CNNVD-202508-3631 Information

CNNVD ID

CNNVD-202508-3631

Related CVE

CVE-2025-54142

• CNNVD Published: 2025-08-29

Description (Chinese)

Akamai Ghost是美国Akamai公司的一个HTTP服务程序。 Akamai Ghost 2025-07-21之前版本存在环境问题漏洞，该漏洞源于攻击者可以通过发送带有实体主体的 OPTIONS 请求来实施 HTTP 请求走私攻击。

Description (English)

Akamai Ghost is a HTTP service programme for Akamai, United States. The environmental loophole in the pre-Akamai Ghost 2025-07-21 version arises from the fact that the attackers can carry out an HTTP request for a smuggling attack by sending an OPTIONS request with a physical subject.

Hazard Level

High

Vulnerability Type

环境问题

Affected Vendor

Akamai

Published

2025-08-29

Last Modified

2026-02-24

References

https://www.akamai.com/blog/security-research/advisory-cve-2025-54142- https://community.akamai.com/customers/s/feed/0D5a700000W51m8CAB https://nvd.nist.gov/vuln/detail/CVE-2025-54142

Patch

https://www.akamai.com/blog/security-research/advisory-cve-2025-54142-http-request-smuggling-via-options-body