Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Varnish Cache before 7.6.2 and Varnish Enterprise before 6.0.13r10 allow client-side desync via HTTP/1 requests.
CVSS Information
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:L/I:L/A:N
Vulnerability Type
HTTP请求的解释不一致性(HTTP请求私运)
Vulnerability Title
Varnish Cache和Varnish Enterprise 安全漏洞
Vulnerability Description
Varnish Cache和Varnish Enterprise都是Varnish公司的产品。Varnish Cache是一套反向网站缓存服务器。Varnish Enterprise是一款高性能的缓存软件。用于处理高流量、优化业务。 Varnish Cache 7.6.2之前版本和Varnish Enterprise 6.0.13r10之前版本存在安全漏洞,该漏洞源于HTTP/1请求可能导致客户端不同步。
CVSS Information
N/A
Vulnerability Type
N/A