exploitDog

GHSA-xqwp-g97m-cxpr

Опубликовано: 24 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 5.3

Описание

The issue appears to be that JBoss EAP 6.4.21 does not parse the field-name in accordance to RFC7230[1] as it returns a 200 instead of a 400.

The issue appears to be that JBoss EAP 6.4.21 does not parse the field-name in accordance to RFC7230[1] as it returns a 200 instead of a 400.

Ссылки

EPSS

Процентиль: 47%

0.00242

Низкий

5.3 Medium

CVSS3

CVE ID

Связанные уязвимости

CVE-2020-1710

CVSS3: 7.5

redhat

больше 5 лет назад

The issue appears to be that JBoss EAP 6.4.21 does not parse the field-name in accordance to RFC7230[1] as it returns a 200 instead of a 400.

CVE-2020-1710

CVSS3: 5.3

nvd

больше 5 лет назад

The issue appears to be that JBoss EAP 6.4.21 does not parse the field-name in accordance to RFC7230[1] as it returns a 200 instead of a 400.

EPSS

Процентиль: 47%

0.00242

Низкий

5.3 Medium

CVSS3

CVE ID