Gunicorn Vulnerability Allows HTTP Request Smuggling
CVE-2024-1135

7.5HIGH

Key Information:

Vendor: Benoitc
Status: Benoitc/gunicorn
Vendor: CVE Published:; 16 April 2024

What is CVE-2024-1135?

Gunicorn, a popular Python WSGI HTTP server, has a vulnerability that arises from improper validation of Transfer-Encoding headers. This flaw facilitates HTTP Request Smuggling (HRS) attacks, wherein attackers are capable of crafting requests that include conflicting Transfer-Encoding headers. Due to Gunicorn's flawed processing of these headers, requests may be treated as chunked, irrespective of the actual encoding specified. This oversight allows malicious actors to potentially bypass security measures, access restricted endpoints, perform session manipulation, engage in cache poisoning, and expose sensitive data, posing significant risks to applications relying on Gunicorn for handling web traffic.

Affected Version(s)

benoitc/gunicorn <= unspecified

References

https://huntr.com/bounties/22158e34-cfd5-41ad-97e0-a78077...

https://lists.debian.org/debian-lts-announce/2024/06/msg0...

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

None

Integrity:

High

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 16, 2024
Vulnerability Reserved
Jan 31, 2024

CVE-2024-1135 Data

JSON

Benoitc

What is CVE-2024-1135?

Affected Version(s)

References

CVSS V3.1

Timeline