CVE-2020-5403

Summary

Reactor Netty HttpServer, versions 0.9.3 and 0.9.4, is exposed to a URISyntaxException that causes the connection to be closed prematurely instead of producing a 400 response.

Affected Software

VendorProductVersion RangeStatus
PivotalReactor Netty0.9 v0.9.3.RELEASEaffected
PivotalReactor Netty0.9 v0.9.4.RELEASEaffected

Weaknesses

  • CWE-20: CWE-20: Improper Input Validation

ADP Enrichment

CVE Program Container

Additional References

References