18 Oct 2019
Vulnérabilité CVE-2019-17513 CVE Vulnerability
An issue was discovered in Ratpack before 1.7.5. Due to a misuse of the Netty library class DefaultHttpHeaders, there is no validation that headers lack HTTP control characters. Thus, if untrusted data is used to construct HTTP headers with Ratpack, HTTP Response Splitting can occur. (CVSS:5.0) (Last Update:2020-08-24)
Vulnerability Details : An issue was discovered in Ratpack before 1.7.5. Due to a misuse of the Netty library class DefaultHttpHeaders, there is no validation that headers lack HTTP control characters. Thus, if untrusted data is used to construct HTTP headers with Ratpack, HTTP Response Splitting can occur. Publish Date : 2019-10-18 Last Update Date : 2020-08-24 - CVSS Scores & Vulnerability Types
- Products Affected By CVE-2019-17513
- Number Of Affected Versions By Product
- References For CVE-2019-17513 | ||||||||||||||||||||||||||||||||||||||||||||||||||
- Metasploit Modules Related To CVE-2019-17513There are not any metasploit modules related to this CVE entry (Please visit www.metasploit.com for more information) |