CVE-2019-20372

CWE-444 — HTTP Request Smuggling14 documents11 sources

Severity

5.3MEDIUM

EPSS

69.7%

top 1.33%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Apple Xcode F5 Nginx Canonical Ubuntu Linux +1 more

Timeline

PublishedJan 9

Latest updateMay 24

Description

NGINX before 1.17.7, with certain error_page configurations, allows HTTP request smuggling, as demonstrated by the ability of an attacker to read unauthorized web pages in environments where NGINX is being fronted by a load balancer.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:NExploitability: 3.9 | Impact: 1.4

Affected Packages4 packages

▶NVDf5/nginx< 1.17.7

▶Debiannginx< 1.16.1-3+3

▶NVDapple/xcode< 13.0

▶NVDopensuse/leap15.1

Also affects: Ubuntu Linux 14.04

Patches

Patch: github.com ↗Patch: github.com ↗Patch: github.com ↗

🔴Vulnerability Details

GHSA

GHSA-c9vh-3f9g-f2xf: NGINX before 1↗2022-05-24

▶

CVEList

CVE-2019-20372: NGINX before 1↗2020-01-09

▶

OSV

CVE-2019-20372: NGINX before 1↗2020-01-09

▶

📋Vendor Advisories

Apple

CVE-2019-20372: Xcode 13↗2021-09-20

▶

Ubuntu

nginx vulnerability↗2020-01-15

▶

Microsoft

NGINX before 1.17.7 with certain error_page configurations allows HTTP request smuggling as demonstrated by the ability of an attacker to read unauthorized web pages in environments where NGINX is bei↗2020-01-14

▶

Ubuntu

nginx vulnerability↗2020-01-13

▶

Red Hat

nginx: HTTP request smuggling in configurations with URL redirect used as error_page↗2020-01-09

▶

📄Research Papers

CTF

Smug-Dino / README↗2023

▶

💬Community

Bugzilla

CVE-2019-20372 nginx: HTTP request smuggling via error pages in http/ngx_http_special_response.c [epel-all]↗2020-01-13

▶

Bugzilla

CVE-2019-20372 nginx: HTTP request smuggling in configurations with URL redirect used as error_page↗2020-01-13

▶

Bugzilla

CVE-2019-20372 nginx: HTTP request smuggling via error pages in http/ngx_http_special_response.c [fedora-all]↗2020-01-13

▶