Lucene search
Redhat.comRH:CVE-2022-2466HistoryJul 19, 2022 - 2:16 a.m.
CVE-2022-2466
2022-07-1902:16:29
redhat.com
access.redhat.com
38
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
0.002 Low
EPSS
Percentile
57.2%
It was found that Quarkus 2.10.x does not terminate HTTP requests header context which may lead to unpredictable behavior.
Related
nvd
nvd
CVE-2022-2466
2022-08-31 16:15:10
osv
osv
Quarkus does not terminate HTTP requests header context
2022-09-01 00:00:23
CVE-2022-2466
2022-08-31 16:15:10
cve
cve
CVE-2022-2466
2022-08-31 16:15:10
cvelist
cvelist
CVE-2022-2466
2022-08-31 15:33:01
veracode
veracode
HTTP Request Smuggling
2022-09-01 08:03:15
github
github
Quarkus does not terminate HTTP requests header context
2022-09-01 00:00:23
githubexploit
githubexploit
Exploit for HTTP Request Smuggling in Quarkus
2022-07-26 09:45:46
prion
prion
Design/Logic Flaw
2022-08-31 16:15:00
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
0.002 Low
EPSS
Percentile
57.2%
Related for RH:CVE-2022-2466