PT-2020-12217 · Janus · Janus
Published
2020-03-14
·
Updated
2020-03-17
·
CVE-2020-10577
CVSS v2.0
5.8
Medium
| Vector | AV:N/AC:M/Au:N/C:P/I:P/A:N |
Name of the Vulnerable Software and Affected Versions
Janus versions through 0.9.1
Description
An issue was discovered in the janus.c file, where multiple concurrent threads misuse the source property of a session, leading to a race condition when claiming sessions.
Recommendations
For versions through 0.9.1, at the moment, there is no information about a newer version that contains a fix for this issue.
Fix
Race Condition
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Janus