Name of the Vulnerable Software and Affected Versions Twisted Web (affected versions not specified)

Description The issue allows for request smuggling attacks. When Twisted Web receives a request with two content-length headers, it ignores the first header. If the second content-length is set to zero, Twisted Web interprets the request body as a pipelined request, contrary to RFC 7230 Section 3.3.3#4, which states that the server must reject such messages with a 400 response. Additionally, when presented with a content-length and a chunked encoding header, the content-length takes precedence, and the remainder of the request body is interpreted as a pipelined request, violating RFC 7230 Section 3.3.3#3, which specifies that transfer-encoding overrides content-length in such cases.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.