VDB

DEBIAN-CVE-2020-10719

DEBIAN-CVE-2020-10719 PUBLISHED CVSS 6.5 MEDIUM

A flaw was found in Undertow in versions before 2.1.1.Final, regarding the processing of invalid HTTP requests with large chunk sizes. This flaw allows an attacker to take advantage of HTTP request smuggling.

Risk Scores

CVSS 3.1
6.5
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N

Affected Products

VendorProductVersions
Debian:14undertow0, 1.3.11-1, 1.3.16-1

Timeline

  • May 26, 2020 CVE Published
  • Apr 28, 2026 CVE Updated
Open in Interactive Console →
$ Console Community · 100/wk Open console ›