Security Test: Request smuggling¶

Description¶

Default Severity:

Request smuggling happens when there's a mix-up between servers about how to process a single request. If a front-end proxy or load balancer and the backend server interpret a request differently, an attacker can sneak in malicious content that one server sees but the other misses. This makes it possible for them to bypass security checks, potentially leading to unauthorized actions, data leaks, or other dangerous outcomes. Developers often fall into the trap of not strictly validating requests or assuming the system's parts will handle requests exactly the same way, which means paying close attention to how HTTP headers and boundaries are parsed is key.

Reference:

https://portswigger.net/web-security/request-smuggling
- https://en.wikipedia.org/wiki/HTTP_request_smuggling

Configuration¶

Identifier: protocol/request_smuggling

Examples¶

All configuration available:

checks:
  protocol/request_smuggling:
    skip: false # default

Compliance and Standards¶

Standard	Value
OWASP API Top 10	API8:2023
OWASP LLM Top 10	LLM06:2023
PCI DSS	`6.5.10`
GDPR	`Article-32`
SOC2	`CC6`
PSD2	`Article-95`
ISO 27001	`A.13.1`
NIST	`SP800-95`
FedRAMP	`SI-10`
CWE	`444`
CVSS Vector	`CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H`
CVSS Score	`7.5`