3 matches found
CVE-2024-10264
HTTP Request Smuggling vulnerability in netease-youdao/qanything version 1.4.1 allows attackers to exploit inconsistencies in the interpretation of HTTP requests between a proxy and a server. This can lead to unauthorized access, bypassing security controls, session hijacking, data leakage, and...
CVE-2024-10264 HTTP Request Smuggling in netease-youdao/qanything
HTTP Request Smuggling vulnerability in netease-youdao/qanything version 1.4.1 allows attackers to exploit inconsistencies in the interpretation of HTTP requests between a proxy and a server. This can lead to unauthorized access, bypassing security controls, session hijacking, data leakage, and...
CVE-2024-10264
CVE-2024-10264 affects the NetEase Youdao/QAnything project, specifically version 1.4.1. The vulnerability is an HTTP Request Smuggling flaw caused by inconsistencies in how requests are interpreted between a proxy and a server. Consequences cited in the sources include unauthorized access, bypas...