Lucene search
+L

84 matches found

Github Security Blog
Github Security Blog
added 2023/11/14 10:20 p.m.82 views

AIOHTTP has problems in HTTP parser (the python one, not llhttp)

Summary The HTTP parser in AIOHTTP has numerous problems with header parsing, which could lead to request smuggling. This parser is only used when AIOHTTPNOEXTENSIONS is enabled or not using a prebuilt wheel. Details Bug 1: Bad parsing of Content-Length values Description RFC 9110 says this:...

7.5CVSS7.9AI score0.00857EPSS
Exploits1References10Affected Software1
CNNVD
CNNVD
added 2023/09/15 12:0 a.m.5 views

Eclipse Jetty Security Vulnerability

Eclipse Jetty is an open source, Java-based web server and Java Servlet container from the Eclipse Foundation. A security vulnerability exists in Eclipse Jetty that originates from rejecting a request and returning a 400 response...

5.3CVSS6.8AI score0.01069EPSS
Exploits0References12
OSV
OSV
added 2023/09/14 4:17 p.m.1 views

GHSA-HMR7-M48G-48F6 Jetty accepts "+" prefixed value in Content-Length

Impact Jetty accepts the '+' character proceeding the content-length value in a HTTP/1 header field. This is more permissive than allowed by the RFC and other servers routinely reject such requests with 400 responses. There is no known exploit scenario, but it is conceivable that request smugglin...

5.3CVSS6.8AI score0.01069EPSS
Exploits0References6
Hacker One
Hacker One
added 2023/07/20 11:46 p.m.12 views

8x8 Bounty: Stored xss at https://█.8x8.com/api/█/ID

A vulnerability was reported where stored data could be modified to introduce malicious JavaScript that would execute in a victim's browser when the data was retrieved. The issue was isolated to a randomly generated identifier. The development team addressed the issue by implementing additional...

6.8AI score
Exploits0
F5 Networks
F5 Networks
added 2023/02/21 7:45 p.m.108 views

K15273: Apache vulnerability CVE-2012-0053

Security Advisory Description protocol.c in the Apache HTTP Server 2.2.x through 2.2.21 does not properly restrict header information during construction of Bad Request aka 400 error documents, which allows remote attackers to obtain the values of HTTPOnly cookies via vectors involving a 1 long o...

4.3CVSS6.8AI score0.82756EPSS
Exploits4Affected Software13
F5 Networks
F5 Networks
added 2023/02/21 6:59 p.m.29 views

K70312000: BIG-IP ASM JSON websocket security exposure

Security Advisory Description The BIG-IP ASM system may fail to block bad JSON websocket requests. This issue occurs when all of the following conditions are met: In the JSON profile of the affected security policy, the Parse Parameters setting is enabled. Note: This setting is enabled by default...

6.6AI score
Exploits0
SUSE CVE
SUSE CVE
added 2023/02/15 5:49 a.m.4 views

SUSE CVE-2012-0053

protocol.c in the Apache HTTP Server 2.2.x through 2.2.21 does not properly restrict header information during construction of Bad Request aka 400 error documents, which allows remote attackers to obtain the values of HTTPOnly cookies via vectors involving a 1 long or 2 malformed header in...

4.3CVSS8.8AI score0.82756EPSS
Exploits4References6
SUSE CVE
SUSE CVE
added 2023/02/15 4:27 a.m.3 views

SUSE CVE-2018-11627

Sinatra before 2.0.2 has XSS via the 400 Bad Request page that occurs upon a params parser exception...

6.5CVSS6.3AI score0.02212EPSS
Exploits1References3
OSV
OSV
added 2022/10/31 6:44 p.m.80 views

GHSA-9398-5GHF-7PR6 conduit-hyper vulnerable to Denial of Service from unchecked request length

Prior to version 0.4.2, conduit-hyper did not check any limit on a request's length before calling hyper::body::tobytes. An attacker could send a malicious request with an abnormally large Content-Length, which could lead to a panic if memory allocation failed for that request. In version 0.4.2,...

7.5CVSS7.4AI score0.00689EPSS
Exploits0References5
Cvelist
Cvelist
added 2022/10/31 12:0 a.m.41 views

CVE-2022-39294 (DoS) Denial of Service from unchecked request length in conduit-hyper

conduit-hyper integrates a conduit application with the hyper server. Prior to version 0.4.2, conduit-hyper did not check any limit on a request's length before calling hyper::body::tobytes. An attacker could send a malicious request with an abnormally large Content-Length, which could lead to a...

7.5CVSS7.6AI score0.00689EPSS
Exploits0References1
RustSec
RustSec
added 2022/10/30 12:0 p.m.19 views

Denial of Service from unchecked request length

Prior to version 0.4.2, conduit-hyper did not check any limit on a request's length before calling hyper::body::tobytes. An attacker could send a malicious request with an abnormally large Content-Length, which could lead to a panic if memory allocation failed for that request. In version 0.4.2,...

7.5CVSS3.3AI score0.00689EPSS
Exploits0Affected Software1
Positive Technologies
Positive Technologies
added 2022/10/30 12:0 a.m.3 views

PT-2022-24876 · Unknown · Conduit-Hyper

Name of the Vulnerable Software and Affected Versions: conduit-hyper versions prior to 0.4.2 Description: The issue arises from conduit-hyper not checking any limit on a request's length before calling hyper::body::to bytes. An attacker could send a malicious request with an abnormally large...

7.5CVSS7.4AI score0.00689EPSS
Exploits0References10
BDU FSTEC
BDU FSTEC
added 2022/10/12 12:0 a.m.6 views

The vulnerability of the cURL command-line utility stems from insufficient validation of input data, allowing a hacker to trigger a service failure.

The vulnerability of the cURL command-line utility is related to insufficient validation of input data when processing cookie files with check codes whose byte values are less than 32. Exploiting this vulnerability allows a remote attacker to trigger a server error Bad Request by sending cookie...

3.7CVSS6.5AI score0.01839EPSS
Exploits1References17Affected Software6
OSV
OSV
added 2022/09/09 11:4 a.m.3 views

OESA-2022-1908 curl security update

cURL is a computer software project providing a library libcurl and command-line tool curl for transferring data using various protocols. Security Fixes: When curl is used to retrieve and parse cookies from an HTTPS server, it accepts cookies using control codes byte values below 32. When cookies...

3.7CVSS6.9AI score0.01839EPSS
Exploits1References2
OSV
OSV
added 2022/09/01 9:4 p.m.3 views

USN-5587-1 curl vulnerability

Axel Chong discovered that when curl accepted and sent back cookies containing control bytes that a HTTPS server might return a 400 Bad Request Error response. A malicious cookie host could possibly use this to cause denial-of-service...

3.7CVSS6.7AI score0.01839EPSS
Exploits1References2
Veracode
Veracode
added 2022/09/01 5:2 a.m.44 views

Denial Of Service (DoS)

curl is vulnerable to denial of service attacks. A malicious user is able to cause an application crash due to improper validation of syntactic correctness of the input, which makes the server return a 400 Bad Request response...

3.7CVSS5.8AI score0.01839EPSS
Exploits1References13Affected Software16
OSV
OSV
added 2022/08/31 4:15 p.m.4 views

DEBIAN-CVE-2022-1319

A flaw was found in Undertow. For an AJP 400 response, EAP 7 is improperly sending two response packets, and those packets have the reuse flag set even though JBoss EAP closes the connection. A failure occurs when the connection is reused after a 400 by CPING since it reads in the second...

7.5CVSS6.9AI score0.01258EPSS
Exploits0References1
curl security advisories
curl security advisories
added 2022/08/31 8:0 a.m.8 views

control code in cookie denial of service

When curl retrieves and parses cookies from an HTTPS server, it accepts cookies using control codes byte values below 32. When cookies that contain such control codes are later sent back to an HTTPS server, it might make the server return a 400 response. Effectively allowing a "sister site" to de...

3.7CVSS6.3AI score0.01839EPSS
Exploits1References1Affected Software2
Citrix
Citrix
added 2022/04/26 12:0 a.m.7 views

App Layering - (400) Bad Request with ImportOsLayer.ps1

ImportOsLayer.ps1 script PS C:\windows\Setup\Scripts .\ImportOsLayer.ps1 -ElmAddress -IgnoreCertError ModuleType Version Name ExportedCommands ---------- ------- ---- ---------------- Script 0.0 DynamicModule1cbe0359-cdf4-45... New-CALOperatingSystem, New-CALSession Failed to call API at and Meth...

7.2AI score
Exploits0
Citrix
Citrix
added 2022/02/25 12:0 a.m.8 views

ELM : When we click on upgrade and try to browse we get the error : there was an error on processing web request : status code 400 (bad Request ) : Bad Request

Error : there was an error on processing web request : status code 400 bad Request : Bad Request...

7.4AI score
Exploits0
Rows per page
Query Builder