CVE-2021-41442HTTP Request Smuggling in Dlink Dir-x1860 Firmware

CWE-444HTTP Request Smuggling3 documents3 sources
Severity
7.5HIGHNVD
EPSS
2.3%
top 15.19%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Dlink Dir-x1860 Firmware
Timeline
PublishedFeb 9
Latest updateFeb 10

Description

An HTTP smuggling attack in the web application of D-Link DIR-X1860 before v1.10WWB09_Beta allows a remote unauthenticated attacker to DoS the web application via sending a specific HTTP packet.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:HExploitability: 3.9 | Impact: 3.6

Affected Packages1 packages

🔴Vulnerability Details

2
GHSA
GHSA-4hrq-xfjw-8g7p: An HTTP smuggling attack in the web application of D-Link DIR-X1860 before v12022-02-10
CVEList
CVE-2021-41442: An HTTP smuggling attack in the web application of D-Link DIR-X1860 before v12022-02-09
CVE-2021-41442 — HTTP Request Smuggling in Dlink | cvebase