CVE-2019-20372

CVE Database · CVE-2019-20372

CVE-2019-20372

· MEDIUMModified

CVSS v3.1

5.3

EPSS

14.96%

Published

Jan 9, 2020

Modified

Nov 21, 2024

Public PoC / Exploit (1)

All weaponized →

TrickestTrickest PoC index

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

NGINX before 1.17.7, with certain error_page configurations, allows HTTP request smuggling, as demonstrated by the ability of an attacker to read unauthorized web pages in environments where NGINX is being fronted by a load balancer.

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Weaknesses (CWE)

CWE-444

Affected Products (5)

f5 · nginx (up to 1.17.7)vulnerable

apple · xcode (up to 13.0)vulnerable

canonical · ubuntu_linuxvulnerable

opensuse · leapvulnerable

netapp · cloud_backupvulnerable

References (20)

http://lists.opensuse.org/opensuse-security-announce/2020-02/msg00013.html

Mailing ListThird Party Advisory

http://nginx.org/en/CHANGES

MitigationRelease NotesVendor Advisory

http://seclists.org/fulldisclosure/2021/Sep/36

Mailing ListThird Party Advisory

https://bertjwregeer.keybase.pub/2019-12-10%20-%20error_page%20request%20smuggling.pdf

ExploitMitigationThird Party Advisory

https://duo.com/docs/dng-notes#version-1.5.4-january-2020

Release Notes

KEV Catalog EPSS Scores Vendors All CVEs