Vulnerabilities > Inconsistent Interpretation of HTTP Requests ('HTTP Request Smuggling')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-02-11 | CVE-2021-21299 | HTTP Request Smuggling vulnerability in Hyper hyper is an open-source HTTP library for Rust (crates.io). | 8.1 |
| 2021-02-06 | CVE-2021-22293 | HTTP Request Smuggling vulnerability in Huawei Campusinsight, Manageone and Taurus-Al00A Firmware Some Huawei products have an inconsistent interpretation of HTTP requests vulnerability. | 7.5 |
| 2021-02-03 | CVE-2021-25762 | HTTP Request Smuggling vulnerability in Jetbrains Ktor In JetBrains Ktor before 1.4.3, HTTP Request Smuggling was possible. | 5.3 |
| 2021-01-20 | CVE-2020-28483 | HTTP Request Smuggling vulnerability in Gin-Gonic GIN This affects all versions of package github.com/gin-gonic/gin. | 7.1 |
| 2021-01-18 | CVE-2020-28473 | HTTP Request Smuggling vulnerability in multiple products The package bottle from 0 and before 0.12.19 are vulnerable to Web Cache Poisoning by using a vector called parameter cloaking. | 6.8 |
| 2021-01-12 | CVE-2021-21445 | HTTP Request Smuggling vulnerability in SAP Commerce Cloud SAP Commerce Cloud, versions - 1808, 1811, 1905, 2005, 2011, allows an authenticated attacker to include invalidated data in the HTTP response Content Type header, due to improper input validation, and sent to a Web user. | 5.4 |
| 2021-01-11 | CVE-2020-17509 | HTTP Request Smuggling vulnerability in Apache Traffic Server ATS negative cache option is vulnerable to a cache poisoning attack. | 7.5 |
| 2021-01-06 | CVE-2020-8287 | HTTP Request Smuggling vulnerability in multiple products Node.js versions before 10.23.1, 12.20.1, 14.15.4, 15.5.1 allow two copies of a header field in an HTTP request (for example, two Transfer-Encoding header fields). | 6.5 |
| 2020-12-31 | CVE-2020-35884 | HTTP Request Smuggling vulnerability in multiple products An issue was discovered in the tiny_http crate through 2020-06-16 for Rust. | 6.5 |
| 2020-12-31 | CVE-2020-35863 | HTTP Request Smuggling vulnerability in Hyper An issue was discovered in the hyper crate before 0.12.34 for Rust. | 9.8 |