Description
Netty 4.1.43.Final allows HTTP Request Smuggling because it mishandles Transfer-Encoding whitespace (such as a [space]Transfer-Encoding:chunked line) and a later Content-Length header. This issue exists because of an incomplete fix for CVE-2019-16869.
Remediation
References
Related Vulnerabilities
SharePoint CVE-2020-1338 Vulnerability (CVE-2020-1338)
MySQL CVE-2021-35642 Vulnerability (CVE-2021-35642)
OpenSSL Cryptographic Issues Vulnerability (CVE-2011-5095)
WebLogic Use of a Broken or Risky Cryptographic Algorithm Vulnerability (CVE-2021-2351)
WordPress Plugin WP Support Plus Responsive Ticket System SQL Injection (7.1.4)