CVE-2020-5249: HTTP Response Splitting (Early Hints) in Puma

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2020-5249

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

HTTP Response Splitting (Early Hints) in Puma

Source: NVD (National Vulnerability Database)

Vulnerability Description

In Puma (RubyGem) before 4.3.3 and 3.12.4, if an application using Puma allows untrusted input in an early-hints header, an attacker can use a carriage return character to end the header and inject malicious content, such as additional headers or an entirely new response body. This vulnerability is known as HTTP Response Splitting. While not an attack in itself, response splitting is a vector for several other attacks, such as cross-site scripting (XSS). This is related to CVE-2020-5247, which fixed this vulnerability but only for regular responses. This has been fixed in 4.3.3 and 3.12.4.

Source: NVD (National Vulnerability Database)

CVSS Information

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:L

Source: NVD (National Vulnerability Database)

Vulnerability Type

HTTP头部中CRLF序列转义处理不恰当(HTTP响应分割)

Source: NVD (National Vulnerability Database)

Vulnerability Title

Puma 注入漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Puma是一款针对高并发应用的Web服务器。 Puma 4.3.3之前版本和3.12.4之前版本中存在注入漏洞。该漏洞源于用户输入构造命令、数据结构或记录的操作过程中，网络系统或产品缺乏对用户输入数据的正确验证，未过滤或未正确过滤掉其中的特殊元素，导致系统或产品产生解析或解释方式错误。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
puma	Puma	< 3.12.4	-

II. Public POCs for CVE-2020-5249

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2020-5249

Please Login to view more intelligence information

https://github.com/puma/puma/security/advisories/GHSA-33vf-4xgg-9r58x_refsource_CONFIRM
https://owasp.org/www-community/attacks/HTTP_Response_Splittingx_refsource_MISC
https://github.com/puma/puma/commit/c22712fc93284a45a93f9ad7023888f3a65524f3x_refsource_MISC
https://github.com/puma/puma/security/advisories/GHSA-84j7-475p-hp8vx_refsource_MISC
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BMJ3CGZ3DLBJ5WUUKMI5ZFXFJQMXJZIK/vendor-advisoryx_refsource_FEDORA
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DIHVO3CQMU7BZC7FCTSRJ33YDNS3GFPK/vendor-advisoryx_refsource_FEDORA
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NJ3LL5F5QADB6LM46GXZETREAKZMQNRD/vendor-advisoryx_refsource_FEDORA
https://nvd.nist.gov/vuln/detail/CVE-2020-5249

New Vulnerabilities

Product: Puma

Vendor: puma

Same weakness: CWE-113

V. Comments for CVE-2020-5249

No comments yet

Support Us — Your donation helps us keep running

I. Basic Information for CVE-2020-5249

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2020-5249

III. Intelligence Information for CVE-2020-5249

New Vulnerabilities

V. Comments for CVE-2020-5249

Leave a comment