HTTP Smuggling via Transfer-Encoding Header in Puma (CVE-2020-11077) - Client request smuggling vulnerability in Puma (RubyGem) versions before 4.3.5 and 3.12.6, allowing proxy to send responses to unknown clients
Reporter | Title | Published | Views | Family All 59 |
---|---|---|---|---|
Tenable Nessus | openSUSE Security Update : rubygem-puma (openSUSE-2020-1001) | 20 Jul 202000:00 | – | nessus |
Tenable Nessus | Debian DLA-2398-1 : puma security update | 8 Oct 202000:00 | – | nessus |
Tenable Nessus | openSUSE Security Update : rubygem-puma (openSUSE-2020-990) | 20 Jul 202000:00 | – | nessus |
Tenable Nessus | Ubuntu 20.04 LTS / 22.04 LTS : Puma vulnerabilities (USN-6682-1) | 7 Mar 202400:00 | – | nessus |
Tenable Nessus | openSUSE Security Update : rmt-server (openSUSE-2020-2000) | 24 Nov 202000:00 | – | nessus |
Tenable Nessus | openSUSE Security Update : rmt-server (openSUSE-2020-1993) | 23 Nov 202000:00 | – | nessus |
Tenable Nessus | SUSE SLES15 Security Update : rmt-server (SUSE-SU-2020:3147-1) | 9 Dec 202000:00 | – | nessus |
Tenable Nessus | SUSE SLES15 Security Update : rmt-server (SUSE-SU-2020:3160-1) | 9 Dec 202000:00 | – | nessus |
Tenable Nessus | SUSE SLES15 Security Update : rmt-server (SUSE-SU-2020:3036-1) | 9 Dec 202000:00 | – | nessus |
Debian | [SECURITY] [DLA 2398-1] puma security update | 7 Oct 202011:06 | – | debian |
[
{
"product": "puma",
"vendor": "puma",
"versions": [
{
"status": "affected",
"version": "< 3.12.6"
},
{
"status": "affected",
"version": ">= 4.0.0, < 4.3.5"
}
]
}
]
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo