HttpObjectDecoder.java in Netty... CVE-2019-20444

- AV AC AU C I A
发布: 2020-01-29
修订: 2020-10-15

HttpObjectDecoder.java in Netty before 4.1.44 allows an HTTP header that lacks a colon, which might be interpreted as a separate header with an incorrect syntax, or might be interpreted as an "invalid fold."

0%
暂无可用Exp或PoC
产品及版本信息(CPE)暂不可用