Description

A flaw was found in Undertow in versions before 2.1.1.Final, regarding the processing of invalid HTTP requests with large chunk sizes. This flaw allows an attacker to take advantage of HTTP request smuggling.

Remediation

References

CVE-2020-10719

Related Vulnerabilities

WordPress Plugin Login Logout Menu Cross-Site Scripting (1.3.3)

WordPress Plugin miniOrange Discord Integration Security Bypass (2.1.5)

WordPress Plugin Image Slider by Ays-Responsive Slider and Carousel SQL Injection (2.4.9)

WordPress Plugin VR Calendar Cross-Site Request Forgery (2.3.3)

MySQL CVE-2022-21335 Vulnerability (CVE-2022-21335)

Severity

Medium

Classification

CVE-2020-10719 CWE-444 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N

Tags

Missing Update Known Vulnerabilities