Acunetix DAST powers runtime capabilities for Invicti’s complete AppSec platform. Visit Invicti for more.

WEB APPLICATION VULNERABILITIES Standard & Premium

Jboss EAP Reachable Assertion Vulnerability (CVE-2020-25710)

Description

A flaw was found in OpenLDAP in versions before 2.4.56. This flaw allows an attacker who sends a malicious packet processed by OpenLDAP to force a failed assertion in csnNormalize23(). The highest threat from this vulnerability is to system availability.

Remediation

References

Related Vulnerabilities

WordPress Plugin Wordpress Countdown Widget Cross-Site Scripting (3.1.9.2)

WordPress Plugin Ultimate Member-User Profile, Registration, Login, Member Directory, Content Restriction & Membership Cross-Site Request Forgery (2.0.6)

WordPress Plugin Wordfence Security-Firewall & Malware Scan Cross-Site Scripting (3.8.1)

Jenkins Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2019-10384)

WordPress Plugin Contact Form by BestWebSoft Email Header Injection (3.83)

Severity

High

Classification

CVE-2020-25710 CWE-617 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Tags

Missing Update Known Vulnerabilities