Advisory ID | NN-2020:1-01 |
---|---|
Topic | NGINX allows HTTP request smuggling |
CWE Impact | |
Issue date | 2020-02-25 |
Affects | N/A |
CVE Name(s) | CVE-2019-20372 |
CVSS details | |
CVSS Score | 5.3 |
CVE Risk Level | Medium |
Risk Level for Nozomi customers | None |
Under some special configuration NGINX permits HTTP request smuggling which can lead an attacker to access unauthorized web pages.
None. Our products are not affected by this issue because the configuration used is not vulnerable.
N/A
Not required
Not required
We thank the following parties for their efforts: