CVE-2024-38311 | ATS up to 9.2.8/10.0.3 Chunked Message Body request smuggling

Inserito da Angelo Barbosa | Mar 5, 2025 | CVE

A vulnerability, which was classified as critical, has been found in ATS up to 9.2.8/10.0.3. This issue affects some unknown processing of the component Chunked Message Body Handler. The manipulation leads to http request smuggling.

The identification of this vulnerability is CVE-2024-38311. The attack may be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-38311 | ATS up to 9.2.8/10.0.3 Chunked Message Body request smuggling

Post correlati

CVE-2024-52505 | matrix-org matrix-appservice-irc up to 3.0.2 Provisioning API input terminators (GHSA-c3hj-hg7p-rrq5)

CVE-2024-24115 | Cotonti CMS 0.9.24 Edit Page cross site scripting

CVE-2024-52067 | Apache NiFi up to 1.28.0/2.0.0-M4 Parameter Context debug log file

CVE-2025-22812 | FlickDevs News Ticker Widget for Elementor Plugin up to 1.3.2 on WordPress cross site scripting