System	Score	Found at
epss	0.00189	https://api.first.org/data/v1/epss?cve=CVE-2020-36309
epss	0.00189	https://api.first.org/data/v1/epss?cve=CVE-2020-36309
epss	0.00189	https://api.first.org/data/v1/epss?cve=CVE-2020-36309
epss	0.00189	https://api.first.org/data/v1/epss?cve=CVE-2020-36309
epss	0.00189	https://api.first.org/data/v1/epss?cve=CVE-2020-36309
epss	0.00189	https://api.first.org/data/v1/epss?cve=CVE-2020-36309
epss	0.00189	https://api.first.org/data/v1/epss?cve=CVE-2020-36309
epss	0.00189	https://api.first.org/data/v1/epss?cve=CVE-2020-36309
epss	0.00189	https://api.first.org/data/v1/epss?cve=CVE-2020-36309
epss	0.00189	https://api.first.org/data/v1/epss?cve=CVE-2020-36309
epss	0.00227	https://api.first.org/data/v1/epss?cve=CVE-2020-36309
epss	0.00227	https://api.first.org/data/v1/epss?cve=CVE-2020-36309
epss	0.00227	https://api.first.org/data/v1/epss?cve=CVE-2020-36309
epss	0.00227	https://api.first.org/data/v1/epss?cve=CVE-2020-36309
epss	0.00227	https://api.first.org/data/v1/epss?cve=CVE-2020-36309
epss	0.00227	https://api.first.org/data/v1/epss?cve=CVE-2020-36309
epss	0.00227	https://api.first.org/data/v1/epss?cve=CVE-2020-36309
epss	0.00227	https://api.first.org/data/v1/epss?cve=CVE-2020-36309
epss	0.00227	https://api.first.org/data/v1/epss?cve=CVE-2020-36309
epss	0.00227	https://api.first.org/data/v1/epss?cve=CVE-2020-36309
epss	0.00227	https://api.first.org/data/v1/epss?cve=CVE-2020-36309
epss	0.00227	https://api.first.org/data/v1/epss?cve=CVE-2020-36309
epss	0.00227	https://api.first.org/data/v1/epss?cve=CVE-2020-36309
epss	0.00227	https://api.first.org/data/v1/epss?cve=CVE-2020-36309
epss	0.00227	https://api.first.org/data/v1/epss?cve=CVE-2020-36309
epss	0.00227	https://api.first.org/data/v1/epss?cve=CVE-2020-36309
epss	0.00227	https://api.first.org/data/v1/epss?cve=CVE-2020-36309
epss	0.00227	https://api.first.org/data/v1/epss?cve=CVE-2020-36309
epss	0.00227	https://api.first.org/data/v1/epss?cve=CVE-2020-36309
cvssv2	5.0	https://nvd.nist.gov/vuln/detail/CVE-2020-36309
cvssv3.1	5.3	https://nvd.nist.gov/vuln/detail/CVE-2020-36309

Reference id	Reference type	URL
		https://api.first.org/data/v1/epss?cve=CVE-2020-36309
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-36309
		https://github.com/openresty/lua-nginx-module/compare/v0.10.15...v0.10.16
		https://github.com/openresty/lua-nginx-module/pull/1654
		https://news.ycombinator.com/item?id=26712562
		https://security.netapp.com/advisory/ntap-20210507-0005/
986787		https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=986787
cpe:2.3:a:openresty:lua-nginx-module:*:*:*:*:*:*:*:*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openresty:lua-nginx-module:*:*:*:*:*:*:*:*
CVE-2020-36309		https://nvd.nist.gov/vuln/detail/CVE-2020-36309
USN-5371-1		https://usn.ubuntu.com/5371-1/

No exploits are available.

Vector: AV:N/AC:L/Au:N/C:N/I:P/A:N Found at https://nvd.nist.gov/vuln/detail/CVE-2020-36309

Exploitability (E)	Access Vector (AV)	Access Complexity (AC)	Authentication (Au)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
high functional unproven proof_of_concept not_defined	local adjacent_network network	high medium low	multiple single none	none partial complete	none partial complete	none partial complete

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N Found at https://nvd.nist.gov/vuln/detail/CVE-2020-36309

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Percentile	0.40962
EPSS Score	0.00189
Published At	Sept. 9, 2025, 12:55 p.m.

Date	Actor	Action	Source	VulnerableCode Version
2025-07-31T08:43:17.473641+00:00	Ubuntu USN Importer	Import	https://usn.ubuntu.com/5371-1/	37.0.0