CVE-2025-1734
Public on 2025-03-18
Modified on 2025-03-18
Description
Streams HTTP wrapper does not fail for headers with invalid name and no colon.
CVSS v3 Base Score
See breakdown
Streams HTTP wrapper does not fail for headers with invalid name and no colon.
| Platform | Package | Release Date | Advisory |
|---|---|---|---|
| Amazon Linux 2 - Php8.2 Extra | php | 2025-03-26 19:21 | ALAS2PHP8.2-2025-007 |
| Amazon Linux 2023 | php8.1 | 2025-03-26 20:44 | ALAS2023-2025-916 |
| Amazon Linux 2023 | php8.2 | 2025-04-09 19:43 | ALAS2023-2025-936 |
| Amazon Linux 2023 | php8.3 | 2025-03-26 20:44 | ALAS2023-2025-922 |
| Score Type | Score | Vector | |
|---|---|---|---|
| Amazon Linux | CVSSv3 | 6.5 | CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N |
