CVE-2021-23339

This affects all versions before 10.1.14 and from 10.2.0 to 10.2.4 of package com.typesafe.akka:akka-http-core. It allows multiple Transfer-Encoding headers.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:lightbend:akka-http:*:*:*:*:*:*:*:*
cpe:2.3:a:lightbend:akka-http:*:*:*:*:*:*:*:*

History

No history.

Information

Published : 2021-02-17 08:15

Updated : 2024-02-28 18:08


NVD link : CVE-2021-23339

Mitre link : CVE-2021-23339

CVE.ORG link : CVE-2021-23339


JSON object : View

Products Affected

lightbend

  • akka-http
CWE
CWE-444

Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling')