VYPR
Unrated severityNVD Advisory· Published Nov 11, 2024· Updated Nov 3, 2025

CVE-2024-52530

CVE-2024-52530

Description

GNOME libsoup before 3.6.0 allows HTTP request smuggling in some configurations because '\0' characters at the end of header names are ignored, i.e., a "Transfer-Encoding\0: chunked" header is treated the same as a "Transfer-Encoding: chunked" header.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

41

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.