CVE
CVE-2020-25613
| CVE ID |
CVE-2020-25613
|
|---|---|
| CVSS Score |
7.5
|
| Operating System | |
| Affected Versions | |
| Patched Versions | |
| Patch Date |
|
| Last Updated Date | |
| Vector String |
Additional Information
OL CVE Issue Summary:
An issue was discovered in `WEBrick`, a simple HTTP server bundled with `Ruby`, where it had not checked the `Transfer-Encoding` header value rigorously. An attacker may potentially exploit this issue to bypass a `reverse proxy` (which also has a poor header check), which may cause an `HTTP Request Smuggling attack`.