Security Advisory

CVE-2020-7238

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2020-01-27 16:43:44

Last updated 2024-08-04 09:25:48

Assigner mitre

State PUBLISHED

Description

Netty 4.1.43.Final allows HTTP Request Smuggling because it mishandles Transfer-Encoding whitespace (such as a [space]Transfer-Encoding:chunked line) and a later Content-Length header. This issue exists because of an incomplete fix for CVE-2019-16869.

← Browse all CVEs View on cve.org ↗