CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-14340

A vulnerability was discovered in XNIO where file descriptor leak caused by growing amounts of NIO Selector file handles between garbage collection cycles. It may allow the attacker to cause a denial of service. It affects XNIO versions 3.6.0.Beta1 through 3.8.1.Final.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 62.6%

CVSS Severity

CVSS v3 Score 5.9

CVSS v2 Score 4.3

References

Products affected by CVE-2020-14340

Oracle » Communications Cloud Native Core Console » Version: 1.9.0

cpe:2.3:a:oracle:communications_cloud_native_core_console:1.9.0
Oracle » Communications Cloud Native Core Network Repository Function » Version: 1.14.0

cpe:2.3:a:oracle:communications_cloud_native_core_network_repository_function:1.14.0
Oracle » Communications Cloud Native Core Policy » Version: 1.14.0

cpe:2.3:a:oracle:communications_cloud_native_core_policy:1.14.0
Oracle » Communications Cloud Native Core Security Edge Protection Proxy » Version: 1.15.0

cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:1.15.0
Oracle » Communications Cloud Native Core Service Communication Proxy » Version: 1.14.0

cpe:2.3:a:oracle:communications_cloud_native_core_service_communication_proxy:1.14.0
Oracle » Communications Cloud Native Core Unified Data Repository » Version: 1.14.0

cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:1.14.0
Redhat » Jboss Brms » Version: 5

cpe:2.3:a:redhat:jboss_brms:5
Redhat » Jboss Brms » Version: 6

cpe:2.3:a:redhat:jboss_brms:6
Redhat » Jboss Data Grid » Version: 6.0.0

cpe:2.3:a:redhat:jboss_data_grid:6.0.0
Redhat » Jboss Data Grid » Version: 7.0.0

cpe:2.3:a:redhat:jboss_data_grid:7.0.0
Redhat » Jboss Data Virtualization » Version: 6.0.0

cpe:2.3:a:redhat:jboss_data_virtualization:6.0.0
Redhat » Jboss Enterprise Application Platform » Version: 5.0.0

cpe:2.3:a:redhat:jboss_enterprise_application_platform:5.0.0
Redhat » Jboss Enterprise Application Platform » Version: 6.0.0

cpe:2.3:a:redhat:jboss_enterprise_application_platform:6.0.0
Redhat » Jboss Fuse » Version: 6.0.0

cpe:2.3:a:redhat:jboss_fuse:6.0.0
Redhat » Jboss Fuse » Version: 7.0.0

cpe:2.3:a:redhat:jboss_fuse:7.0.0
Redhat » Jboss Operations Network » Version: 3.0

cpe:2.3:a:redhat:jboss_operations_network:3.0
Redhat » Jboss Soa Platform » Version: 5

cpe:2.3:a:redhat:jboss_soa_platform:5
Redhat » Xnio » Version: 3.6.0

cpe:2.3:a:redhat:xnio:3.6.0
Redhat » Xnio » Version: 3.6.1

cpe:2.3:a:redhat:xnio:3.6.1
Redhat » Xnio » Version: 3.6.2

cpe:2.3:a:redhat:xnio:3.6.2
Redhat » Xnio » Version: 3.6.3

cpe:2.3:a:redhat:xnio:3.6.3
Redhat » Xnio » Version: 3.6.4

cpe:2.3:a:redhat:xnio:3.6.4
Redhat » Xnio » Version: 3.6.5

cpe:2.3:a:redhat:xnio:3.6.5
Redhat » Xnio » Version: 3.6.6

cpe:2.3:a:redhat:xnio:3.6.6
Redhat » Xnio » Version: 3.6.7

cpe:2.3:a:redhat:xnio:3.6.7
Redhat » Xnio » Version: 3.6.8

cpe:2.3:a:redhat:xnio:3.6.8
Redhat » Xnio » Version: 3.6.9

cpe:2.3:a:redhat:xnio:3.6.9
Redhat » Xnio » Version: 3.7.0

cpe:2.3:a:redhat:xnio:3.7.0
Redhat » Xnio » Version: 3.7.1

cpe:2.3:a:redhat:xnio:3.7.1
Redhat » Xnio » Version: 3.7.2

cpe:2.3:a:redhat:xnio:3.7.2
Redhat » Xnio » Version: 3.7.3

cpe:2.3:a:redhat:xnio:3.7.3
Redhat » Xnio » Version: 3.7.4

cpe:2.3:a:redhat:xnio:3.7.4
Redhat » Xnio » Version: 3.7.5

cpe:2.3:a:redhat:xnio:3.7.5
Redhat » Xnio » Version: 3.7.6

cpe:2.3:a:redhat:xnio:3.7.6
Redhat » Xnio » Version: 3.7.7

cpe:2.3:a:redhat:xnio:3.7.7
Redhat » Xnio » Version: 3.7.8

cpe:2.3:a:redhat:xnio:3.7.8
Redhat » Xnio » Version: 3.8.0

cpe:2.3:a:redhat:xnio:3.8.0
Redhat » Xnio » Version: 3.8.1

cpe:2.3:a:redhat:xnio:3.8.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-14340

Products

Pricing

Contact Us