Is CVE-2020-14326 actively exploited?

CVE-2020-14326 has no public evidence of in-the-wild exploitation as of 2024-11-21.

What is the CVSS score for CVE-2020-14326?

CVE-2020-14326 has a CVSS score of 7.5 (HIGH severity). Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H.

How do I patch CVE-2020-14326?

Patch guidance is available from redhat security advisories. CVEDatabase generates AI-assisted remediation guidance on demand for CVE-2020-14326.

Fix CVE-2020-14326 - HIGH redhat integration camel k

Q: Which products are affected by CVE-2020-14326?

3 products: redhat integration camel k, redhat resteasy, netapp oncommand insight.

Description

A vulnerability was found in RESTEasy, where RootNode incorrectly caches routes. This issue results in hash flooding, leading to slower requests with higher CPU time spent searching and adding the entry. This flaw allows an attacker to cause a denial of service.

CVSS Metrics

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Attack Vector: network
Complexity: low
Privileges: none
User Action: none
Scope: unchanged
Confidentiality: none
Integrity: none
Availability: high
Weaknesses: CWE-400NVD-CWE-Other

Metadata

Primary Vendor: REDHAT
Published: 6/2/2021
Last Modified: 11/21/2024
Source: NIST NVD
Note: Verify all details with official vendor sources before applying patches.

CVE-2020-14326

Description

CVSS Metrics

Metadata

Affected Products

Remediation Guidance

Executive Summary