CVE-2020-5403
- Source
- https://cve.org/CVERecord?id=CVE-2020-5403
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2020-5403.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2020-5403
- Aliases
- Published
- 2020-03-03T19:15:15.210Z
- Modified
- 2026-04-10T04:27:39.172484Z
- Severity
-
- 7.5 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
- Summary
- [none]
- Details
-
Reactor Netty HttpServer, versions 0.9.3 and 0.9.4, is exposed to a URISyntaxException that causes the connection to be closed prematurely instead of producing a 400 response.
- References
Affected packages
Git / github.com/reactor/reactor-netty
Affected ranges
- Type
- GIT
- Repo
- https://github.com/reactor/reactor-netty
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affected
- Database specific
{ "versions": [ { "introduced": "0" }, { "last_affected": "0.9.3" }, { "introduced": "0" }, { "last_affected": "0.9.4" } ] }
Affected versions
0.*
0.8.0.M2
v0.*
v0.5.1.RELEASE
v0.5.2.RELEASE
v0.6.0.RELEASE
v0.6.1.RELEASE
v0.6.2.RELEASE
v0.6.3.RELEASE
v0.6.4.RELEASE
v0.7.0.M1
v0.7.0.M2
v0.7.0.RC1
v0.7.0.RELEASE
v0.7.1.RELEASE
v0.7.2.RELEASE
v0.7.3.RELEASE
v0.7.4.RELEASE
v0.7.5.RELEASE
v0.7.6.RELEASE
v0.7.7.RELEASE
v0.8.0.M1
v0.8.0.M3
v0.8.0.RELEASE
v0.8.1.RELEASE
v0.8.2.RELEASE
v0.8.3.RELEASE
v0.8.4.RELEASE
v0.8.5.RELEASE
v0.9.0.M1
v0.9.0.M2
v0.9.0.M3
v0.9.0.RC1
v0.9.0.RELEASE
v0.9.1.RELEASE
v0.9.2.RELEASE
v0.9.3.RELEASE
v0.9.4.RELEASE