VDB

RHSA-2020%3A2850

RHSA-2020%3A2850 PUBLISHED CVSS 7.5 HIGH

An update for nghttp2 is now available for Red Hat Enterprise Linux 8.0 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Risk Scores

CVSS 3.1
7.5
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected Products

VendorProductVersions
Red Hat Enterprise Linux BaseOS E4S (v. 8.0)
libnghttp2
nghttp2

Timeline

  • Jul 7, 2020 CVE Published
  • Nov 21, 2025 CVE Updated
  • Apr 2, 2026 Distribution Patch
  • Apr 2, 2026 Distribution Patch
  • Apr 2, 2026 Security Advisory
  • May 1, 2026 Security Advisory
Open in Interactive Console →
$ Console Community · 100/wk Open console ›