1 results (0.006 seconds)
CVSS: 6.5EPSS: 0%CPEs: 2EXPL: 0
CVSS: 6.5EPSS: 0%CPEs: 2EXPL: 0CVE-2021-23339 – HTTP Request Smuggling
https://notcve.org/view.php?id=CVE-2021-23339
This affects all versions before 10.1.14 and from 10.2.0 to 10.2.4 of package com.typesafe.akka:akka-http-core. It allows multiple Transfer-Encoding headers. Esto afecta a todas las versiones anteriores a 10.1.14 y desde la versión 10.2.0 a la versión 10.2.4 del paquete com.typesafe.akka:akka-http-core. Este permite múltiples encabezados Transfer-Encoding • https://github.com/akka/akka-http/pull/3754%23issuecomment-779265201 https://snyk.io/vuln/SNYK-JAVA-COMTYPESAFEAKKA-1075043 • CWE-444: Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling') •