MEDIUM🇵🇱 Wersja polska

CVE-2020-16843

CVSS 5.9v3.1pub. 2020-08-04upd. 2024-11-21

In Firecracker 0.20.x before 0.20.1 and 0.21.x before 0.21.2, the network stack can freeze under heavy ingress traffic. This can result in a denial of service on the microVM when it is configured with a single network interface, and an availability problem for the microVM network interface on which the issue is triggered.

CVSS Vector
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
  • Amazon Firecracker

    APP
    Amazon
    0.20.00.21.00.21.1
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
DoS
CWE
References

Related vulnerabilities

CVE-2019-18960CRITICAL9.8ten sam produkt

Firecracker vsock implementation buffer overflow in versions 0.18.0 and 0.19.0. This can result in potentially...

CVE-2026-5747HIGH8.7ten sam produkt

An out-of-bounds write issue in the virtio PCI transport in Firecracker 1.13.0 through 1.14.3 and 1.15.0 on x8...

CVE-2020-27174HIGH7.5ten sam produkt

In Amazon AWS Firecracker before 0.21.3, and 0.22.x before 0.22.1, the serial console buffer can grow its memo...

CVE-2026-1386MEDIUM6.0ten sam produkt

A UNIX symbolic link following issue in the jailer component in Firecracker version v1.13.1 and earlier and 1...

CVE-2026-35560CRITICAL9.1PL ✓ten sam vendor

Nieprawidłowa walidacja certyfikatów w Amazon Athena ODBC Driver — atak MITM