CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-13956

Apache HttpClient versions prior to version 4.5.13 and 5.0.3 can misinterpret malformed authority component in request URIs passed to the library as java.net.URI object and pick the wrong target host for request execution.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.007

EPSS Ranking 70.5%

CVSS Severity

CVSS v3 Score 5.3

CVSS v2 Score 5.0

References

Products affected by CVE-2020-13956

Apache » Httpclient » Version: 3.1

cpe:2.3:a:apache:httpclient:3.1
Apache » Httpclient » Version: 4.0

cpe:2.3:a:apache:httpclient:4.0
Apache » Httpclient » Version: 4.0.1

cpe:2.3:a:apache:httpclient:4.0.1
Apache » Httpclient » Version: 4.1

cpe:2.3:a:apache:httpclient:4.1
Apache » Httpclient » Version: 4.1.1

cpe:2.3:a:apache:httpclient:4.1.1
Apache » Httpclient » Version: 4.1.2

cpe:2.3:a:apache:httpclient:4.1.2
Apache » Httpclient » Version: 4.2

cpe:2.3:a:apache:httpclient:4.2
Apache » Httpclient » Version: 4.2.1

cpe:2.3:a:apache:httpclient:4.2.1
Apache » Httpclient » Version: 4.2.2

cpe:2.3:a:apache:httpclient:4.2.2
Apache » Httpclient » Version: 4.2.3

cpe:2.3:a:apache:httpclient:4.2.3
Apache » Httpclient » Version: 4.3

cpe:2.3:a:apache:httpclient:4.3
Apache » Httpclient » Version: 4.3.1

cpe:2.3:a:apache:httpclient:4.3.1
Apache » Httpclient » Version: 4.3.2

cpe:2.3:a:apache:httpclient:4.3.2
Apache » Httpclient » Version: 4.3.3

cpe:2.3:a:apache:httpclient:4.3.3
Apache » Httpclient » Version: 4.3.4

cpe:2.3:a:apache:httpclient:4.3.4
Apache » Httpclient » Version: 4.3.5

cpe:2.3:a:apache:httpclient:4.3.5
Apache » Httpclient » Version: 4.4.1

cpe:2.3:a:apache:httpclient:4.4.1
Apache » Httpclient » Version: 4.5

cpe:2.3:a:apache:httpclient:4.5
Apache » Httpclient » Version: 4.5.1

cpe:2.3:a:apache:httpclient:4.5.1
Apache » Httpclient » Version: 4.5.10

cpe:2.3:a:apache:httpclient:4.5.10
Apache » Httpclient » Version: 4.5.11

cpe:2.3:a:apache:httpclient:4.5.11
Apache » Httpclient » Version: 4.5.12

cpe:2.3:a:apache:httpclient:4.5.12
Apache » Httpclient » Version: 4.5.2

cpe:2.3:a:apache:httpclient:4.5.2
Apache » Httpclient » Version: 4.5.3

cpe:2.3:a:apache:httpclient:4.5.3
Apache » Httpclient » Version: 4.5.4

cpe:2.3:a:apache:httpclient:4.5.4
Apache » Httpclient » Version: 4.5.5

cpe:2.3:a:apache:httpclient:4.5.5
Apache » Httpclient » Version: 4.5.6

cpe:2.3:a:apache:httpclient:4.5.6
Apache » Httpclient » Version: 4.5.7

cpe:2.3:a:apache:httpclient:4.5.7
Apache » Httpclient » Version: 4.5.8

cpe:2.3:a:apache:httpclient:4.5.8
Apache » Httpclient » Version: 4.5.9

cpe:2.3:a:apache:httpclient:4.5.9
Apache » Httpclient » Version: 5.0.0

cpe:2.3:a:apache:httpclient:5.0.0
Apache » Httpclient » Version: 5.0.1

cpe:2.3:a:apache:httpclient:5.0.1
Apache » Httpclient » Version: 5.0.2

cpe:2.3:a:apache:httpclient:5.0.2
Netapp » Active Iq Unified Manager » Version: N/A

cpe:2.3:a:netapp:active_iq_unified_manager:-
Netapp » Snapcenter » Version: N/A

cpe:2.3:a:netapp:snapcenter:-
Oracle » Commerce Guided Search » Version: 11.3.2

cpe:2.3:a:oracle:commerce_guided_search:11.3.2
Oracle » Communications Cloud Native Core Service Communication Proxy » Version: 1.14.0

cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:1.14.0
Oracle » Data Integrator » Version: 12.2.1.3.0

cpe:2.3:a:oracle:data_integrator:12.2.1.3.0
Oracle » Data Integrator » Version: 12.2.1.4.0

cpe:2.3:a:oracle:data_integrator:12.2.1.4.0
Oracle » Jd Edwards Enterpriseone Orchestrator » Version: N/A

cpe:2.3:a:oracle:jd_edwards_enterpriseone_orchestrator:-
Oracle » Jd Edwards Enterpriseone Orchestrator » Version: 9.2

cpe:2.3:a:oracle:jd_edwards_enterpriseone_orchestrator:9.2
Oracle » Jd Edwards Enterpriseone Orchestrator » Version: 9.2.4.2

cpe:2.3:a:oracle:jd_edwards_enterpriseone_orchestrator:9.2.4.2
Oracle » Jd Edwards Enterpriseone Orchestrator » Version: 9.2.5.0

cpe:2.3:a:oracle:jd_edwards_enterpriseone_orchestrator:9.2.5.0
Oracle » Jd Edwards Enterpriseone Orchestrator » Version: 9.2.5.1

cpe:2.3:a:oracle:jd_edwards_enterpriseone_orchestrator:9.2.5.1
Oracle » Jd Edwards Enterpriseone Orchestrator » Version: 9.2.5.3

cpe:2.3:a:oracle:jd_edwards_enterpriseone_orchestrator:9.2.5.3
Oracle » Jd Edwards Enterpriseone Tools » Version: N/A

cpe:2.3:a:oracle:jd_edwards_enterpriseone_tools:-
Oracle » Jd Edwards Enterpriseone Tools » Version: 4.0.1.0

cpe:2.3:a:oracle:jd_edwards_enterpriseone_tools:4.0.1.0
Oracle » Jd Edwards Enterpriseone Tools » Version: 9.1

cpe:2.3:a:oracle:jd_edwards_enterpriseone_tools:9.1
Oracle » Jd Edwards Enterpriseone Tools » Version: 9.1.5

cpe:2.3:a:oracle:jd_edwards_enterpriseone_tools:9.1.5
Oracle » Jd Edwards Enterpriseone Tools » Version: 9.2

cpe:2.3:a:oracle:jd_edwards_enterpriseone_tools:9.2
Oracle » Jd Edwards Enterpriseone Tools » Version: 9.2.0.0

cpe:2.3:a:oracle:jd_edwards_enterpriseone_tools:9.2.0.0
Oracle » Jd Edwards Enterpriseone Tools » Version: 9.2.4.0

cpe:2.3:a:oracle:jd_edwards_enterpriseone_tools:9.2.4.0
Oracle » Jd Edwards Enterpriseone Tools » Version: 9.2.4.2

cpe:2.3:a:oracle:jd_edwards_enterpriseone_tools:9.2.4.2
Oracle » Jd Edwards Enterpriseone Tools » Version: 9.2.5.0

cpe:2.3:a:oracle:jd_edwards_enterpriseone_tools:9.2.5.0
Oracle » Jd Edwards Enterpriseone Tools » Version: 9.2.5.3

cpe:2.3:a:oracle:jd_edwards_enterpriseone_tools:9.2.5.3
Oracle » Nosql Database » Version: 19.3.12

cpe:2.3:a:oracle:nosql_database:19.3.12
Oracle » Peoplesoft Enterprise Peopletools » Version: 8.57

cpe:2.3:a:oracle:peoplesoft_enterprise_peopletools:8.57
Oracle » Peoplesoft Enterprise Peopletools » Version: 8.58

cpe:2.3:a:oracle:peoplesoft_enterprise_peopletools:8.58
Oracle » Peoplesoft Enterprise Pt Peopletools » Version: 8.57

cpe:2.3:a:oracle:peoplesoft_enterprise_pt_peopletools:8.57
Oracle » Peoplesoft Enterprise Pt Peopletools » Version: 8.58

cpe:2.3:a:oracle:peoplesoft_enterprise_pt_peopletools:8.58
Oracle » Peoplesoft Enterprise Pt Peopletools » Version: 8.59

cpe:2.3:a:oracle:peoplesoft_enterprise_pt_peopletools:8.59
Oracle » Primavera Unifier » Version: 16.1

cpe:2.3:a:oracle:primavera_unifier:16.1
Oracle » Primavera Unifier » Version: 16.2

cpe:2.3:a:oracle:primavera_unifier:16.2
Oracle » Primavera Unifier » Version: 17.10

cpe:2.3:a:oracle:primavera_unifier:17.10
Oracle » Primavera Unifier » Version: 17.11

cpe:2.3:a:oracle:primavera_unifier:17.11
Oracle » Primavera Unifier » Version: 17.12

cpe:2.3:a:oracle:primavera_unifier:17.12
Oracle » Primavera Unifier » Version: 17.7

cpe:2.3:a:oracle:primavera_unifier:17.7
Oracle » Primavera Unifier » Version: 17.8

cpe:2.3:a:oracle:primavera_unifier:17.8
Oracle » Primavera Unifier » Version: 17.9

cpe:2.3:a:oracle:primavera_unifier:17.9
Oracle » Primavera Unifier » Version: 18.8

cpe:2.3:a:oracle:primavera_unifier:18.8
Oracle » Primavera Unifier » Version: 19.12

cpe:2.3:a:oracle:primavera_unifier:19.12
Oracle » Primavera Unifier » Version: 20.12

cpe:2.3:a:oracle:primavera_unifier:20.12
Oracle » Retail Customer Management And Segmentation Foundation » Version: 16.0

cpe:2.3:a:oracle:retail_customer_management_and_segmentation_foundation:16.0
Oracle » Retail Customer Management And Segmentation Foundation » Version: 16.0.1

cpe:2.3:a:oracle:retail_customer_management_and_segmentation_foundation:16.0.1
Oracle » Retail Customer Management And Segmentation Foundation » Version: 16.0.2

cpe:2.3:a:oracle:retail_customer_management_and_segmentation_foundation:16.0.2
Oracle » Retail Customer Management And Segmentation Foundation » Version: 17.0

cpe:2.3:a:oracle:retail_customer_management_and_segmentation_foundation:17.0
Oracle » Retail Customer Management And Segmentation Foundation » Version: 17.0.1

cpe:2.3:a:oracle:retail_customer_management_and_segmentation_foundation:17.0.1
Oracle » Retail Customer Management And Segmentation Foundation » Version: 18.0

cpe:2.3:a:oracle:retail_customer_management_and_segmentation_foundation:18.0
Oracle » Retail Customer Management And Segmentation Foundation » Version: 18.1

cpe:2.3:a:oracle:retail_customer_management_and_segmentation_foundation:18.1
Oracle » Retail Customer Management And Segmentation Foundation » Version: 19.0

cpe:2.3:a:oracle:retail_customer_management_and_segmentation_foundation:19.0
Oracle » Spatial Studio » Version: N/A

cpe:2.3:a:oracle:spatial_studio:-
Oracle » Spatial Studio » Version: 19.1.0

cpe:2.3:a:oracle:spatial_studio:19.1.0
Oracle » Sql Developer » Version: N/A

cpe:2.3:a:oracle:sql_developer:-
Oracle » Sql Developer » Version: 11.2.0.4

cpe:2.3:a:oracle:sql_developer:11.2.0.4
Oracle » Sql Developer » Version: 12.1.0.2

cpe:2.3:a:oracle:sql_developer:12.1.0.2
Oracle » Sql Developer » Version: 12.2.0.1

cpe:2.3:a:oracle:sql_developer:12.2.0.1
Oracle » Sql Developer » Version: 18c

cpe:2.3:a:oracle:sql_developer:18c
Oracle » Sql Developer » Version: 20.4.1.407.0006

cpe:2.3:a:oracle:sql_developer:20.4.1.407.0006
Oracle » Weblogic Server » Version: 12.2.1.4.0

cpe:2.3:a:oracle:weblogic_server:12.2.1.4.0
Oracle » Weblogic Server » Version: 14.1.1.0.0

cpe:2.3:a:oracle:weblogic_server:14.1.1.0.0
Quarkus » Quarkus » Version: 0.0.1

cpe:2.3:a:quarkus:quarkus:0.0.1
Quarkus » Quarkus » Version: 0.1.0

cpe:2.3:a:quarkus:quarkus:0.1.0
Quarkus » Quarkus » Version: 0.10.0

cpe:2.3:a:quarkus:quarkus:0.10.0
Quarkus » Quarkus » Version: 0.11.0

cpe:2.3:a:quarkus:quarkus:0.11.0
Quarkus » Quarkus » Version: 0.12.0

cpe:2.3:a:quarkus:quarkus:0.12.0
Quarkus » Quarkus » Version: 0.13.0

cpe:2.3:a:quarkus:quarkus:0.13.0
Quarkus » Quarkus » Version: 0.13.1

cpe:2.3:a:quarkus:quarkus:0.13.1
Quarkus » Quarkus » Version: 0.13.2

cpe:2.3:a:quarkus:quarkus:0.13.2
Quarkus » Quarkus » Version: 0.13.3

cpe:2.3:a:quarkus:quarkus:0.13.3
Quarkus » Quarkus » Version: 0.14.0

cpe:2.3:a:quarkus:quarkus:0.14.0
Quarkus » Quarkus » Version: 0.15.0

cpe:2.3:a:quarkus:quarkus:0.15.0
Quarkus » Quarkus » Version: 0.16.0

cpe:2.3:a:quarkus:quarkus:0.16.0
Quarkus » Quarkus » Version: 0.16.1

cpe:2.3:a:quarkus:quarkus:0.16.1
Quarkus » Quarkus » Version: 0.17.0

cpe:2.3:a:quarkus:quarkus:0.17.0
Quarkus » Quarkus » Version: 0.18.0

cpe:2.3:a:quarkus:quarkus:0.18.0
Quarkus » Quarkus » Version: 0.19.0

cpe:2.3:a:quarkus:quarkus:0.19.0
Quarkus » Quarkus » Version: 0.19.1

cpe:2.3:a:quarkus:quarkus:0.19.1
Quarkus » Quarkus » Version: 0.2.0

cpe:2.3:a:quarkus:quarkus:0.2.0
Quarkus » Quarkus » Version: 0.20.0

cpe:2.3:a:quarkus:quarkus:0.20.0
Quarkus » Quarkus » Version: 0.21.0

cpe:2.3:a:quarkus:quarkus:0.21.0
Quarkus » Quarkus » Version: 0.21.1

cpe:2.3:a:quarkus:quarkus:0.21.1
Quarkus » Quarkus » Version: 0.21.2

cpe:2.3:a:quarkus:quarkus:0.21.2
Quarkus » Quarkus » Version: 0.22.0

cpe:2.3:a:quarkus:quarkus:0.22.0
Quarkus » Quarkus » Version: 0.23.0

cpe:2.3:a:quarkus:quarkus:0.23.0
Quarkus » Quarkus » Version: 0.23.1

cpe:2.3:a:quarkus:quarkus:0.23.1
Quarkus » Quarkus » Version: 0.23.2

cpe:2.3:a:quarkus:quarkus:0.23.2
Quarkus » Quarkus » Version: 0.24.0

cpe:2.3:a:quarkus:quarkus:0.24.0
Quarkus » Quarkus » Version: 0.25.0

cpe:2.3:a:quarkus:quarkus:0.25.0
Quarkus » Quarkus » Version: 0.26.0

cpe:2.3:a:quarkus:quarkus:0.26.0
Quarkus » Quarkus » Version: 0.26.1

cpe:2.3:a:quarkus:quarkus:0.26.1
Quarkus » Quarkus » Version: 0.27.0

cpe:2.3:a:quarkus:quarkus:0.27.0
Quarkus » Quarkus » Version: 0.28.0

cpe:2.3:a:quarkus:quarkus:0.28.0
Quarkus » Quarkus » Version: 0.28.1

cpe:2.3:a:quarkus:quarkus:0.28.1
Quarkus » Quarkus » Version: 0.3.0

cpe:2.3:a:quarkus:quarkus:0.3.0
Quarkus » Quarkus » Version: 0.4.0

cpe:2.3:a:quarkus:quarkus:0.4.0
Quarkus » Quarkus » Version: 0.5.0

cpe:2.3:a:quarkus:quarkus:0.5.0
Quarkus » Quarkus » Version: 0.6.0

cpe:2.3:a:quarkus:quarkus:0.6.0
Quarkus » Quarkus » Version: 0.7.0

cpe:2.3:a:quarkus:quarkus:0.7.0
Quarkus » Quarkus » Version: 0.8.0

cpe:2.3:a:quarkus:quarkus:0.8.0
Quarkus » Quarkus » Version: 0.9.0

cpe:2.3:a:quarkus:quarkus:0.9.0
Quarkus » Quarkus » Version: 0.9.1

cpe:2.3:a:quarkus:quarkus:0.9.1
Quarkus » Quarkus » Version: 1.0.0

cpe:2.3:a:quarkus:quarkus:1.0.0
Quarkus » Quarkus » Version: 1.0.1

cpe:2.3:a:quarkus:quarkus:1.0.1
Quarkus » Quarkus » Version: 1.1.0

cpe:2.3:a:quarkus:quarkus:1.1.0
Quarkus » Quarkus » Version: 1.1.1

cpe:2.3:a:quarkus:quarkus:1.1.1
Quarkus » Quarkus » Version: 1.2.0

cpe:2.3:a:quarkus:quarkus:1.2.0
Quarkus » Quarkus » Version: 1.2.1

cpe:2.3:a:quarkus:quarkus:1.2.1
Quarkus » Quarkus » Version: 1.3.0

cpe:2.3:a:quarkus:quarkus:1.3.0
Quarkus » Quarkus » Version: 1.3.1

cpe:2.3:a:quarkus:quarkus:1.3.1
Quarkus » Quarkus » Version: 1.3.2

cpe:2.3:a:quarkus:quarkus:1.3.2
Quarkus » Quarkus » Version: 1.3.3

cpe:2.3:a:quarkus:quarkus:1.3.3
Quarkus » Quarkus » Version: 1.3.4

cpe:2.3:a:quarkus:quarkus:1.3.4
Quarkus » Quarkus » Version: 1.4.0

cpe:2.3:a:quarkus:quarkus:1.4.0
Quarkus » Quarkus » Version: 1.4.1

cpe:2.3:a:quarkus:quarkus:1.4.1
Quarkus » Quarkus » Version: 1.4.2

cpe:2.3:a:quarkus:quarkus:1.4.2
Quarkus » Quarkus » Version: 1.5.0

cpe:2.3:a:quarkus:quarkus:1.5.0
Quarkus » Quarkus » Version: 1.5.1

cpe:2.3:a:quarkus:quarkus:1.5.1
Quarkus » Quarkus » Version: 1.5.2

cpe:2.3:a:quarkus:quarkus:1.5.2
Quarkus » Quarkus » Version: 1.6.0

cpe:2.3:a:quarkus:quarkus:1.6.0
Quarkus » Quarkus » Version: 1.6.1

cpe:2.3:a:quarkus:quarkus:1.6.1
Quarkus » Quarkus » Version: 1.7.0

cpe:2.3:a:quarkus:quarkus:1.7.0
Quarkus » Quarkus » Version: 1.7.1

cpe:2.3:a:quarkus:quarkus:1.7.1
Quarkus » Quarkus » Version: 1.7.2

cpe:2.3:a:quarkus:quarkus:1.7.2
Quarkus » Quarkus » Version: 1.7.3

cpe:2.3:a:quarkus:quarkus:1.7.3
Quarkus » Quarkus » Version: 1.7.4

cpe:2.3:a:quarkus:quarkus:1.7.4
Quarkus » Quarkus » Version: 1.7.5

cpe:2.3:a:quarkus:quarkus:1.7.5

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-13956

Products

Pricing

Contact Us