{"api_version":"1","generated_at":"2026-04-23T02:16:56+00:00","cve":"CVE-2020-15166","urls":{"html":"https://cve.report/CVE-2020-15166","api":"https://cve.report/api/cve/CVE-2020-15166.json","docs":"https://cve.report/api","cve_org":"https://www.cve.org/CVERecord?id=CVE-2020-15166","nvd":"https://nvd.nist.gov/vuln/detail/CVE-2020-15166"},"summary":{"title":"CVE-2020-15166","description":"In ZeroMQ before version 4.3.3, there is a denial-of-service vulnerability. Users with TCP transport public endpoints, even with CURVE/ZAP enabled, are impacted. If a raw TCP socket is opened and connected to an endpoint that is fully configured with CURVE/ZAP, legitimate clients will not be able to exchange any message. Handshakes complete successfully, and messages are delivered to the library, but the server application never receives them. This is patched in version 4.3.3.","state":"PUBLIC","assigner":"security-advisories@github.com","published_at":"2020-09-11 16:15:00","updated_at":"2023-11-07 03:17:00"},"problem_types":["CWE-400"],"metrics":[],"references":[{"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/BZ5IMNQXDB52JFBXHFLK4AHVORFELNNG/","name":"FEDORA-2020-08402f4071","refsource":"FEDORA","tags":[],"title":"[SECURITY] Fedora 32 Update: zeromq-4.3.3-1.fc32 - package-announce - Fedora Mailing-Lists","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YFW2ZELCCPS4VLU4OSJOH5YL6KFKTFYW/","name":"FEDORA-2020-5460fcf6bd","refsource":"","tags":[],"title":"[SECURITY] Fedora 33 Update: zeromq-4.3.3-1.fc33 - package-announce - Fedora Mailing-Lists","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"https://security.gentoo.org/glsa/202009-12","name":"GLSA-202009-12","refsource":"GENTOO","tags":["Third Party Advisory"],"title":"ZeroMQ: Denial of service (GLSA 202009-12) — Gentoo security","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"https://github.com/zeromq/libzmq/pull/3913","name":"https://github.com/zeromq/libzmq/pull/3913","refsource":"MISC","tags":["Patch","Third Party Advisory"],"title":"problem: zeromq connects peer before handshake is complete by somdoron · Pull Request #3913 · zeromq/libzmq · GitHub","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"https://github.com/zeromq/libzmq/pull/3973","name":"https://github.com/zeromq/libzmq/pull/3973","refsource":"MISC","tags":["Patch","Third Party Advisory"],"title":"Problem: test_security_zap occasionally segfaults by bluca · Pull Request #3973 · zeromq/libzmq · GitHub","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"https://lists.debian.org/debian-lts-announce/2020/11/msg00017.html","name":"[debian-lts-announce] 20201110 [SECURITY] [DLA 2443-1] zeromq3 security update","refsource":"MLIST","tags":[],"title":"[SECURITY] [DLA 2443-1] zeromq3 security update","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BZ5IMNQXDB52JFBXHFLK4AHVORFELNNG/","name":"FEDORA-2020-08402f4071","refsource":"","tags":[],"title":"[SECURITY] Fedora 32 Update: zeromq-4.3.3-1.fc32 - package-announce - Fedora Mailing-Lists","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/YFW2ZELCCPS4VLU4OSJOH5YL6KFKTFYW/","name":"FEDORA-2020-5460fcf6bd","refsource":"FEDORA","tags":[],"title":"[SECURITY] Fedora 33 Update: zeromq-4.3.3-1.fc33 - package-announce - Fedora Mailing-Lists","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"https://github.com/zeromq/libzmq/security/advisories/GHSA-25wp-cf8g-938m","name":"https://github.com/zeromq/libzmq/security/advisories/GHSA-25wp-cf8g-938m","refsource":"CONFIRM","tags":["Patch","Third Party Advisory"],"title":"Denial-of-Service on CURVE/ZAP-protected servers by unauthenticated clients · Advisory · zeromq/libzmq · GitHub","mime":"text/html","httpstatus":"200","archivestatus":"0"},{"url":"https://www.cve.org/CVERecord?id=CVE-2020-15166","name":"CVE Program record","refsource":"CVE.ORG","tags":["canonical"]},{"url":"https://nvd.nist.gov/vuln/detail/CVE-2020-15166","name":"NVD vulnerability detail","refsource":"NVD","tags":["canonical","analysis"]}],"affected":[],"timeline":[],"solutions":[],"workarounds":[],"exploits":[],"credits":[],"nvd_cpes":[{"cve_year":"2020","cve_id":"15166","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"o","cpe4":"debian","cpe5":"debian_linux","cpe6":"9.0","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2020","cve_id":"15166","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"o","cpe4":"fedoraproject","cpe5":"fedora","cpe6":"32","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2020","cve_id":"15166","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"o","cpe4":"fedoraproject","cpe5":"fedora","cpe6":"33","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2020","cve_id":"15166","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"zeromq","cpe5":"libzmq","cpe6":"*","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2020","cve_id":"15166","vulnerable":"1","versionEndIncluding":"1","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"zeromq","cpe5":"libzmq","cpe6":"*","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"}],"vendor_comments":[],"enrichments":{"kev":null,"epss":null,"legacy_qids":[{"cve":"CVE-2020-15166","qid":"500830","title":"Alpine Linux Security Update for zeromq"},{"cve":"CVE-2020-15166","qid":"504567","title":"Alpine Linux Security Update for zeromq"},{"cve":"CVE-2020-15166","qid":"690130","title":"Free Berkeley Software Distribution (FreeBSD) Security Update for libzmq4 (21ec4428-bdaa-11eb-a04e-641c67a117d8)"},{"cve":"CVE-2020-15166","qid":"750605","title":"OpenSUSE Security Update for zeromq (openSUSE-SU-2020:1910-1)"},{"cve":"CVE-2020-15166","qid":"750608","title":"OpenSUSE Security Update for zeromq (openSUSE-SU-2020:1907-1)"}]},"source_records":{"cve_program":{"CVE_data_meta":{"ASSIGNER":"security-advisories@github.com","ID":"CVE-2020-15166","STATE":"PUBLIC","TITLE":"Denial of Service in ZeroMQ"},"affects":{"vendor":{"vendor_data":[{"product":{"product_data":[{"product_name":"libzmq","version":{"version_data":[{"version_value":"< 4.3.3"}]}}]},"vendor_name":"zeromq"}]}},"data_format":"MITRE","data_type":"CVE","data_version":"4.0","description":{"description_data":[{"lang":"eng","value":"In ZeroMQ before version 4.3.3, there is a denial-of-service vulnerability. Users with TCP transport public endpoints, even with CURVE/ZAP enabled, are impacted. If a raw TCP socket is opened and connected to an endpoint that is fully configured with CURVE/ZAP, legitimate clients will not be able to exchange any message. Handshakes complete successfully, and messages are delivered to the library, but the server application never receives them. This is patched in version 4.3.3."}]},"impact":{"cvss":{"attackComplexity":"LOW","attackVector":"NETWORK","availabilityImpact":"HIGH","baseScore":7.5,"baseSeverity":"HIGH","confidentialityImpact":"NONE","integrityImpact":"NONE","privilegesRequired":"NONE","scope":"UNCHANGED","userInteraction":"NONE","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","version":"3.1"}},"problemtype":{"problemtype_data":[{"description":[{"lang":"eng","value":"CWE-400 Uncontrolled Resource Consumption"}]}]},"references":{"reference_data":[{"name":"https://github.com/zeromq/libzmq/security/advisories/GHSA-25wp-cf8g-938m","refsource":"CONFIRM","url":"https://github.com/zeromq/libzmq/security/advisories/GHSA-25wp-cf8g-938m"},{"name":"https://github.com/zeromq/libzmq/pull/3913","refsource":"MISC","url":"https://github.com/zeromq/libzmq/pull/3913"},{"name":"https://github.com/zeromq/libzmq/pull/3973","refsource":"MISC","url":"https://github.com/zeromq/libzmq/pull/3973"},{"refsource":"GENTOO","name":"GLSA-202009-12","url":"https://security.gentoo.org/glsa/202009-12"},{"refsource":"FEDORA","name":"FEDORA-2020-08402f4071","url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/BZ5IMNQXDB52JFBXHFLK4AHVORFELNNG/"},{"refsource":"FEDORA","name":"FEDORA-2020-5460fcf6bd","url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/YFW2ZELCCPS4VLU4OSJOH5YL6KFKTFYW/"},{"refsource":"MLIST","name":"[debian-lts-announce] 20201110 [SECURITY] [DLA 2443-1] zeromq3 security update","url":"https://lists.debian.org/debian-lts-announce/2020/11/msg00017.html"}]},"source":{"advisory":"GHSA-25wp-cf8g-938m","discovery":"UNKNOWN"}},"nvd":{"publishedDate":"2020-09-11 16:15:00","lastModifiedDate":"2023-11-07 03:17:00","problem_types":["CWE-400"],"metrics":{"baseMetricV3":{"cvssV3":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH","baseScore":7.5,"baseSeverity":"HIGH"},"exploitabilityScore":3.9,"impactScore":3.6},"baseMetricV2":{"cvssV2":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:N/I:N/A:P","accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"PARTIAL","baseScore":5},"severity":"MEDIUM","exploitabilityScore":10,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}},"configurations":{"CVE_data_version":"4.0","nodes":[{"operator":"OR","children":[],"cpe_match":[{"vulnerable":true,"cpe23Uri":"cpe:2.3:a:zeromq:libzmq:*:*:*:*:*:*:*:*","versionEndExcluding":"4.3.3","cpe_name":[]}]},{"operator":"OR","children":[],"cpe_match":[{"vulnerable":true,"cpe23Uri":"cpe:2.3:o:fedoraproject:fedora:32:*:*:*:*:*:*:*","cpe_name":[]},{"vulnerable":true,"cpe23Uri":"cpe:2.3:o:fedoraproject:fedora:33:*:*:*:*:*:*:*","cpe_name":[]}]},{"operator":"OR","children":[],"cpe_match":[{"vulnerable":true,"cpe23Uri":"cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*","cpe_name":[]}]}]}},"legacy_mitre":{"record":{"CveYear":"2020","CveId":"15166","Ordinal":"176545","Title":"CVE-2020-15166","CVE":"CVE-2020-15166","Year":"2020"},"notes":[{"CveYear":"2020","CveId":"15166","Ordinal":"1","NoteData":"In ZeroMQ before version 4.3.3, there is a denial-of-service vulnerability. Users with TCP transport public endpoints, even with CURVE/ZAP enabled, are impacted. If a raw TCP socket is opened and connected to an endpoint that is fully configured with CURVE/ZAP, legitimate clients will not be able to exchange any message. Handshakes complete successfully, and messages are delivered to the library, but the server application never receives them. This is patched in version 4.3.3.","Type":"Description","Title":null},{"CveYear":"2020","CveId":"15166","Ordinal":"2","NoteData":"2020-09-11","Type":"Other","Title":"Published"},{"CveYear":"2020","CveId":"15166","Ordinal":"3","NoteData":"2020-11-10","Type":"Other","Title":"Modified"}]}}}