Lucene search

K
veracodeVeracode Vulnerability DatabaseVERACODE:39251
HistoryFeb 14, 2023 - 4:36 a.m.

Inconsistent Interpretation Of HTTP Requests

2023-02-1404:36:45
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
10
varnish
sid
vulnerability
http
requests
smuggling
attack
headers
servers
backend

0.001 Low

EPSS

Percentile

47.3%

varnish:sid is vulnerable to Inconsistent Interpretation of HTTP Requests. An attacker could perform a smuggling attack by requesting certain headers to be made hop by hop on varnish servers which will not allow critical headers to be forwarded to the backend.