| Max CVSS | 5.0 | Min CVSS | 5.0 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2020-11077 | 5.0 |
In Puma (RubyGem) before 4.3.5 and 3.12.6, a client could smuggle a request through a proxy, causing the proxy to send a response back to another unknown client. If the proxy uses persistent connections and the client adds another request in via HTTP
|
03-03-2023 - 14:41 | 22-05-2020 - 15:15 | |
| CVE-2020-11076 | 5.0 |
In Puma (RubyGem) before 4.3.4 and 3.12.5, an attacker could smuggle an HTTP response, by using an invalid transfer-encoding header. The problem has been fixed in Puma 3.12.5 and Puma 4.3.4.
|
03-03-2023 - 02:39 | 22-05-2020 - 15:15 | |
| CVE-2020-11076 | 5.0 |
In Puma (RubyGem) before 4.3.4 and 3.12.5, an attacker could smuggle an HTTP response, by using an invalid transfer-encoding header. The problem has been fixed in Puma 3.12.5 and Puma 4.3.4.
|
25-09-2020 - 20:15 | 22-05-2020 - 15:15 | |
| CVE-2020-11077 | 5.0 |
In Puma (RubyGem) before 4.3.5 and 3.12.6, a client could smuggle a request through a proxy, causing the proxy to send a response back to another unknown client. If the proxy uses persistent connections and the client adds another request in via HTTP
|
25-09-2020 - 20:15 | 22-05-2020 - 15:15 |