CVE-2020-11996

A specially crafted sequence of HTTP/2 requests sent to Apache Tomcat 10.0.0-M1 to 10.0.0-M5, 9.0.0.M1 to 9.0.35 and 8.5.0 to 8.5.55 could trigger high CPU usage for several seconds. If a sufficient number of such requests were made on concurrent HTTP/2 connections, the server could become unresponsive.

Published: Jun 26, 2020
Updated: Nov 8, 2023
CVE: CVE-2020-11996
GHSA: GHSA-53hp-jpwq-2jgq
Severity: High
Exploit:

CVSS v3:

Severity: High
Score: 7.5
AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CVSS v2:

Severity: Medium
Score: 5
AV:N/AC:L/Au:N/C:N/I:N/A:P

CWEs:

CWE-400

Affected Software
References

Software	From	Fixed in
apache / tomcat	9.0.0-milestone1	9.0.0-milestone1.x
apache / tomcat	9.0.0-milestone10	9.0.0-milestone10.x
apache / tomcat	9.0.0-milestone11	9.0.0-milestone11.x
apache / tomcat	9.0.0-milestone12	9.0.0-milestone12.x
apache / tomcat	9.0.0-milestone13	9.0.0-milestone13.x
apache / tomcat	9.0.0-milestone14	9.0.0-milestone14.x
apache / tomcat	9.0.0-milestone15	9.0.0-milestone15.x
apache / tomcat	9.0.0-milestone16	9.0.0-milestone16.x
apache / tomcat	9.0.0-milestone17	9.0.0-milestone17.x
apache / tomcat	9.0.0-milestone18	9.0.0-milestone18.x
apache / tomcat	9.0.0-milestone19	9.0.0-milestone19.x
apache / tomcat	9.0.0-milestone2	9.0.0-milestone2.x
apache / tomcat	9.0.0-milestone20	9.0.0-milestone20.x
apache / tomcat	9.0.0-milestone21	9.0.0-milestone21.x
apache / tomcat	9.0.0-milestone22	9.0.0-milestone22.x
apache / tomcat	9.0.0-milestone23	9.0.0-milestone23.x
apache / tomcat	9.0.0-milestone24	9.0.0-milestone24.x
apache / tomcat	9.0.0-milestone25	9.0.0-milestone25.x
apache / tomcat	9.0.0-milestone26	9.0.0-milestone26.x
apache / tomcat	9.0.0-milestone27	9.0.0-milestone27.x
apache / tomcat	9.0.0-milestone3	9.0.0-milestone3.x
apache / tomcat	9.0.0-milestone4	9.0.0-milestone4.x
apache / tomcat	9.0.0-milestone5	9.0.0-milestone5.x
apache / tomcat	9.0.0-milestone6	9.0.0-milestone6.x
apache / tomcat	9.0.0-milestone7	9.0.0-milestone7.x
apache / tomcat	9.0.0-milestone8	9.0.0-milestone8.x
apache / tomcat	9.0.0-milestone9	9.0.0-milestone9.x
apache / tomcat	10.0.0-milestone3	10.0.0-milestone3.x
apache / tomcat	10.0.0-milestone4	10.0.0-milestone4.x
apache / tomcat	10.0.0-milestone2	10.0.0-milestone2.x
apache / tomcat	10.0.0-milestone1	10.0.0-milestone1.x
apache / tomcat	10.0.0-milestone5	10.0.0-milestone5.x
apache / tomcat	9.0.0	9.0.35.x
apache / tomcat	8.5.0	8.5.55.x
canonical / ubuntu_linux	20.04	20.04.x
oracle / workload_manager	18c	18c.x
oracle / workload_manager	19c	19c.x
oracle / workload_manager	12.2.0.1	12.2.0.1.x
oracle / siebel_ui_framework	-	20.12.x
oracle / mysql_enterprise_monitor	-	8.0.21.x
opensuse / leap	15.1	15.1.x
opensuse / leap	15.2	15.2.x
debian / debian_linux	9.0	9.0.x
debian / debian_linux	10.0	10.0.x
netapp / oncommand_system_manager	3.0	3.0.x
netapp / oncommand_system_manager	3.1.3	3.1.3.x
org.apache.tomcat / tomcat	10.0.0-M1	10.0.0-M5
org.apache.tomcat / tomcat	9.0.0.M1	9.0.35
org.apache.tomcat / tomcat	8.5.0	8.5.55

Vulnerability Database

289,599

CVE-2020-11996