Lucene search

K

CVE-2020-11077 HTTP Smuggling via Transfer-Encoding Header in Puma

🗓️ 22 May 2020 14:13:55Reported by GitHub_MType 
cvelist
 cvelist
🔗 www.cve.org👁 15 Views

HTTP Smuggling via Transfer-Encoding Header in Puma (CVE-2020-11077) - Client request smuggling vulnerability in Puma (RubyGem) versions before 4.3.5 and 3.12.6, allowing proxy to send responses to unknown clients

Show more
Related
Affected
Refs
[
  {
    "product": "puma",
    "vendor": "puma",
    "versions": [
      {
        "status": "affected",
        "version": "< 3.12.6"
      },
      {
        "status": "affected",
        "version": ">= 4.0.0, < 4.3.5"
      }
    ]
  }
]

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo
22 May 2020 14:55Current
7.4High risk
Vulners AI Score7.4
CVSS36.8
EPSS0.006
15
.json
Report