CVE-2021-20718
published 2021-05-20CVE-2021-20718: mod_auth_openidc 2.4.0 to 2.4.7 allows a remote attacker to cause a denial-of-service (DoS) condition via unspecified vectors.
high7.5CVSS 3.1
AVNACLPRNUINSUCNINAH
mod_auth_openidc 2.4.0 to 2.4.7 allows a remote attacker to cause a denial-of-service (DoS) condition via unspecified vectors.
Affected
7 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | libapache2-mod-auth-openidc | < libapache2-mod-auth-openidc 2.4.4.1-2 (bookworm) | libapache2-mod-auth-openidc 2.4.4.1-2 (bookworm) |
| fedoraproject | fedora | — | — |
| fedoraproject | fedora | — | — |
| msrc | cbl2_mod_auth_openidc_2.4.14.2-1_on_cbl_mariner_2.0 | — | — |
| openidc | mod_auth_openidc | 2.4.0 – 2.4.7 | — |
| oracle | essbase | < 21.3 | 21.3 |
| zmartzone | mod_auth_openidc | — | — |
CVSS provenance
nvdv3.17.5HIGHCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
osv7.5HIGH