CVE STALKER

CVE-2021-33037

CVSS
DESCRIPTIONApache Tomcat 10.0.0-M1 to 10.0.6, 9.0.0.M1 to 9.0.46 and 8.5.0 to 8.5.66 did not correctly parse the HTTP transfer-encoding request header in some circumstances leading to the possibility to request smuggling when used with a reverse proxy. Specifically: - Tomcat incorrectly ignored the transfer encoding header if the client declared it would only accept an HTTP/1.0 response; - Tomcat honoured the identify encoding; and - Tomcat did not ensure that, if present, the chunked encoding was the final encoding.
HEAT SCORE124

WORDS

TWEETS

DATE TWEETS USER
2021-07-20 23:41:56🚨 NEW: CVE-2021-33037 🚨 Apache Tomcat 10.0.0-M1 to 10.0.6, 9.0.0.M1 to 9.0.46 and 8.5.0 to 8.5.66 did not correctly… https://t.co/3irlagiK6k https://twitter.com/i/web/status/1417627997822140416threatintelctr
2021-07-16 04:20:04CVE-2021-33037: Vulnerabilidad de contrabando de solicitudes HTTP en Apache Tomcat es corregida después de 6 años https://t.co/pBNAmNzy58 https://www.cibertip.com/vulnerabilidades/cve-2021-33037-vulnerabilidad-de-contrabando-de-solicitudes-http-en-apache-tomcat-es-corregida-despues-de-6-anos/ConceptoNET
2021-07-15 21:00:12🚨 Nueva vulnerabilidad en #Apache #Tomcat – CVE-2021-33037 https://t.co/jBWUu7JuyB https://t.co/Cyjz6hABFQ https://www.cronup.com/nueva-vulnerabilidad-en-apache-tomcat-cve-2021-33037/Cronup_CyberSec
2021-07-15 18:40:19New post from https://t.co/9KYxtdZjkl (CVE-2021-33037 (tomcat)) has been published on https://t.co/hp5gR1ouRS http://www.sesin.at https://www.sesin.at/2021/07/15/cve-2021-33037-tomcat/www_sesin_at
2021-07-15 18:40:14New post from https://t.co/uXvPWJPHkR (CVE-2021-33037 (tomcat)) has been published on https://t.co/8Xj797TsRA http://www.sesin.at https://www.sesin.at/2021/07/15/cve-2021-33037-tomcat/WolfgangSesin
2021-07-15 18:10:17🚨 NEW: CVE-2021-33037 🚨 Apache Tomcat 10.0.0-M1 to 10.0.6, 9.0.0.M1 to 9.0.46 and 8.5.0 to 8.5.66 did not correctly… https://t.co/VYuFvFx5b8 https://twitter.com/i/web/status/1415733038579949584threatintelctr
2021-07-15 17:50:13#Cibersegruidad #infosec #seguridad #hacking CVE-2021-33037: Vulnerabilidad de contrabando de solicitudes HTTP en A… https://t.co/NnJjgHviIJ https://twitter.com/i/web/status/1415729475707314177Webimprints
2021-07-15 17:50:12#infosec #cybersecurity #hacking #security CVE-2021-33037 Apache Tomcat HTTP request smuggling vulnerability patche… https://t.co/6N4PZJhHDp https://twitter.com/i/web/status/1415729549124407297Webimprints
2021-07-14 20:00:11[SECURITY] CVE-2021-33037 Apache Tomcat HTTP request smuggling https://t.co/fqhfonqHXH http://mail-archives.us.apache.org/mod_mbox/www-announce/202107.mbox/%3Cd050b202-b64e-bc6f-a630-2dd83202f23a%40apache.org%3ELordKarma42
2021-07-14 03:20:17Top story: [SECURITY] CVE-2021-33037 Apache Tomcat HTTP request smuggling https://t.co/UXNSkIBxwA, see more https://t.co/op6V5mLutF http://mail-archives.us.apache.org/mod_mbox/www-announce/202107.mbox/%3Cd050b202-b64e-bc6f-a630-2dd83202f23a%40apache.org%3E http://tweetedtimes.com/v/16476?s=tnpinfowaropcenter
2021-07-14 00:21:04Apache Tomcatの複数の脆弱性情報(Important: CVE-2021-30639, CVE-2021-33037, Low: CVE-2021-30640 ) - https://t.co/5yYCgsjPxx https://t.co/NFMQfTqM68 http://security.sios.com https://security.sios.com/vulnerability/tomcat-security-vulnerability-20210714.htmlfd0
2021-07-13 21:40:27SIOSセキュリティブログを更新しました。 Apache Tomcatの複数の脆弱性情報(Important: CVE-2021-30639, CVE-2021-33037, Low: CVE-2021-30640 )… https://t.co/FNHNxwVQPq https://twitter.com/i/web/status/1415062052066906116omokazuki
2021-07-13 16:20:46"An important HTTP request smuggling flaw (CVE-2021-33037) has been reported in #Apache Tomcat. Patch your servers… https://t.co/cHaFmX2W1g https://twitter.com/i/web/status/1414981021322387461trip_elix
2021-07-13 16:10:18An important HTTP request smuggling flaw (CVE-2021-33037) has been reported in #Apache Tomcat. Patch your servers w… https://t.co/VA0UeiDRCv https://twitter.com/i/web/status/1414979897869537283TheHackersNews
2021-07-13 02:20:06Apache Tomcat::Header Handler::Request Smuggling::CVE-2021-33037tongson
2021-07-13 01:10:18#Apache #Tomcat 8.5 のセキュリティ対応が発表された。CVE-2021-30639,CVE-2021-30640, CVE-2021-33037に対応。結局 8.5.69 へのupdateが求められる。私のサイト… https://t.co/lo0NfWT4KX https://twitter.com/i/web/status/1414752725623918598ottoto2017
2021-07-12 18:40:32My real name is CVE-2021-33037 but all my friends call me Spousal Gomphodont https://t.co/l4mVGsaj6y https://nvd.nist.gov/vuln/detail/CVE-2021-33037vulnonym
2021-07-12 17:00:18Tomcat - CVE-2021-33037: https://t.co/MOw29fRbtf https://lists.apache.org/thread.html/r612a79269b0d5e5780c62dfd34286a8037232fec0bc6f1a7e60c9381%40%3Cannounce.tomcat.apache.org%3ELinInfoSec
2021-07-12 16:40:12CVE-2021-33037 Apache Tomcat 10.0.0-M1 to 10.0.6, 9.0.0.M1 to 9.0.46 and 8.5.0 to 8.5.66 did not correctly parse th… https://t.co/eAqNKCwxd5 https://twitter.com/i/web/status/1414623704311635968eyeTSystems
2021-07-12 16:40:03CVE-2021-33037 Apache Tomcat 10.0.0-M1 to 10.0.6, 9.0.0.M1 to 9.0.46 and 8.5.0 to 8.5.66 did not correctly parse t… https://t.co/m7rl06PKzL https://twitter.com/i/web/status/1414625031787892737VulmonFeeds
2021-07-12 15:50:07CVE-2021-33037 Apache Tomcat 10.0.0-M1 to 10.0.6, 9.0.0.M1 to 9.0.46 and 8.5.0 to 8.5.66 did not correctly parse th… https://t.co/TlAp6l5f1C https://twitter.com/i/web/status/1414611840856961027CVEnew
2021-07-12 15:10:16CVE-2021-33037 : #Apache Tomcat 10.0.0-M1 to 10.0.6, 9.0.0.M1 to 9.0.46 and 8.5.0 to 8.5.66 did not correctly parse… https://t.co/hZtKRZcQI1 https://twitter.com/i/web/status/1414600889030090752CVEreport