CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

43 matches found

Veracode•added 2023/08/07 10:2 a.m.•9 views

HTTP Request Smuggling

protocol-http1 is vulnerable to HTTP Request Smuggling. The vulnerability exists in the read function of chunked.rb due to improper HTTP/1 implementation based on the RFC spec, such as allowing Content-Length header values with a + or 0x prefix, which can lead to HTTP request smuggling and firewa...

5.8CVSS6.8AI score0.00204EPSS

Exploits0References5Affected Software1

RedhatCVE•added 2023/08/05 3:48 p.m.•49 views

CVE-2023-38697

A flaw was found in the protocol-http1 rubygem package. The protocol-http1 provides a low-level implementation of the HTTP/1 protocol. This behavior can lead to desync when forwarding through multiple HTTP parsers, potentially resulting in HTTP request smuggling and firewall bypassing...

5.3CVSS6.3AI score0.00204EPSS

Exploits0References4

OSV•added 2023/08/04 6:15 p.m.•0 views

DEBIAN-CVE-2023-38697

protocol-http1 provides a low-level implementation of the HTTP/1 protocol. RFC 9112 Section 7.1 defined the format of chunk size, chunk data and chunk extension. The value of Content-Length header should be a string of 0-9 digits, the chunk size should be a string of hex digits and should split...

5.3CVSS5.6AI score0.00204EPSS

Exploits0References1

NVD•added 2023/08/04 6:15 p.m.•9 views

CVE-2023-38697

5.8CVSS5.7AI score0.00204EPSS

Exploits0References4

OSV•added 2023/08/04 6:15 p.m.•2 views

UBUNTU-CVE-2023-38697

5.8CVSS6.1AI score0.00204EPSS

Exploits0References7

UbuntuCve•added 2023/08/04 6:15 p.m.•16 views

CVE-2023-38697

5.8CVSS6.1AI score0.00204EPSS

Exploits0References6

Prion•added 2023/08/04 6:15 p.m.•12 views

Design/Logic Flaw

5CVSS4.9AI score0.00204EPSS

Exploits0References4Affected Software1

Vulnrichment•added 2023/08/04 5:32 p.m.•10 views

CVE-2023-38697 protocol-http1 HTTP Request/Response Smuggling vulnerability

5.8CVSS5.4AI score0.00204EPSS

Exploits0References4

CVE•added 2023/08/04 5:32 p.m.•82 views

CVE-2023-38697

The CVE-2023-38697 entry concerns protocol-http1 (HTTP/1) parsing: Falcon’s RFC-compliant checks on Content-Length and chunk size can be bypassed by accepting +, 0x prefixes, and LF in chunk extensions, causing desynchronization across HTTP parsers and enabling HTTP request smuggling or firewall ...

5.8CVSS5AI score0.00204EPSS

Exploits0References4Affected Software1

OSV•added 2023/08/04 5:32 p.m.•26 views

CVE-2023-38697 protocol-http1 HTTP Request/Response Smuggling vulnerability

5.8CVSS5.4AI score0.00204EPSS

Exploits0References6

Debian CVE•added 2023/08/04 5:32 p.m.•12 views

CVE-2023-38697

5.8CVSS5.1AI score0.00204EPSS

Exploits0

Github Security Blog•added 2023/08/03 4:36 p.m.•28 views

protocol-http1 HTTP Request/Response Smuggling vulnerability

Impact RFC 9112 Section 7.1 defined the format of chunk size, chunk data and chunk extension detailed ABNF is in Appendix section. In summary: - The value of Content-Length header should be a string of 0-9 digits. - The chunk size should be a string of hex digits and should split from chunk data...

5.8CVSS6.3AI score0.00204EPSS

Exploits0References7Affected Software1

Snyk•added 2023/08/03 4:36 p.m.•2 views

HTTP Request Smuggling

Overview Affected versions of this package are vulnerable to HTTP Request Smuggling due to improper RFC implementation. This behavior can lead to desync when forwarding through multiple HTTP parsers, potentially resulting in HTTP request smuggling and firewall bypassing. Remediation Upgrade...

5.8CVSS7AI score0.00204EPSS

Exploits0References2

RubySec•added 2023/08/03 12:0 a.m.•16 views

protocol-http1 HTTP Request/Response Smuggling vulnerability

5.8CVSS6.8AI score0.00204EPSS

Exploits0References1Affected Software1

Positive Technologies•added 2023/07/30 12:0 a.m.•2 views

PT-2023-4258

Name of the Vulnerable Software and Affected Versions protocol-http1 versions prior to 0.15.1 Description The issue is related to the implementation of the HTTP/1 protocol in protocol-http1, specifically with the handling of HTTP requests. The problem arises from the acceptance of non-standard...

5.8CVSS6.1AI score0.00204EPSS

Exploits0References19

OSV•added 2022/06/16 11:59 p.m.•0 views

GHSA-F67M-9J94-QV9J Parser creates invalid uninitialized value

Affected versions of this crate called mem::uninitialized in the HTTP1 parser to create values of type httparse::Header from the httparse crate. This is unsound, since Header contains references and thus must be non-null. The flaw was corrected by avoiding the use of mem::uninitialized, using...

5.8AI score

Exploits0References3

Github Security Blog•added 2022/06/16 11:59 p.m.•21 views

Parser creates invalid uninitialized value

2AI score

Exploits0References3Affected Software1

RustSec•added 2022/05/10 12:0 p.m.•13 views

Parser creates invalid uninitialized value

2AI score

Exploits0Affected Software1

RedHat Linux•added 2021/07/29 7:19 p.m.•2 views

netty: Request smuggling via content-length header

A flaw was found in Netty. There is an issue where the content-length header is not validated correctly if the request uses a single Http2HeaderFrame with the endstream set to true. This flaw leads to request smuggling if the request is proxied to a remote peer and translated to HTTP/1.1. The...

5.9CVSS7.1AI score0.0316EPSS

Exploits0References5

RedHat Linux•added 2021/05/19 3:26 p.m.•2 views

netty: possible request smuggling in HTTP/2 due missing validation

In Netty io.netty:netty-codec-http2 before version 4.1.60.Final there is a vulnerability that enables request smuggling. If a Content-Length header is present in the original HTTP/2 request, the field is not validated by Http2MultiplexHandler as it is propagated up. This is fine as long as the...

5.9CVSS7.4AI score0.0061EPSS

Exploits0References5

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by