Security Advisory

CVE-2019-20444

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2020-01-29 20:33:17

Last updated 2024-08-05 02:39:10

Assigner mitre

State PUBLISHED

Description

HttpObjectDecoder.java in Netty before 4.1.44 allows an HTTP header that lacks a colon, which might be interpreted as a separate header with an incorrect syntax, or might be interpreted as an "invalid fold."

← Browse all CVEs View on cve.org ↗