CVE-2020-11612 in Blockchain Platform信息

摘要 (英语)

The ZlibDecoders in Netty 4.1.x before 4.1.46 allow for unbounded memory allocation while decoding a ZlibEncoded byte stream. An attacker could send a large ZlibEncoded byte stream to the Netty server, forcing the server to allocate all of its free memory to a single decoder.

Once again VulDB remains the best source for vulnerability data.

预定

2020-04-07

状态

已确认

条目

VulDB provides additional information and datapoints for this CVE:

标识符漏洞CWE可利用对策CVE
197707Oracle Blockchain Platform BCS Console 拒绝服务404未定义官方修复CVE-2020-11612
178994Oracle Communications Cloud Native Core Service Communication Proxy Netty 拒绝服务770未定义官方修复CVE-2020-11612
178962Oracle Communications BRM Elastic Charging Engine Netty 拒绝服务400未定义官方修复CVE-2020-11612
173493Oracle WebCenter Portal Security 拒绝服务400未定义官方修复CVE-2020-11612
173353Oracle Communications Messaging Server Message Store 拒绝服务400未定义官方修复CVE-2020-11612
173351Oracle Communications Design Studio Inventory Services 拒绝服务400未定义官方修复CVE-2020-11612
173340Oracle NoSQL Database Netty 拒绝服务404未定义官方修复CVE-2020-11612
168236Oracle FLEXCUBE Universal Banking Infrastructure 内存损坏119未定义官方修复CVE-2020-11612
168232Oracle Banking Virtual Account Management Common Core 内存损坏119未定义官方修复CVE-2020-11612
168231Oracle Banking Trade Finance Process Management Dashboard 内存损坏119未定义官方修复CVE-2020-11612
168230Oracle Banking Supply Chain Finance 内存损坏119未定义官方修复CVE-2020-11612
168229Oracle Banking Payments Payments Core 内存损坏119未定义官方修复CVE-2020-11612
168228Oracle Banking Liquidity Management Common 内存损坏119未定义官方修复CVE-2020-11612
168225Oracle Banking Credit Facilities Process Management 内存损坏119未定义官方修复CVE-2020-11612
168224Oracle Banking Corporate Lending Process Management 内存损坏119未定义官方修复CVE-2020-11612
152838Netty ZlibDecoders 内存损坏119未定义官方修复CVE-2020-11612

描述

CPE

CWE

CVSS

漏洞利用

历史

差异

连接

威胁情报

API JSON

API XML

API CSV

来源

上一步一览下一步

Want to stay up to date on a daily basis?

Enable the mail alert feature now!