CVE-2020-7658
N/A
N/A
Summary
meinheld prior to 1.0.2 is vulnerable to HTTP Request Smuggling. HTTP pipelining issues and request smuggling attacks might be possible due to incorrect Content-Length and Transfer encoding header parsing.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | meinheld | All versions prior to 1.0.2 | affected |
Weaknesses
- HTTP Request Smuggling
ADP Enrichment
CVE Program Container
Additional References
- https://github.com/mopemope/meinheld/blob/master/CHANGES.rst%2C
- https://snyk.io/vuln/SNYK-PYTHON-MEINHELD-569140
References
- https://github.com/mopemope/meinheld/blob/master/CHANGES.rst%2C
- https://snyk.io/vuln/SNYK-PYTHON-MEINHELD-569140
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.