Lucene search
Veracode Vulnerability DatabaseVERACODE:29023HistoryJan 19, 2021 - 1:45 a.m.
HTTP Request Smuggling
2021-01-1901:45:09
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
4
0.004 Low
EPSS
Percentile
74.9%
bottle is vulnerable to HTTP request smuggling. An attacker is able to send a malicious request containing a separate query parameter using a semicolon (;), resulting in unexpected interpretations of the request between the proxy and the server, and potentially poisoning the web cache.
Related
nessus
nessus
Debian DLA-2531-1 : python-bottle security update
2021-01-25 00:00:00
Ubuntu 18.04 LTS / 20.04 LTS : Bottle vulnerability (USN-5105-1)
2021-10-07 00:00:00
openSUSE Security Update : python-bottle (openSUSE-2021-302)
2021-02-22 00:00:00
suse
suse
Security update for python-bottle (important)
2021-02-16 00:00:00
osv
osv
python-bottle - security update
2021-01-24 00:00:00
CVE-2020-28473
2021-01-18 12:15:12
PYSEC-2021-129
2021-01-18 12:15:00
openvas
openvas
Debian: Security Advisory (DLA-2531-1)
2021-01-25 00:00:00
Ubuntu: Security Advisory (USN-5105-1)
2021-10-08 00:00:00
openSUSE: Security Advisory for python-bottle (openSUSE-SU-2021:0302-1)
2021-04-16 00:00:00
ubuntu
ubuntu
Bottle vulnerability
2021-10-06 00:00:00
debian
debian
[SECURITY] [DLA 2531-1] python-bottle security update
2021-01-24 19:19:40
ubuntucve
ubuntucve
CVE-2020-28473
2021-01-18 00:00:00
nvd
nvd
CVE-2020-28473
2021-01-18 12:15:12
prion
prion
Design/Logic Flaw
2021-01-18 12:15:00
cve
cve
CVE-2020-28473
2021-01-18 12:15:12
redhatcve
redhatcve
CVE-2020-28473
2021-02-09 12:50:09
debiancve
debiancve
CVE-2020-28473
2021-01-18 12:15:12
mageia
mageia
Updated python-bottle packages fix security vulnerability
2021-04-02 23:25:05
cvelist
cvelist
CVE-2020-28473 Web Cache Poisoning
2021-01-18 00:00:00
ibm
ibm
github
github
bottle HTTP Request smuggling
2021-04-07 21:05:21