Lucene search
ApacheCVELIST:CVE-2021-33037HistoryJul 12, 2021 - 2:55 p.m.
CVE-2021-33037 Incorrect Transfer-Encoding handling with HTTP/1.0
2021-07-1214:55:15
CWE-444
apache
raw.githubusercontent.com
2
Apache Tomcat 10.0.0-M1 to 10.0.6, 9.0.0.M1 to 9.0.46 and 8.5.0 to 8.5.66 did not correctly parse the HTTP transfer-encoding request header in some circumstances leading to the possibility to request smuggling when used with a reverse proxy. Specifically: - Tomcat incorrectly ignored the transfer encoding header if the client declared it would only accept an HTTP/1.0 response; - Tomcat honoured the identify encoding; and - Tomcat did not ensure that, if present, the chunked encoding was the final encoding.
Related
nessus
nessus
Photon OS 2.0: Apache PHSA-2021-2.0-0375
2021-08-10 00:00:00
Amazon Linux AMI : tomcat8 (ALAS-2021-1535)
2021-09-09 00:00:00
Photon OS 3.0: Apache PHSA-2021-3.0-0277
2021-08-10 00:00:00
freebsd
freebsd
tomcat -- HTTP request smuggling in multiple versions
2021-05-07 00:00:00
cve
cve
CVE-2021-33037
2021-07-12 15:15:00
f5
f5
K32469285 : Apache Tomcat vulnerability CVE-2021-33037
2021-08-06 00:00:00
veracode
veracode
Request Smuggling
2021-07-30 03:29:00
openvas
openvas
Apache Tomcat HTTP Request Smuggling Vulnerability (Jul 2021) - Windows
2021-07-13 00:00:00
Apache Tomcat HTTP Request Smuggling Vulnerability (Jul 2021) - Linux
2021-07-13 00:00:00
Debian: Security Advisory (DLA-2733-1)
2021-08-06 00:00:00
ubuntucve
ubuntucve
CVE-2021-33037
2021-07-12 00:00:00
photon
photon
Home
Download Photon OS
User Documentation
FAQ
Security Advisories
Related Information
Lightwave - PHSA-2021-1.0-0420
2021-07-30 00:00:00
Home
Download Photon OS
User Documentation
FAQ
Security Advisories
Related Information
Lightwave - PHSA-2021-2.0-0375
2021-07-30 00:00:00
Moderate Photon OS Security Update - PHSA-2021-0277
2021-07-30 00:00:00
ibm
ibm
kaspersky
kaspersky
KLA12218 SB vulnerability in Apache Tomcat
2021-06-15 00:00:00
osv
osv
HTTP Request Smuggling in Apache Tomcat
2021-08-13 15:21:14
BIT-tomcat-2021-33037
2024-03-06 11:10:01
tomcat9 - security update
2021-08-09 00:00:00
amazon
amazon
Medium: tomcat8
2021-09-02 22:54:00
atlassian
atlassian
Request smuggling via a vulnerable version of Apache Tomcat - CVE-2021-33037
2022-01-06 02:02:04
Upgrade the bundled version of Apache Tomcat to 8.5.68 or later
2021-07-14 11:35:20
tomcat
tomcat
Fixed in Apache Tomcat 10.0.7
2021-06-15 00:00:00
Fixed in Apache Tomcat 9.0.48
2021-06-15 00:00:00
Fixed in Apache Tomcat 8.5.68
2021-06-15 00:00:00
redhatcve
redhatcve
CVE-2021-33037
2021-07-12 18:56:38
prion
prion
Cross site request forgery (csrf)
2021-07-12 15:15:00
seebug
seebug
Apache Tomcat HTTP请求走私(CVE-2021-33037)
2021-07-27 00:00:00
qualysblog
qualysblog
Apache Tomcat HTTP Request Smuggling Vulnerability (CVE-2021-33037)
2021-10-27 12:07:58
github
github
HTTP Request Smuggling in Apache Tomcat
2021-08-13 15:21:14
debiancve
debiancve
CVE-2021-33037
2021-07-12 15:15:00
debian
debian
[SECURITY] [DSA 4952-1] tomcat9 security update
2021-08-09 21:06:14
[SECURITY] [DLA 2733-1] tomcat8 security update
2021-08-05 21:40:52
suse
suse
Security update for tomcat (moderate)
2021-11-19 00:00:00
Security update for tomcat (moderate)
2021-11-16 00:00:00
mageia
mageia
Updated tomcat packages fix security vulnerability
2021-10-23 13:05:28
redhat
redhat
(RHSA-2021:4863) Important: Red Hat JBoss Web Server 5.6.0 Security release
2021-11-30 14:21:16
(RHSA-2021:4861) Important: Red Hat JBoss Web Server 5.6.0 Security release
2021-11-30 14:19:46
(RHSA-2022:1179) Important: Red Hat support for Spring Boot 2.5.10 update
2022-04-12 19:02:50
gentoo
gentoo
Apache Tomcat: Multiple Vulnerabilities
2022-08-21 00:00:00
ubuntu
ubuntu
Tomcat vulnerabilities
2022-03-31 00:00:00
rosalinux
rosalinux
Advisory ROSA-SA-2023-2258
2023-10-21 16:49:43
oracle
oracle
Oracle Critical Patch Update Advisory - July 2021
2021-07-20 00:00:00
Oracle Critical Patch Update Advisory - January 2022
2022-01-18 00:00:00
Oracle Critical Patch Update Advisory - October 2021
2021-10-19 00:00:00