A denial-of-service vulnerability exists in the WS-Addressing plugin functionality of Genivia gSOAP 2.8.107. A specially crafted SOAP request can lead to denial of service. An attacker can send an HTTP request to trigger this vulnerability.
References
Link | Resource |
---|---|
https://lists.debian.org/debian-lts-announce/2024/02/msg00015.html | |
https://talosintelligence.com/vulnerability_reports/TALOS-2020-1186 | Exploit Technical Description Third Party Advisory |
Configurations
History
01 Mar 2024, 02:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
16 Jan 2024, 18:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
07 Nov 2023, 03:16
Type | Values Removed | Values Added |
---|---|---|
References |
|
|
23 Mar 2021, 01:14
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:o:fedoraproject:fedora:34:*:*:*:*:*:*:* | |
References | (FEDORA) https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/JINMAJB4WQASTKTNSPQL3V7YMSYPKIA2/ - Mailing List, Third Party Advisory |
19 Mar 2021, 23:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
17 Mar 2021, 15:00
Type | Values Removed | Values Added |
---|---|---|
References | (FEDORA) https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/SMTJ3SJJ22SFLBLPKFADV7NVBH7UFA23/ - Mailing List, Third Party Advisory | |
CPE | cpe:2.3:o:fedoraproject:fedora:33:*:*:*:*:*:*:* |
17 Mar 2021, 04:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
14 Feb 2021, 00:21
Type | Values Removed | Values Added |
---|---|---|
CVSS |
v2 : v3 : |
v2 : 5.0
v3 : 7.5 |
CWE | CWE-476 | |
References | (MISC) https://talosintelligence.com/vulnerability_reports/TALOS-2020-1186 - Exploit, Technical Description, Third Party Advisory | |
CPE | cpe:2.3:a:genivia:gsoap:2.8.107:*:*:*:*:*:*:* |
10 Feb 2021, 20:20
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2021-02-10 20:15
Updated : 2024-03-01 02:15
NVD link : CVE-2020-13575
Mitre link : CVE-2020-13575
CVE.ORG link : CVE-2020-13575
JSON object : View
Products Affected
genivia
- gsoap
fedoraproject
- fedora
CWE
CWE-476
NULL Pointer Dereference