CVE-2020-7671

Name of the Vulnerable Software and Affected Versions Goliath versions 1.0.0 through 1.0.6

Description The issue allows request smuggling attacks when Goliath is used as a backend and a frontend proxy is also vulnerable. This can be achieved by sending the Content-Length header twice, enabling HTTP request smuggling attacks. Additionally, invalid Transfer Encoding headers are parsed as valid, which can be leveraged for TE:CL smuggling attacks.

Recommendations For Goliath versions 1.0.0 through 1.0.6, consider restricting the use of the Content-Length header and ensure proper validation of Transfer Encoding headers to minimize the risk of exploitation. As a temporary workaround, restrict access to the vulnerable proxy setup until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.