vulnerability

Ubuntu: (CVE-2020-14326): resteasy vulnerability

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
5	(AV:N/AC:L/Au:N/C:N/I:N/A:P)	Jun 2, 2021	Jun 26, 2025	Mar 27, 2026

Severity

CVSS

(AV:N/AC:L/Au:N/C:N/I:N/A:P)

Published

Jun 2, 2021

Added

Jun 26, 2025

Modified

Mar 27, 2026

Description

A vulnerability was found in RESTEasy, where RootNode incorrectly caches routes. This issue results in hash flooding, leading to slower requests with higher CPU time spent searching and adding the entry. This flaw allows an attacker to cause a denial of service.

Solution

no-fix-ubuntu-package

References

CVE-2020-14326
https://attackerkb.com/topics/CVE-2020-14326
CWE-400
EUVD-EUVD-2022-1284
https://bugzilla.redhat.com/show_bug.cgi?id=1855826
https://euvd.enisa.europa.eu/vulnerability/EUVD-2022-1284
https://issues.redhat.com/browse/RESTEASY-2643
https://www.cve.org/CVERecord?id=CVE-2020-14326

Rapid7 Labs

2026 Global Threat Landscape Report

The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.

Get report