Vulnerabilities

CVE-2024-52530

by Fred · 11/11/2024

GNOME libsoup before 3.6.0 allows HTTP request smuggling in some configurations because ‘’ characters at the end of header names are ignored, i.e., a “Transfer-Encoding: chunked” header is treated the same as a “Transfer-Encoding: chunked” header.

More information : https://gitlab.gnome.org/GNOME/libsoup/-/issues/377

Similar

Tags: Cybersecurity Alert