CVE-2017-12165

Опубликовано: 27 июл. 2018

Источник: ubuntu

Приоритет: medium

EPSS Низкий

CVSS2: 5

CVSS3: 2.6

Описание

It was discovered that Undertow before 1.4.17, 1.3.31 and 2.0.0 processes http request headers with unusual whitespaces which can cause possible http request smuggling.

Релиз	Статус	Примечание
artful	ignored	end of life
bionic	ignored	end of standard support, was needed
cosmic	ignored	end of life
devel	needs-triage
disco	ignored	end of life
eoan	released	2.0.23-1
esm-apps/bionic	needed
esm-apps/focal	released	2.0.23-1
esm-apps/jammy	released	2.0.23-1
esm-apps/noble	needs-triage

Показывать по

Ссылки на источники

EPSS

Процентиль: 78%

0.01096

Низкий

5 Medium

CVSS2

2.6 Low

CVSS3

Связанные уязвимости

CVE-2017-12165

CVSS3: 2.6

redhat

около 8 лет назад

It was discovered that Undertow before 1.4.17, 1.3.31 and 2.0.0 processes http request headers with unusual whitespaces which can cause possible http request smuggling.

CVE-2017-12165

CVSS3: 2.6

nvd

больше 7 лет назад

It was discovered that Undertow before 1.4.17, 1.3.31 and 2.0.0 processes http request headers with unusual whitespaces which can cause possible http request smuggling.

CVE-2017-12165

CVSS3: 2.6

debian

больше 7 лет назад

It was discovered that Undertow before 1.4.17, 1.3.31 and 2.0.0 proces ...

GHSA-5gg7-5wv8-4gcj

CVSS3: 7.5

github

больше 3 лет назад

Undertow Request Smuggling vulnerability

EPSS

Процентиль: 78%

0.01096

Низкий

5 Medium

CVSS2

2.6 Low

CVSS3

CVE-2017-12165

Описание

Пакет undertow

Ссылки на источники

Связанные уязвимости