Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

CVE-2021-40346

Related Vulnerabilities: CVE-2021-40346  

No description is available for this CVE.

Source

Description

No description is available for this CVE.

Mitigation

To mitigate this problem the following can be added to proxy config:

http-request deny if { req.hdr_cnt(content-length) gt 1 }
http-response deny if { res.hdr_cnt(content-length) gt 1 }

Additional Information

  • Bugzilla 2000599: CVE-2021-40346 haproxy: request smuggling attack or response splitting via duplicate content-length header
  • CWE-444: Inconsistent Interpretation of HTTP Requests ('HTTP Request Smuggling')
  • FAQ: Frequently asked questions about CVE-2021-40346

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook

Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started