CVE-2021-20220HTTP Request Smuggling in Redhat Undertow

CWE-444HTTP Request Smuggling7 documents6 sources
Severity
4.8MEDIUMNVD
CNA6.5GHSA6.5OSV6.5
EPSS
0.2%
top 60.08%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Redhat Undertow
Timeline
PublishedFeb 23
Latest updateJun 16

Description

A flaw was found in Undertow. A regression in the fix for CVE-2020-10687 was found. HTTP request smuggling related to CVE-2017-2666 is possible against HTTP/1.x and HTTP/2 due to permitting invalid characters in an HTTP request. This flaw allows an attacker to poison a web-cache, perform an XSS attack, or obtain sensitive information from request other than their own. The highest threat from this vulnerability is to data confidentiality and integrity.

CVSS vector

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:NExploitability: 2.2 | Impact: 2.5

Affected Packages3 packages

NVDredhat/undertow2.1.02.1.6+1
Debianredhat/undertow< 2.2.0-1
CVEListV5redhat/undertowUndertow 2.2.0.Final, Undertow 2.1.6.Final, Undertow 2.0.34.Final

🔴Vulnerability Details

4
OSV
HTTP request smuggling in Undertow2021-06-16
GHSA
HTTP request smuggling in Undertow2021-06-16
CVEList
CVE-2021-20220: A flaw was found in Undertow2021-02-23
OSV
CVE-2021-20220: A flaw was found in Undertow2021-02-23

📋Vendor Advisories

2
Red Hat
undertow: Possible regression in fix for CVE-2020-106872021-02-04
Debian
CVE-2021-20220: undertow - A flaw was found in Undertow. A regression in the fix for CVE-2020-10687 was fou...2021
CVE-2021-20220 — HTTP Request Smuggling in Redhat | cvebase