CVE-2026-26365 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

Akamai Ghost on Akamai CDN edge servers before 2026-02-06 mishandles processing of custom hop-by-hop HTTP headers, where an incoming request containing the head…
Medium CVSS: 4.0

CVE-2026-26365

Akamai Ghost on Akamai CDN edge servers before 2026-02-06 mishandles processing of custom hop-by-hop HTTP headers, where an incoming request containing the header "Connection: Transfer-Encoding" could result in a forward request with invalid message framing, depending on the Akamai processing path. This could result in the origin server parsing the request body incorrectly, leading to HTTP request smuggling.
Vendor
-
Product
-
CWE
CWE-444
Yayın Tarihi
2026-02-23 09:17:01
Güncelleme
2026-02-23 18:13:53
Source Identifier
cve@mitre.org
KEV Date Added
-

Kategoriler

CWE-444 MEDIUM 2026

Referanslar

https://www.akamai.com/blog/security-research/cve-2026-26365-incorrect-processing-connection-transfer-encoding