QwikSec

Security Database

CVE

CWE

Training

CVE-2022-45059

Published: Nov 9, 2022

Modified: May 1, 2025

PUBLISHED

Description

An issue was discovered in Varnish Cache 7.x before 7.1.2 and 7.2.x before 7.2.1. A request smuggling attack can be performed on Varnish Cache servers by requesting that certain headers are made hop-by-hop, preventing the Varnish Cache servers from forwarding critical headers to the backend.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://varnish-cache.org/security/VSV00010.html

FEDORA-2022-babfbc2622

vendor-advisory

FEDORA-2022-0d5dcc031e

vendor-advisory

FEDORA-2022-99c5ddb2ae

vendor-advisory

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.