Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Python Uncontrolled Resource Consumption Vulnerability - CVE-2020-8492 - Vulnerability Database
Python

Python Uncontrolled Resource Consumption Vulnerability - CVE-2020-8492

Medium
Reference: CVE-2020-8492
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2020-8492
Title: Python Uncontrolled Resource Consumption Vulnerability
Overview:

Python 2.7 through 2.7.17 3.5 through 3.5.9 3.6 through 3.6.10 3.7 through 3.7.6 and 3.8 through 3.8.1 allows an HTTP server to conduct Regular Expression Denial of Service (ReDoS) attacks against a client because of urllib.request.AbstractBasicAuthHandler catastrophic backtracking.