CVE-2020-10719 Vulnerability in maven package io.undertow:undertow-core

Description

A flaw was found in Undertow in versions before 2.1.1.Final, regarding the processing of invalid HTTP requests with large chunk sizes. This flaw allows an attacker to take advantage of HTTP request smuggling.

Remediation

References

https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2020-10719

https://security.netapp.com/advisory/ntap-20220210-0014/

Related Vulnerabilities

CVE-2023-6291 Vulnerability in maven package org.keycloak:keycloak-services

CVE-2022-41934 Vulnerability in maven package org.xwiki.platform:xwiki-platform-menu-ui

CVE-2022-28135 Vulnerability in maven package org.jvnet.hudson.plugins:instant-messaging

CVE-2022-25896 Vulnerability in npm package passport

CVE-2022-45208 Vulnerability in maven package org.jeecgframework.boot:jeecg-module-system

Severity

High

Classification

CWE-444 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N