{"id":"CVE-2016-10711","details":"Apsis Pound before 2.8a allows request smuggling via crafted headers, a different vulnerability than CVE-2005-3751.","modified":"2026-03-14T09:18:23.651897Z","published":"2018-01-29T20:29:00.217Z","related":["openSUSE-SU-2024:11190-1"],"references":[{"type":"WEB","url":"https://lists.debian.org/debian-lts-announce/2020/04/msg00028.html"},{"type":"WEB","url":"https://lists.debian.org/debian-lts-announce/2020/05/msg00003.html"},{"type":"ADVISORY","url":"http://www.apsis.ch/pound/pound_list/archive/2016/2016-10/1477235279000"},{"type":"ADVISORY","url":"https://lists.debian.org/debian-lts-announce/2018/02/msg00015.html"}],"affected":[{"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2016-10711.json","unresolved_ranges":[{"events":[{"introduced":"0"},{"last_affected":"7.0"}]},{"events":[{"introduced":"0"},{"last_affected":"2.7"}]},{"events":[{"introduced":"0"},{"fixed":"2.8a"}]}]}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}]}