CVE-2019-20445

Risk Scores

Affected Products

Exploit Intelligence

• https://github.com/netty/netty/issues/9861 (nist-nvd)
• owasp-suppressions.xml (github-poc)
• owasp-suppressions.xml (github-poc)
• owasp-suppressions.xml (github-poc)
• owasp-suppressions.xml (github-poc)
• owasp-suppressions.xml (github-poc)
• owasp-suppressions.xml (github-poc)
• owasp-suppressions.xml (github-poc)
• owasp-suppressions.xml (github-poc)
• druid-612f0710.json (github-poc)

…and 7 more exploits

Timeline

• Jan 29, 2020 CVE Published
• Apr 14, 2021 EPSS Score
• Aug 24, 2021 EPSS Score
• Oct 26, 2021 EPSS Score
• Dec 27, 2021 EPSS Score
• Feb 4, 2022 EPSS Score
• Apr 1, 2022 EPSS Score
• Jul 3, 2022 EPSS Score
• Nov 6, 2022 EPSS Score
• Mar 7, 2023 EPSS Score
• Mar 11, 2023 EPSS Score
• Jul 14, 2023 EPSS Score

References

• https://ubuntu.com/security/CVE-2019-20445 third-party-advisory
• https://github.com/netty/netty/issues/9861 third-party-advisory
• https://github.com/netty/netty/compare/netty-4.1.43.Final...netty-4.1.44.Final third-party-advisory
• https://lists.apache.org/thread.html/r70b1ff22ee80e8101805b9a473116dd33265709007d2deb6f8c80bf2@%3Ccommits.druid.apache.org%3E third-party-advisory
• https://lists.apache.org/thread.html/re45ee9256d3233c31d78e59ee59c7dc841c7fbd83d0769285b41e948@%3Ccommits.druid.apache.org%3E third-party-advisory
• https://ubuntu.com/security/notices/USN-4532-1 vendor-advisory
• https://ubuntu.com/security/notices/USN-4600-1 vendor-advisory
• https://ubuntu.com/security/notices/USN-4600-2 vendor-advisory
• https://www.cve.org/CVERecord?id=CVE-2019-20445 third-party-advisory
• Multiples vulnérabilités dans les produits Splunk advisory