{"id":"CVE-2025-55315","details":"Inconsistent interpretation of http requests ('http request/response smuggling') in ASP.NET Core allows an authorized attacker to bypass a security feature over a network.","aliases":["BIT-aspnet-core-2025-55315","GHSA-5rrx-jjjq-q2r5"],"modified":"2026-04-10T05:29:54.899597Z","published":"2025-10-14T17:15:44.960Z","related":["ALSA-2025:18148","ALSA-2025:18149","ALSA-2025:18150","ALSA-2025:18151","ALSA-2025:18152","ALSA-2025:18153","CGA-cpwc-m5xx-j3g4"],"references":[{"type":"WEB","url":"https://andrewlock.net/understanding-the-worst-dotnet-vulnerability-request-smuggling-and-cve-2025-55315/"},{"type":"WEB","url":"https://gist.github.com/N3mes1s/d0897c13ca199e739ecc2b562f466040"},{"type":"ADVISORY","url":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-55315"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/dotnet/aspnetcore","events":[{"introduced":"3f1acb59718cadf111a0a796681e3d3509bb3381"},{"fixed":"6254f5ca64f85b90327592dff67ea6b2ec0262c6"},{"introduced":"af22effae4069a5dfb9b0735859de48820104f5b"},{"fixed":"5bae930797f60d2d04f3b1df6a33eaca85fc5f28"}],"database_specific":{"versions":[{"introduced":"8.0.0"},{"fixed":"8.0.21"},{"introduced":"9.0.0"},{"fixed":"9.0.10"}]}}],"versions":["v8.0.0","v8.0.1","v8.0.10","v8.0.11","v8.0.12","v8.0.13","v8.0.14","v8.0.15","v8.0.16","v8.0.17","v8.0.18","v8.0.19","v8.0.2","v8.0.20","v8.0.3","v8.0.4","v8.0.5","v8.0.7","v8.0.8"],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-55315.json","unresolved_ranges":[{"events":[{"introduced":"2.3.0"},{"fixed":"2.3.6"}]},{"events":[{"introduced":"17.10.0"},{"fixed":"17.10.20"}]},{"events":[{"introduced":"17.12.10"},{"fixed":"17.12.13"}]},{"events":[{"introduced":"17.14.0"},{"fixed":"17.14.17"}]}]}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:L"}]}