CVE-2019-16789

CVSS v2.0

8.5

High

Vector

AV:N/AC:L/Au:N/C:P/I:C/A:N

Name of the Vulnerable Software and Affected Versions Waitress versions 1.4.0 and earlier

Description The issue is related to the incorrect handling of special whitespace characters in the Transfer-Encoding header, which can lead to HTTP request smuggling and potentially result in cache poisoning or unexpected information disclosure. This can occur when a proxy server is used in front of Waitress and an attacker sends a specially crafted request. The vulnerability allows a remote attacker to access and compromise confidential data using a specially created request.

Recommendations For Waitress versions 1.4.0 and earlier, upgrade to Waitress version 1.4.1 or later, with version 1.4.2 being the recommended version as it includes improved HTTP header validation to completely fix the issue. As a temporary workaround, consider restricting access to the Transfer-Encoding header to minimize the risk of exploitation.

Fix

HTTP Request/Response Smuggling

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-444

Related Identifiers

ALT-PU-2021-1655

BDU:2022-05832

CVE-2019-16789

DLA-2056-1

DLA-3000-1

GHSA-968F-66R5-5V74

MGASA-2020-0083

OPENSUSE-SU-2020:1911-1

OPENSUSE-SU-2020:1922-1

OPENSUSE-SU-2020_1911-1

OPENSUSE-SU-2020_1922-1

PYSEC-2019-138

RHSA-2020:0720

SUSE-RU-2020:2072-1

SUSE-RU-2020:2161-1

SUSE-SU-2020:1901-1

SUSE-SU-2020:3269-1

SUSE-SU-2020:3292-1

Affected Products

Alt Linux

Astra Linux

Suse

Waitress

CVE-2019-16789

Weakness Enumeration

Related Identifiers

Affected Products

References · 158