CVE-2020-35210
MEDIUMAtomix < 3.1.5 - Denial of Service via Raft Session Flooding
Title source: llmDescription
A vulnerability in Atomix v3.1.5 allows attackers to cause a denial of service (DoS) via a Raft session flooding attack using Raft OpenSessionRequest messages.
References (1)
Core 1
Core References
Third Party Advisory x_refsource_misc
https://docs.google.com/presentation/d/1eZznIciFI06_5UJrXvlLugH2-nmjfYpQO5NyNMc9RxU/edit?usp=sharing
Scores
CVSS v3
6.5
EPSS
0.0088
EPSS Percentile
54.4%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Details
CWE
CWE-770
Status
published
Products (2)
atomix/atomix
< 3.1.5
io.atomix/atomix
0Maven
Published
Dec 16, 2021
Tracked Since
Feb 18, 2026