Vulnerability CVE-2019-20372
Published: 2020-01-09   Modified: 2020-01-10

Description:
NGINX before 1.17.7, with certain error_page configurations, allows HTTP request smuggling, as demonstrated by the ability of an attacker to read unauthorized web pages in environments where NGINX is being fronted by a load balancer.

Type:

CWE-444

 (Inconsistent Interpretation of HTTP Requests ('HTTP Request Smuggling'))

CVSS2 => (AV:N/AC:M/Au:N/C:P/I:N/A:N)

CVSS Base Score
Impact Subscore
Exploitability Subscore
4.3/10
2.9/10
8.6/10
Exploit range
Attack complexity
Authentication
Remote
Medium
No required
Confidentiality impact
Integrity impact
Availability impact
Partial
None
None
Affected software
Nginx -> Nginx 

 References:
http://nginx.org/en/CHANGES
https://bertjwregeer.keybase.pub/2019-12-10%20-%20error_page%20request%20smuggling.pdf
https://duo.com/docs/dng-notes#version-1.5.4-january-2020
https://github.com/kubernetes/ingress-nginx/pull/4859
https://github.com/nginx/nginx/commit/c1be55f97211d38b69ac0c2027e6812ab8b1b94e
https://usn.ubuntu.com/4235-1/
https://usn.ubuntu.com/4235-2/
Copyright 2024, cxsecurity.com

 

Back to Top