---

CVE-2020-13950 - log back

CVE-2020-13950 edited at 09 Jun 2021 08:11:41
Severity	- Unknown + Low
Remote	- Unknown + Remote
Type	- Unknown + Denial of service
Description	+ In Apache HTTP Server versions 2.4.41 to 2.4.46, mod_proxy_http can be made to crash (NULL pointer dereference) with specially crafted requests using both Content-Length and Transfer-Encoding headers, leading to a Denial of Service.
References	+ https://httpd.apache.org/security/vulnerabilities_24.html#CVE-2020-13950

CVE-2020-13950 created at 09 Jun 2021 08:07:45
Severity	+ Unknown
Remote	+ Unknown
Type	+ Unknown
Description
References
Notes