CVE-2021-33037
maven/org.apache.tomee/tomee-webapp
Inconsistent Interpretation of HTTP Requests (HTTP Request Smuggling)
Apache Tomcat does not correctly parse the HTTP transfer-encoding request header in some circumstances leading to the possibility to request smuggling when used with a reverse proxy.
Version 8.0.6
Upgrade to version 8.0.7 or above.
2021-09-22
source |