HTTP Request Smuggling in hyper

🗓️ 25 Aug 2021 20:08:46Reported by GitHub Advisory DatabaseType

HTTP Request Smuggling in vulnerable hyper version

Reporter	Title	Published	Views	Family All 10
OSV	Flaw in hyper allows request smuggling by sending a body in GET requests	19 Mar 202012:00	–	osv
OSV	CVE-2020-35863	31 Dec 202010:15	–	osv
OSV	HTTP Request Smuggling in hyper	25 Aug 202120:46	–	osv
CVE	CVE-2020-35863	31 Dec 202010:15	–	cve
Cvelist	CVE-2020-35863	31 Dec 202008:29	–	cvelist
NVD	CVE-2020-35863	31 Dec 202010:15	–	nvd
Debian CVE	CVE-2020-35863	31 Dec 202010:15	–	debiancve
UbuntuCve	CVE-2020-35863	31 Dec 202000:00	–	ubuntucve
RustSec	Flaw in hyper allows request smuggling by sending a body in GET requests	19 Mar 202012:00	–	rustsec
Prion	Remote code execution	31 Dec 202010:15	–	prion

Vulners

Node

hyper hyperRange0.11.0–0.12.34

Source	Link
nvd	www.nvd.nist.gov/vuln/detail/CVE-2020-35863
github	www.github.com/hyperium/hyper/issues/1925
rustsec	www.rustsec.org/advisories/RUSTSEC-2020-0008.html
github	www.github.com/advisories/GHSA-h3qr-rq2j-74w4

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

25 Aug 2021 20:46Current

9.2High risk

Vulners AI Score9.2

CVSS27.5

CVSS39.8

EPSS0.02006

CWE-444