix v3.1.5 is vulnerable to denial of service via a Raft session flooding attack using OpenSessionRequest messages.

Vulnerability

Atomix v3.1.5 contains a vulnerability in its Raft protocol implementation that allows an attacker to cause a denial of service by sending a flood of OpenSessionRequest messages [1]. The vulnerability is triggered when the attacker can reach the Atomix cluster over the network.

Exploitation

An attacker with network access to the Atomix cluster can send a large number of Raft OpenSessionRequest messages, overwhelming the system and leading to a denial of service [1]. No authentication or prior access is required if the cluster is exposed to the attacker.

Impact

Successful exploitation results in a denial of service, affecting the availability of services relying on the Atomix cluster. No confidentiality or integrity impact is reported.

Mitigation

As of publication, no patch or workaround has been disclosed in the available references [1]. Users should monitor the Atomix project for updates and consider network-level restrictions to limit exposure.

References
  1. NVD - CVE-2020-35210

AI Insight generated on May 21, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
io.atomix:atomixMaven
<= 3.1.5

Affected products

3

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

3

News mentions

0

No linked articles in our index yet.