Description

A flaw was found in Undertow in versions before 2.1.1.Final, regarding the processing of invalid HTTP requests with large chunk sizes. This flaw allows an attacker to take advantage of HTTP request smuggling.

Remediation

References

CVE-2020-10719

Related Vulnerabilities

WordPress Plugin Contact Form by BestWebSoft Cross-Site Scripting (3.34)

Apache HTTP Server Other Vulnerability (CVE-2007-1743)

Dolibarr Improper Privilege Management Vulnerability (CVE-2022-43138)

WordPress Plugin ResAds Multiple Cross-Site Scripting Vulnerabilities (1.0.1)

TYPO3 Improper Input Validation Vulnerability (CVE-2014-3941)

Severity

Medium

Classification

CVE-2020-10719 CWE-444 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N

Tags

Missing Update Known Vulnerabilities