Description
Apsis Pound before 2.8a allows request smuggling via crafted headers, a different vulnerability than CVE-2005-3751.
References (4)
Scores
CVSS v3
9.8
EPSS
0.0100
EPSS Percentile
77.1%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-444
Status
published
Products (2)
apsis/pound
< 2.7
debian/debian_linux
7.0
Published
Jan 29, 2018
Tracked Since
Feb 18, 2026