CVE

CVE-2017-12165

CVE-2017-12165

It was discovered that Undertow before 1.4.17, 1.3.31 and 2.0.0 processes http request headers with unusual whitespaces which can cause possible http request smuggling.

Source: CVE-2017-12165

Exit mobile version