CVE-2020-10719 Vulnerability in maven package io.undertow:undertow-core

Description

A flaw was found in Undertow in versions before 2.1.1.Final, regarding the processing of invalid HTTP requests with large chunk sizes. This flaw allows an attacker to take advantage of HTTP request smuggling.

Remediation

References

https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2020-10719

https://security.netapp.com/advisory/ntap-20220210-0014/

Related Vulnerabilities

CVE-2023-24187 Vulnerability in maven package com.bstek.ureport:ureport2-core

CVE-2023-3691 Vulnerability in npm package layui

CVE-2022-46907 Vulnerability in maven package org.apache.jspwiki:jspwiki-main

CVE-2022-42009 Vulnerability in maven package org.apache.ambari:ambari

CVE-2023-30535 Vulnerability in maven package net.snowflake:snowflake-jdbc

Severity

High

Classification

CWE-444 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N