Security Advisory

CVE-2020-13128

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2020-05-17 23:04:55

Last updated 2024-08-04 12:11:19

Assigner mitre

State PUBLISHED

Description

An issue was discovered in Manolo GWTUpload 1.0.3. server/UploadServlet.java (the servlet for handling file upload) accepts a delay parameter that causes a thread to sleep. It can be abused to cause all of a servers threads to sleep, leading to denial of service.

← Browse all CVEs View on cve.org ↗