Описание
Gunicorn fails to properly validate Transfer-Encoding headers, leading to HTTP Request Smuggling (HRS) vulnerabilities. By crafting requests with conflicting Transfer-Encoding headers, attackers can bypass security restrictions and access restricted endpoints. This issue is due to Gunicorn's handling of Transfer-Encoding headers, where it incorrectly processes requests with multiple, conflicting Transfer-Encoding headers, treating them as chunked regardless of the final encoding specified. This vulnerability allows for a range of attacks including cache poisoning, session manipulation, and data exposure.
An HTTP Request Smuggling vulnerability was found in Gunicorn. By crafting requests with conflicting Transfer-Encoding headers, attackers can bypass security restrictions and access restricted endpoints. This issue is due to Gunicorn's handling of Transfer-Encoding headers, where it incorrectly processes requests with multiple, conflicting Transfer-Encoding headers, treating them as chunked regardless of the final encoding specified. This vulnerability allows for a range of attacks, including cache poisoning, session manipulation, and data exposure.
Меры по смягчению последствий
Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update the affected package as soon as possible.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat Discovery 1 | discovery-server-container | Not affected | ||
| Red Hat Enterprise Linux 7 | python-gunicorn | Will not fix | ||
| Red Hat OpenStack Platform 16.1 | python-gunicorn | Out of support scope | ||
| Red Hat OpenStack Platform 18.0 | python-gunicorn | Affected | ||
| Red Hat Quay 3 | quay/quay-rhel8 | Affected | ||
| Red Hat Storage 3 | graphite-web | Affected | ||
| Red Hat Ansible Automation Platform 2.4 for RHEL 8 | python3x-gunicorn | Fixed | RHSA-2024:3781 | 10.06.2024 |
| Red Hat Ansible Automation Platform 2.4 for RHEL 9 | python-gunicorn | Fixed | RHSA-2024:3781 | 10.06.2024 |
| Red Hat OpenShift Container Platform 4.12 | openshift4/ose-ironic-rhel9 | Fixed | RHSA-2024:3713 | 12.06.2024 |
| Red Hat OpenShift Container Platform 4.13 | openshift4/ose-ironic-rhel9 | Fixed | RHSA-2024:2875 | 23.05.2024 |
Показывать по
Ссылки на источники
Дополнительная информация
Статус:
7.5 High
CVSS3
Связанные уязвимости
Gunicorn fails to properly validate Transfer-Encoding headers, leading to HTTP Request Smuggling (HRS) vulnerabilities. By crafting requests with conflicting Transfer-Encoding headers, attackers can bypass security restrictions and access restricted endpoints. This issue is due to Gunicorn's handling of Transfer-Encoding headers, where it incorrectly processes requests with multiple, conflicting Transfer-Encoding headers, treating them as chunked regardless of the final encoding specified. This vulnerability allows for a range of attacks including cache poisoning, session manipulation, and data exposure.
Gunicorn fails to properly validate Transfer-Encoding headers, leading to HTTP Request Smuggling (HRS) vulnerabilities. By crafting requests with conflicting Transfer-Encoding headers, attackers can bypass security restrictions and access restricted endpoints. This issue is due to Gunicorn's handling of Transfer-Encoding headers, where it incorrectly processes requests with multiple, conflicting Transfer-Encoding headers, treating them as chunked regardless of the final encoding specified. This vulnerability allows for a range of attacks including cache poisoning, session manipulation, and data exposure.
Gunicorn fails to properly validate Transfer-Encoding headers, leading ...
7.5 High
CVSS3