CVE-2020-10687

CWE-444 — HTTP Request Smuggling10 documents7 sources

Severity

4.8MEDIUM

EPSS

0.1%

top 68.60%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Redhat Undertow Redhat Jboss Enterprise Application Platform

Timeline

PublishedSep 23

Latest updateJun 16

Description

A flaw was discovered in all versions of Undertow before Undertow 2.2.0.Final, where HTTP request smuggling related to CVE-2017-2666 is possible against HTTP/1.x and HTTP/2 due to permitting invalid characters in an HTTP request. This flaw allows an attacker to poison a web-cache, perform an XSS attack, or obtain sensitive information from request other than their own.

CVSS vector

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:NExploitability: 2.2 | Impact: 2.5

Affected Packages5 packages

▶NVDredhat/undertow< 2.2.0

▶Mavenio.undertow:undertow-core< 2.2.0.Final

▶Debianundertow< 2.2.0-1

▶CVEListV5undertowUndertow 2.2.0.Final

▶NVDredhat/jboss_enterprise_application_platform7.2, 7.3, 7.4+2

🔴Vulnerability Details

GHSA

HTTP request smuggling in Undertow↗2021-06-16

▶

OSV

HTTP Request Smuggling in Undertow↗2021-04-30

▶

GHSA

HTTP Request Smuggling in Undertow↗2021-04-30

▶

OSV

CVE-2020-10687: A flaw was discovered in all versions of Undertow before Undertow 2↗2020-09-23

▶

CVEList

CVE-2020-10687: A flaw was discovered in all versions of Undertow before Undertow 2↗2020-09-23

▶

📋Vendor Advisories

Red Hat

undertow: Possible regression in fix for CVE-2020-10687↗2021-02-04

▶

Red Hat

Undertow: Incomplete fix for CVE-2017-2666 due to permitting invalid characters in HTTP requests↗2020-04-15

▶

Debian

CVE-2020-10687: undertow - A flaw was discovered in all versions of Undertow before Undertow 2.2.0.Final, w...↗2020

▶

💬Community

Bugzilla

CVE-2020-10687 Undertow: Incomplete fix for CVE-2017-2666 due to permitting invalid characters in HTTP requests↗2019-12-19

▶