Moderate severityNVD Advisory· Published Feb 19, 2020· Updated Aug 4, 2024
CVE-2019-10797
CVE-2019-10797
Description
Netty in WSO2 transport-http before v6.3.1 is vulnerable to HTTP Response Splitting due to HTTP Header validation being disabled.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
org.wso2.transport.http:org.wso2.transport.http.nettyMaven | < 6.3.1 | 6.3.1 |
Affected products
2- Snyk/WSO2 transport-httpv5Range: All versions prior to version v6.3.1
Patches
Vulnerability mechanics
References
3- github.com/advisories/GHSA-rvpc-w57p-q95fghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2019-10797ghsaADVISORY
- snyk.io/vuln/SNYK-JAVA-ORGWSO2TRANSPORTHTTP-548944ghsax_refsource_CONFIRMWEB
News mentions
0No linked articles in our index yet.