CVE-2020-11080 in Oracle Enterprise Communications Brokerinfo

Summary

In nghttp2 before version 1.41.0, the overly large HTTP/2 SETTINGS frame payload causes denial of service. The proof of concept attack involves a malicious client constructing a SETTINGS frame with a length of 14,400 bytes (2400 individual settings entries) over and over again. The attack causes the CPU to spike at 100%. nghttp2 v1.41.0 fixes this vulnerability. There is a workaround to this vulnerability. Implement nghttp2_on_frame_recv_callback callback, and if received frame is SETTINGS frame and the number of settings entries are large (e.g., > 32), then drop the connection.

Responsible

GitHub, Inc.

Reservation

03/30/2020

Entries

VulDB provides additional information and datapoints for this CVE:

ID	Vulnerability	CWE	Exp	Cou	CVE
168172	Oracle Enterprise Communications Broker nghttp2 denial of service	404	Not defined	Official fix	CVE-2020-11080
163039	Oracle Communications Session Border Controller System denial of service	404	Not defined	Official fix	CVE-2020-11080
158324	Oracle GraalVM Enterprise Edition JavaScript neutralization	707	Not defined	Official fix	CVE-2020-11080
155994	nghttp2 HTTP/2 neutralization	707	Not defined	Official fix	CVE-2020-11080

Description

CPE

CWE

CVSS

Exploits

History

Diff

Relate

Threat Intelligence

API JSON

API XML

API CSV

◂ PreviousOverviewNext ▸

Do you need the next level of professionalism?

Upgrade your account now!