Apache - Httpclient CVE

Filtered by vendor Apache Subscribe

Filtered by product Httpclient

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Total 1 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2020-13956	4 Apache, Netapp, Oracle and 1 more	17 Httpclient, Active Iq Unified Manager, Snapcenter and 14 more	2022-05-12	5.0 MEDIUM	5.3 MEDIUM
Apache HttpClient versions prior to version 4.5.13 and 5.0.3 can misinterpret malformed authority component in request URIs passed to the library as java.net.URI object and pick the wrong target host for request execution.

Vulnerabilities (CVE)