B3NCLOUD ARTICLE INTELLIGENCE

ARTICLEVIEW

Zurück zu News

USN-8495-1: nghttp2 vulnerability

It was discovered that the nghttp2 nghttpx proxy incorrectly handled HTTP/1.1 Upgrade requests that included a Content-Length header and body. A remote attacker could possibly use this issue to perform HTTP request and response smuggling attacks against backend services.

Original-Artikel öffnen Zurück zur Übersicht