Home > Vulnerability Database > CVE-2019-16789

Mend.io Vulnerability Database

CVE-2019-16789

Good to know:

Date: December 26, 2019

In Waitress through version 1.4.0, if a proxy server is used in front of waitress, an invalid request may be sent by an attacker that bypasses the front-end and is parsed differently by waitress leading to a potential for HTTP request smuggling. Specially crafted requests containing special whitespace characters in the Transfer-Encoding header would get parsed by Waitress as being a chunked request, but a front-end server would use the Content-Length instead as the Transfer-Encoding header is considered invalid due to containing invalid characters. If a front-end server does HTTP pipelining to a backend Waitress server this could lead to HTTP request splitting which may lead to potential cache poisoning or unexpected information disclosure. This issue is fixed in Waitress 1.4.1 through more strict HTTP field validation.

Language: Python

Severity Score

7.1

Related Resources (15)

Url: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/GVDHR2DNKCNQ7YQXISJ45NT4IQDX3LJ7

Url: https://docs.pylonsproject.org/projects/waitress/en/latest/#security-fixes

Url: https://nvd.nist.gov/vuln/detail/CVE-2019-16789

Url: https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GVDHR2DNKCNQ7YQXISJ45NT4IQDX3LJ7/

Url: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/LYEOTGWJZVKPRXX2HBNVIYWCX73QYPM5

Url: https://access.redhat.com/errata/RHSA-2020:0720

Url: https://github.com/Pylons/waitress/security/advisories/GHSA-m5ff-3wj3-8ph4

Url: https://github.com/github/advisory-review/pull/14604

Url: https://github.com/Pylons/waitress/commit/ddb65b489d01d696afa1695b75fdd5df3e4ffdf8

Url: https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LYEOTGWJZVKPRXX2HBNVIYWCX73QYPM5/

Url: https://lists.debian.org/debian-lts-announce/2022/05/msg00011.html

Url: https://github.com/Pylons/waitress/commit/11d9e138125ad46e951027184b13242a3c1de017

Url: https://www.oracle.com/security-alerts/cpuapr2022.html

Url: https://github.com/Pylons/waitress/security/advisories/GHSA-968f-66r5-5v74

Url: https://www.mend.io/vulnerability-database/CVE-2019-16789

Severity Score

7.1

Weakness Type (CWE)

Inconsistent Interpretation of HTTP Requests ('HTTP Request Smuggling')

CWE-444

Top Fix

Upgrade Version

Upgrade to version v1.4.1

Learn More

CVSS v3.1

Base Score:	7.1
Attack Vector (AV):	NETWORK
Attack Complexity (AC):	HIGH
Privileges Required (PR):	LOW
User Interaction (UI):	NONE
Scope (S):	CHANGED
Confidentiality (C):	LOW
Integrity (I):	HIGH
Availability (A):	NONE

CVSS v2

Base Score:	6.4
Access Vector (AV):	NETWORK
Access Complexity (AC):	LOW
Authentication (AU):	NONE
Confidentiality (C):	PARTIAL
Integrity (I):	PARTIAL
Availability (A):	NONE
Additional information:

Mend.io Vulnerability Database

We found results for “”

CVE-2019-16789

Good to know:

Date: December 26, 2019

Language: Python

Severity Score

Related Resources (15)

Severity Score

Weakness Type (CWE)

Top Fix

Upgrade Version

CVSS v3.1

CVSS v2

Do you need more information?