Lucene search
K

CVE-2020-7659

🗓️ 01 Jun 2020 12:50:27Reported by Debian Security Bug TrackerType 
debiancve
 debiancve
🔗 security-tracker.debian.org👁 19 Views

reel through 0.6.1 allows Request Smuggling attacks due to incorrect Content-Length and Transfer encoding header parsing. It is possible to conduct HTTP request smuggling attacks by sending the Content-Length header twice. Furthermore, invalid Transfer Encoding headers were found to be parsed as valid which could be leveraged for TE:CL smuggling attacks

Related
ReporterTitlePublishedViews
Family
CNVD
Reel Environmental Issues Vulnerability
2 Jun 202000:00
cnvd
CVE
CVE-2020-7659
1 Jun 202012:50
cve
Cvelist
CVE-2020-7659
1 Jun 202012:50
cvelist
EUVD
EUVD-2021-1225
7 Oct 202500:30
euvd
Github Security Blog
HTTP Request Smuggling in reel
24 May 202118:13
github
NVD
CVE-2020-7659
1 Jun 202013:15
nvd
OSV
GHSA-X3V4-PXVM-63J8 HTTP Request Smuggling in reel
24 May 202118:13
osv
OSV
UBUNTU-CVE-2020-7659
1 Jun 202013:15
osv
Prion
Cross site request forgery (csrf)
1 Jun 202013:15
prion
RedhatCVE
CVE-2020-7659
22 May 202517:54
redhatcve
Rows per page

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

01 Jun 2020 12:50Current
7.5High risk
Vulners AI Score7.5
CVSS 25
CVSS 3.17.5
EPSS0.01334
19