Lucene search

[email protected]CVE-2021-36740

HistoryJul 14, 2021 - 5:15 p.m.

CVE-2021-36740

2021-07-1417:15:00

CWE-444

[email protected]

web.nvd.nist.gov

122

varnish cache

http/2

request smuggling

vcl authorization bypass

content-length header

post request

cve-2021-36740

nvd

6.5 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N

6.5 Medium

AI Score

Confidence

High

6.4 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:P/A:N

0.005 Low

EPSS

Percentile

75.4%

JSON

Varnish Cache, with HTTP/2 enabled, allows request smuggling and VCL authorization bypass via a large Content-Length header for a POST request. This affects Varnish Enterprise 6.0.x before 6.0.8r3, and Varnish Cache 5.x and 6.x before 6.5.2, 6.6.x before 6.6.1, and 6.0 LTS before 6.0.8.

CPENameOperatorVersion
varnish-cache:varnish_cachevarnish-cache varnish cachelt6.0.8
varnish_cache_project:varnish_cachevarnish cache project varnish cachele5.2.1
varnish_cache_project:varnish_cachevarnish cache project varnish cachele6.6.0
varnish-software:varnish_cachevarnish-software varnish cachele6.0.7
varnish-software:varnish_cachevarnish-software varnish cachele6.0.5
fedoraproject:fedorafedoraproject fedoraeq33
fedoraproject:fedorafedoraproject fedoraeq34
debian:debian_linuxdebian debian linuxeq10.0
debian:debian_linuxdebian debian linuxeq11.0

CPE	Name	Operator	Version
varnish-cache:varnish_cache	varnish-cache varnish cache	lt	6.0.8
varnish_cache_project:varnish_cache	varnish cache project varnish cache	le	5.2.1
varnish_cache_project:varnish_cache	varnish cache project varnish cache	le	6.6.0
varnish-software:varnish_cache	varnish-software varnish cache	le	6.0.7
varnish-software:varnish_cache	varnish-software varnish cache	le	6.0.5
fedoraproject:fedora	fedoraproject fedora	eq	33
fedoraproject:fedora	fedoraproject fedora	eq	34
debian:debian_linux	debian debian linux	eq	10.0
debian:debian_linux	debian debian linux	eq	11.0