CVE-2025-14523HIGH 8.2EPSS p38.6%

CVE-2025-14523CVE-2025-14523

Description

A flaw in libsoup’s HTTP header handling allows multiple Host: headers in a request and returns the last occurrence for server-side processing. Common front proxies often honor the first Host: header, so this mismatch can cause vhost confusion where a proxy routes a request to one backend but the backend interprets it as destined for another host. This discrepancy enables request-smuggling style attacks, cache poisoning, or bypassing host-based access controls when an attacker supplies duplicate Host headers.

Scoring

CVSS 3.18.2 (HIGH)
VectorCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:N
EPSS0.50% probability of exploitation · percentile 38.6% · 2026-06-18T12:00:27Z
Published2025-12-11
Last modified2026-04-15

Underlying weaknesses· 1

CWE-444

References

  1. https://access.redhat.com/errata/RHSA-2026:0421
  2. https://access.redhat.com/errata/RHSA-2026:0422
  3. https://access.redhat.com/errata/RHSA-2026:0423
  4. https://access.redhat.com/errata/RHSA-2026:0836
  5. https://access.redhat.com/errata/RHSA-2026:0867
  6. https://access.redhat.com/errata/RHSA-2026:0868
  7. https://access.redhat.com/errata/RHSA-2026:0905
  8. https://access.redhat.com/errata/RHSA-2026:0906

1

TypeTargetConfidenceTier
WeaknessInconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling')cwe-4440%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2026-5119
CVE
CVE-2025-32911
CVE
CVE-2026-2369
CVE
CVE-2026-2436
CVE
CVE-2026-1761
CVE
Apache HTTP Server-Side Request Forgery (SSRF)
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.