Name of the Vulnerable Software and Affected Versions:

Akamai Ghost versions prior to 2025-07-21

Description:

The software contains an HTTP Request Smuggling flaw triggered by an OPTIONS request containing an entity body. This allows for the potential injection of subsequent requests within the persistent connection between an Akamai proxy server and the origin server, specifically when the origin server does not adhere to certain Internet standards.

Recommendations:

Update Akamai Ghost to version 2025-07-21 or later.