Description
A flaw was found in Undertow in versions before 2.1.1.Final, regarding the processing of invalid HTTP requests with large chunk sizes. This flaw allows an attacker to take advantage of HTTP request smuggling.
Remediation
References
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2020-10719
https://security.netapp.com/advisory/ntap-20220210-0014/
Related Vulnerabilities
CVE-2023-6291 Vulnerability in maven package org.keycloak:keycloak-services
CVE-2022-41934 Vulnerability in maven package org.xwiki.platform:xwiki-platform-menu-ui
CVE-2022-28135 Vulnerability in maven package org.jvnet.hudson.plugins:instant-messaging
CVE-2022-25896 Vulnerability in npm package passport
CVE-2022-45208 Vulnerability in maven package org.jeecgframework.boot:jeecg-module-system