Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
9.8
CVSSv3

CVE-2023-40175

Published: 18/08/2023 Updated: 24/08/2023
CVSS v3 Base Score: 9.8 | Impact Score: 5.9 | Exploitability Score: 3.9
VMScore: 0
Subscribe to Puma

Vulnerability Summary

Puma is a Ruby/Rack web server built for parallelism. Prior to versions 6.3.1 and 5.6.7, puma exhibited incorrect behavior when parsing chunked transfer encoding bodies and zero-length Content-Length headers in a way that allowed HTTP request smuggling. Severity of this issue is highly dependent on the nature of the web site using puma is. This could be caused by either incorrect parsing of trailing fields in chunked transfer encoding bodies or by parsing of blank/zero-length Content-Length headers. Both issues have been addressed and this vulnerability has been fixed in versions 6.3.1 and 5.6.7. Users are advised to upgrade. There are no known workarounds for this vulnerability.

Vulnerable Product Search on Vulmon Subscribe to Product

puma puma

Vendor Advisories

Debian CVElist Bug Report Logs: puma: CVE-2023-40175: Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling')
Debian Bug report logs - #1050079 puma: CVE-2023-40175: Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling') Package: src:puma; Maintainer for src:puma is Debian Ruby Team <pkg-ruby-extras-maintainers@listsaliothdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Sat, ...
Red Hat:
DescriptionThe MITRE CVE dictionary describes this issue as: Puma is a Ruby/Rack web server built for parallelism Prior to versions 631 and 567, puma exhibited incorrect behavior when parsing chunked transfer encoding bodies and zero-length Content-Length headers in a way that allowed HTTP request smuggling Severity of this issue is highly de ...

Github Repositories

https://github.com/narfindustries/http-garden

Differential testing and fuzzing of HTTP servers and proxies

The HTTP Garden The HTTP Garden is a collection of HTTP servers and proxies configured to be composable, along with scripts to interact with them in a way that makes finding vulnerabilities much much easier For some cool demos of the vulnerabilities that you can find with the HTTP Garden, check out our ShmooCon 2024 talk Acknowledgements We'd like to thank our friends at

References

CWE-444https://github.com/puma/puma/commit/690155e7d644b80eeef0a6094f9826ee41f1080ahttps://github.com/puma/puma/security/advisories/GHSA-68xg-gqqm-vgj8https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1050079https://nvd.nist.govhttps://github.com/narfindustries/http-gardenhttps://access.redhat.com/security/cve/cve-2023-40175
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322cross-site request forgeryunauthorizedCVE-2024-33925reflected XSSCVE-2023-51580CVE-2023-51579CVE-2015-2051CVE-2023-51609
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook