Lucene search
K

26 matches found

NVD
NVD
added 2026/02/23 9:17 a.m.15 views

CVE-2026-26365

Akamai Ghost on Akamai CDN edge servers before 2026-02-06 mishandles processing of custom hop-by-hop HTTP headers, where an incoming request containing the header "Connection: Transfer-Encoding" could result in a forward request with invalid message framing, depending on the Akamai processing pat...

4CVSS0.00177EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/02/23 12:0 a.m.5 views

CVE-2026-26365

Akamai Ghost on Akamai CDN edge servers before 2026-02-06 mishandles processing of custom hop-by-hop HTTP headers, where an incoming request containing the header "Connection: Transfer-Encoding" could result in a forward request with invalid message framing, depending on the Akamai processing pat...

4CVSS5.4AI score0.00177EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/02/23 12:0 a.m.6 views

PT-2026-21505

Akamai Ghost on Akamai CDN edge servers before 2026-02-06 mishandles processing of custom hop-by-hop HTTP headers, where an incoming request containing the header "Connection: Transfer-Encoding" could result in a forward request with invalid message framing, depending on the Akamai processing pat...

4CVSS5.5AI score0.00177EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/02/23 12:0 a.m.30 views

CVE-2026-26365

Akamai Ghost on Akamai CDN edge servers before 2026-02-06 mishandles processing of custom hop-by-hop HTTP headers, where an incoming request containing the header "Connection: Transfer-Encoding" could result in a forward request with invalid message framing, depending on the Akamai processing pat...

4CVSS0.00177EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/02/23 12:0 a.m.9 views

Akamai Ghost 环境问题漏洞

Akamai Ghost is an HTTP service program developed by the American company Akamai. Versions of Akamai Ghost prior to 2026-02-06 contained environmental issues. These issues stemmed from improper handling of custom hop-by-hop HTTP headers, which could lead to HTTP requests being interspersed with...

4CVSS7.5AI score0.00177EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/12/05 12:9 a.m.7 views

CVE-2025-66373

Akamai Ghost on Akamai CDN edge servers before 2025-11-17 has a chunked request body processing error that can result in HTTP request smuggling. When Akamai Ghost receives an invalid chunked body that includes a chunk size different from the actual size of the following chunk data, under certain...

4.8CVSS6.8AI score0.00238EPSS
Exploits0References1
OSV
OSV
added 2025/12/04 5:15 p.m.10 views

CVE-2025-66373

Akamai Ghost on Akamai CDN edge servers before 2025-11-17 has a chunked request body processing error that can result in HTTP request smuggling. When Akamai Ghost receives an invalid chunked body that includes a chunk size different from the actual size of the following chunk data, under certain...

4.8CVSS5.8AI score0.00238EPSS
Exploits0References2
NVD
NVD
added 2025/12/04 5:15 p.m.5 views

CVE-2025-66373

Akamai Ghost on Akamai CDN edge servers before 2025-11-17 has a chunked request body processing error that can result in HTTP request smuggling. When Akamai Ghost receives an invalid chunked body that includes a chunk size different from the actual size of the following chunk data, under certain...

4.8CVSS0.00238EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/12/04 12:0 a.m.7 views

CVE-2025-66373

Akamai Ghost on Akamai CDN edge servers before 2025-11-17 has a chunked request body processing error that can result in HTTP request smuggling. When Akamai Ghost receives an invalid chunked body that includes a chunk size different from the actual size of the following chunk data, under certain...

6.5AI score0.00238EPSS
Exploits0References2
CVE
CVE
added 2025/12/04 12:0 a.m.41 views

CVE-2025-66373

Akamai Ghost on Akamai CDN edge servers prior to 2025-11-17 is affected by a chunked request body processing error that can cause HTTP request smuggling when an invalid chunked body includes a chunk size that differs from the following data. The issue can forward the invalid request and superfluo...

4.8CVSS6.5AI score0.00238EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2025/12/04 12:0 a.m.25 views

CVE-2025-66373

Akamai Ghost on Akamai CDN edge servers before 2025-11-17 has a chunked request body processing error that can result in HTTP request smuggling. When Akamai Ghost receives an invalid chunked body that includes a chunk size different from the actual size of the following chunk data, under certain...

0.00238EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/12/04 12:0 a.m.4 views

Akamai Ghost 安全漏洞

Akamai Ghost is an HTTP service program from Akamai Corporation, USA. A security vulnerability exists in versions of Akamai Ghost prior to 2025-11-17, which stems from an error in the handling of chunked request bodies that could lead to HTTP request entrapment...

4.8CVSS7.8AI score0.00238EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.18 views

EUVD-2025-23911

Malicious code in bioql PyPI...

4CVSS6.6AI score0.00517EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2025/08/31 12:4 a.m.4 views

CVE-2025-54142

Akamai Ghost before 2025-07-21 allows HTTP Request Smuggling via an OPTIONS request that has an entity body, because there can be a subsequent request within the persistent connection between an Akamai proxy server and an origin server, if the origin server violates certain Internet standards...

4CVSS7.1AI score0.00248EPSS
Exploits0References1
NVD
NVD
added 2025/08/29 1:15 a.m.5 views

CVE-2025-54142

Akamai Ghost before 2025-07-21 allows HTTP Request Smuggling via an OPTIONS request that has an entity body, because there can be a subsequent request within the persistent connection between an Akamai proxy server and an origin server, if the origin server violates certain Internet standards...

4CVSS0.00248EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/08/29 12:0 a.m.9 views

Akamai Ghost 环境问题漏洞

Akamai Ghost is an HTTP service program from Akamai Corporation. An environmental issue vulnerability exists in versions of Akamai Ghost prior to 2025-07-21, which stems from an HTTP request smuggling attack that can be performed by an attacker by sending an OPTIONS request with an entity body...

4CVSS6.7AI score0.00248EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2025/08/29 12:0 a.m.4 views

CVE-2025-54142

Akamai Ghost before 2025-07-21 allows HTTP Request Smuggling via an OPTIONS request that has an entity body, because there can be a subsequent request within the persistent connection between an Akamai proxy server and an origin server, if the origin server violates certain Internet standards...

4CVSS6.5AI score0.00248EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/08/29 12:0 a.m.12 views

CVE-2025-54142

Akamai Ghost before 2025-07-21 allows HTTP Request Smuggling via an OPTIONS request that has an entity body, because there can be a subsequent request within the persistent connection between an Akamai proxy server and an origin server, if the origin server violates certain Internet standards...

4CVSS0.00248EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/08/29 12:0 a.m.4 views

PT-2025-35165

Name of the Vulnerable Software and Affected Versions: Akamai Ghost versions prior to 2025-07-21 Description: Akamai Ghost before 2025-07-21 allows HTTP Request Smuggling via an OPTIONS request that has an entity body. This occurs because a subsequent request can be sent within the persistent...

4CVSS6.4AI score0.00248EPSS
Exploits0References11
RedhatCVE
RedhatCVE
added 2025/08/09 12:23 a.m.10 views

CVE-2025-32094

An issue was discovered in Akamai Ghost, as used for the Akamai CDN platform before 2025-03-26. Under certain circumstances, a client making an HTTP/1.x OPTIONS request with an "Expect: 100-continue" header, and using obsolete line folding, can lead to a discrepancy in how two in-path Akamai...

4CVSS6.8AI score0.00517EPSS
Exploits0References1
Rows per page
Query Builder