QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2019-16786

Back to search

CVE-2019-16786

Published: Dec 20, 2019

Modified: Aug 5, 2024

PUBLISHED

CVSS v3.1

7.1

HIGH

Description

Waitress through version 1.3.1 would parse the Transfer-Encoding header and only look for a single string value, if that value was not chunked it would fall through and use the Content-Length header instead. According to the HTTP standard Transfer-Encoding should be a comma separated list, with the inner-most encoding first, followed by any further transfer codings, ending with chunked. Requests sent with: "Transfer-Encoding: gzip, chunked" would incorrectly get ignored, and the request would use a Content-Length header instead to determine the body size of the HTTP message. This could allow for Waitress to treat a single request as multiple requests in the case of HTTP pipelining. This issue is fixed in Waitress 1.4.0.

VendorProductVersions

Pylons

Waitress

affected
<= 1.3.1 - <= 1.3.1

Weaknesses (CWE)

CWE-444

CVSS v3.1 Details

CVSS v3.1 Vector

CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:L/A:N

Attack Vector

Network

Attack Complexity

High

Privileges Required

Low

User Interaction

None

Scope

Changed

Confidentiality

High

Integrity

Low

Availability

None

References

FEDORA-2020-bdcc8ffc24
vendor-advisory
x_refsource_FEDORA
FEDORA-2020-65a7744e38
vendor-advisory
x_refsource_FEDORA
RHSA-2020:0720
vendor-advisory
x_refsource_REDHAT

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now