Premature Connection Closure Vulnerability in Reactor Netty HttpServer

CVE-2020-5403 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Reactor Netty HttpServer, versions 0.9.3 and 0.9.4, is exposed to a URISyntaxException that causes the connection to be closed prematurely instead of producing a 400 response.

Learn more about our Cis Benchmark Audit For Server Software.