Eclipse Grizzly in versions before 5.0.2, cannot properly parse the trailer section in malformed trailer header's line, which can be leveraged to perform HTTP request smuggling.
Metrics
Affected Vendors & Products
References
History
Tue, 14 Jul 2026 10:45:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| First Time appeared |
Eclipse
Eclipse glassfish |
|
| Vendors & Products |
Eclipse
Eclipse glassfish |
Tue, 14 Jul 2026 09:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | Eclipse Grizzly in versions before 5.0.2, cannot properly parse the trailer section in malformed trailer header's line, which can be leveraged to perform HTTP request smuggling. | |
| Weaknesses | CWE-444 | |
| References |
| |
| Metrics |
cvssV4_0
|
Status: PUBLISHED
Assigner: eclipse
Published:
Updated: 2026-07-14T08:28:17.257Z
Reserved: 2026-06-18T11:27:18.643Z
Link: CVE-2026-12606
No data.
No data.
No data.
OpenCVE Enrichment
Updated: 2026-07-14T10:30:08Z