CVE-2020-1710
Description
The issue appears to be that JBoss EAP 6.4.21 does not parse the field-name in accordance to RFC7230[1] as it returns a 200 instead of a 400.
CWE
- (none)
Affected
- n/a / JBoss Enterprise Application Platform — v=EAP 6.4.21 [affected]
CVSS
- (none)
References
- https://bugzilla.redhat.com/show_bug.cgi?id=1793970 x_refsource_MISC
Source
cvelistV5-main/cves/2020/1xxx/CVE-2020-1710.json