Description
A flaw was found in Undertow in versions before 2.1.1.Final, regarding the processing of invalid HTTP requests with large chunk sizes. This flaw allows an attacker to take advantage of HTTP request smuggling.
Remediation
References
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2020-10719
https://security.netapp.com/advisory/ntap-20220210-0014/
Related Vulnerabilities
CVE-2023-42503 Vulnerability in maven package org.apache.commons:commons-compress
CVE-2022-25167 Vulnerability in maven package org.apache.flume:flume-parent
CVE-2021-21380 Vulnerability in maven package org.xwiki.platform:xwiki-platform-ratings-api
CVE-2022-2064 Vulnerability in npm package nocodb
CVE-2022-36919 Vulnerability in maven package org.jenkins-ci.plugins:coverity