Puma's header normalization allows for client to clobber proxy set headers

🗓️ 20 Sep 2024 14:16:40Reported by GitHub Advisory DatabaseType

Puma header normalization allows clients to clobber proxy set headers resulting in potential security vulnerabilities and confidentiality leaks if combined with MITM attack. Patch v6.4.3/v5.6.9 discards headers using underscores, allowing proxy defined headers to always win

Reporter	Title	Published	Views	Family All 34
debiancve	CVE-2024-45614	19 Sep 202423:15	–	debiancve
openvas	Ubuntu: Security Advisory (USN-7031-2)	25 Sep 202400:00	–	openvas
openvas	Ubuntu: Security Advisory (USN-7031-1)	25 Sep 202400:00	–	openvas
openvas	openSUSE: Security Advisory for rubygem (SUSE-SU-2024:3644-1)	17 Oct 202400:00	–	openvas
openvas	Debian: Security Advisory (DLA-3947-1)	6 Nov 202400:00	–	openvas
ubuntucve	CVE-2024-45614	20 Sep 202400:00	–	ubuntucve
vulnrichment	CVE-2024-45614 Header normalization allows for client to clobber proxy set headers in Puma	19 Sep 202422:42	–	vulnrichment
nvd	CVE-2024-45614	19 Sep 202423:15	–	nvd
githubexploit	Exploit for HTTP Request Smuggling in Puma	28 Sep 202406:29	–	githubexploit
osv	ruby3.3-rubygem-puma-6.4.3-1.1 on GA media	7 Nov 202400:00	–	osv

Vulners

Node

puma pumaRange6.0.0–6.4.3

puma pumaRange<5.6.9

Source	Link
github	www.github.com/puma/puma/security/advisories/GHSA-9hf4-67fc-4vf4
nvd	www.nvd.nist.gov/vuln/detail/CVE-2024-45614
github	www.github.com/puma/puma/commit/cac3fd18cf29ed43719ff5d52d9cfec215f0a043
github	www.github.com/puma/puma/commit/f196b23be24712fb8fb16051cc124798cc84f70e
nginx	www.nginx.org/en/docs/http/ngx_http_core_module.html
github	www.github.com/rubysec/ruby-advisory-db/blob/master/gems/puma/CVE-2024-45614.yml
github	www.github.com/advisories/GHSA-9hf4-67fc-4vf4

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo