Home
HIGH: 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:HDefault status
unaffected
10.0.7 (semver) before 10.0.23
affected
11.0.7 (semver) before 11.0.23
affected
Description
For requests that have a body, but reading the body may end up in reading 0 bytes, there is a buffer leak. This is particularly the case for 100-Continue, but any request where the network is slow can leak.
Problem types
Product status
10.0.7 (semver) before 10.0.23
11.0.7 (semver) before 11.0.23
Credits
https://github.com/kimmerin
https://github.com/pmneo
References
gitlab.eclipse.org/security/cve-assignment/-/work_items/29