exploitDog

GHSA-22c6-pmf5-543m

Опубликовано: 17 мая 2022

Источник: github

Github: Не прошло ревью

Описание

CRLF injection vulnerability in Request Tracker (RT) 3.8.x before 3.8.17 and 4.0.x before 4.0.13 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via a MIME header.

CRLF injection vulnerability in Request Tracker (RT) 3.8.x before 3.8.17 and 4.0.x before 4.0.13 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via a MIME header.

Ссылки

EPSS

Процентиль: 64%

0.0048

Низкий

CVE ID

Дефекты

CWE-94

Связанные уязвимости

CVE-2013-3373

ubuntu

почти 12 лет назад

CRLF injection vulnerability in Request Tracker (RT) 3.8.x before 3.8.17 and 4.0.x before 4.0.13 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via a MIME header.

CVE-2013-3373

nvd

почти 12 лет назад

CRLF injection vulnerability in Request Tracker (RT) 3.8.x before 3.8.17 and 4.0.x before 4.0.13 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via a MIME header.

CVE-2013-3373

debian

почти 12 лет назад

CRLF injection vulnerability in Request Tracker (RT) 3.8.x before 3.8. ...

EPSS

Процентиль: 64%

0.0048

Низкий

CVE ID

Дефекты

CWE-94