Количество 11
Количество 11
CVE-2026-1760
A flaw was found in SoupServer. This HTTP request smuggling vulnerability occurs because SoupServer improperly handles requests that combine Transfer-Encoding: chunked and Connection: keep-alive headers. A remote, unauthenticated client can exploit this by sending specially crafted requests, causing SoupServer to fail to close the connection as required by RFC 9112. This allows the attacker to smuggle additional requests over the persistent connection, leading to unintended request processing and potential denial-of-service (DoS) conditions.
CVE-2026-1760
A flaw was found in SoupServer. This HTTP request smuggling vulnerability occurs because SoupServer improperly handles requests that combine Transfer-Encoding: chunked and Connection: keep-alive headers. A remote, unauthenticated client can exploit this by sending specially crafted requests, causing SoupServer to fail to close the connection as required by RFC 9112. This allows the attacker to smuggle additional requests over the persistent connection, leading to unintended request processing and potential denial-of-service (DoS) conditions.
CVE-2026-1760
A flaw was found in SoupServer. This HTTP request smuggling vulnerability occurs because SoupServer improperly handles requests that combine Transfer-Encoding: chunked and Connection: keep-alive headers. A remote, unauthenticated client can exploit this by sending specially crafted requests, causing SoupServer to fail to close the connection as required by RFC 9112. This allows the attacker to smuggle additional requests over the persistent connection, leading to unintended request processing and potential denial-of-service (DoS) conditions.
CVE-2026-1760
A flaw was found in SoupServer. This HTTP request smuggling vulnerabil ...
GHSA-58g3-53qw-g6m8
A flaw was found in SoupServer. This HTTP request smuggling vulnerability occurs because SoupServer improperly handles requests that combine Transfer-Encoding: chunked and Connection: keep-alive headers. A remote, unauthenticated client can exploit this by sending specially crafted requests, causing SoupServer to fail to close the connection as required by RFC 9112. This allows the attacker to smuggle additional requests over the persistent connection, leading to unintended request processing and potential denial-of-service (DoS) conditions.
SUSE-SU-2026:0833-1
Security update for libsoup
SUSE-SU-2026:0811-1
Security update for libsoup2
SUSE-SU-2026:0796-1
Security update for libsoup
SUSE-SU-2026:0788-1
Security update for libsoup
SUSE-SU-2026:0834-1
Security update for libsoup2
openSUSE-SU-2026:20354-1
Security update for libsoup2
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2026-1760 A flaw was found in SoupServer. This HTTP request smuggling vulnerability occurs because SoupServer improperly handles requests that combine Transfer-Encoding: chunked and Connection: keep-alive headers. A remote, unauthenticated client can exploit this by sending specially crafted requests, causing SoupServer to fail to close the connection as required by RFC 9112. This allows the attacker to smuggle additional requests over the persistent connection, leading to unintended request processing and potential denial-of-service (DoS) conditions. | CVSS3: 5.3 | 0% Низкий | около 2 месяцев назад |
 | CVE-2026-1760 A flaw was found in SoupServer. This HTTP request smuggling vulnerability occurs because SoupServer improperly handles requests that combine Transfer-Encoding: chunked and Connection: keep-alive headers. A remote, unauthenticated client can exploit this by sending specially crafted requests, causing SoupServer to fail to close the connection as required by RFC 9112. This allows the attacker to smuggle additional requests over the persistent connection, leading to unintended request processing and potential denial-of-service (DoS) conditions. | CVSS3: 5.3 | 0% Низкий | около 2 месяцев назад |
 | CVE-2026-1760 A flaw was found in SoupServer. This HTTP request smuggling vulnerability occurs because SoupServer improperly handles requests that combine Transfer-Encoding: chunked and Connection: keep-alive headers. A remote, unauthenticated client can exploit this by sending specially crafted requests, causing SoupServer to fail to close the connection as required by RFC 9112. This allows the attacker to smuggle additional requests over the persistent connection, leading to unintended request processing and potential denial-of-service (DoS) conditions. | CVSS3: 5.3 | 0% Низкий | около 2 месяцев назад |
| CVE-2026-1760 A flaw was found in SoupServer. This HTTP request smuggling vulnerabil ... | CVSS3: 5.3 | 0% Низкий | около 2 месяцев назад |
| GHSA-58g3-53qw-g6m8 A flaw was found in SoupServer. This HTTP request smuggling vulnerability occurs because SoupServer improperly handles requests that combine Transfer-Encoding: chunked and Connection: keep-alive headers. A remote, unauthenticated client can exploit this by sending specially crafted requests, causing SoupServer to fail to close the connection as required by RFC 9112. This allows the attacker to smuggle additional requests over the persistent connection, leading to unintended request processing and potential denial-of-service (DoS) conditions. | CVSS3: 5.3 | 0% Низкий | около 2 месяцев назад |
 | SUSE-SU-2026:0833-1 Security update for libsoup | 25 дней назад | ||
| SUSE-SU-2026:0811-1 Security update for libsoup2 | 26 дней назад | ||
| SUSE-SU-2026:0796-1 Security update for libsoup | 26 дней назад | ||
| SUSE-SU-2026:0788-1 Security update for libsoup | 27 дней назад | ||
| SUSE-SU-2026:0834-1 Security update for libsoup2 | 25 дней назад | ||
| openSUSE-SU-2026:20354-1 Security update for libsoup2 | 18 дней назад |
Уязвимостей на страницу