exploitDog

GHSA-7ccm-338c-fv4r

Опубликовано: 24 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 6.5

Описание

A CRLF injection vulnerability was found on BF-430, BF-431, and BF-450M TCP/IP Converter devices from CHIYU Technology Inc due to a lack of validation on the parameter redirect= available on multiple CGI components.

A CRLF injection vulnerability was found on BF-430, BF-431, and BF-450M TCP/IP Converter devices from CHIYU Technology Inc due to a lack of validation on the parameter redirect= available on multiple CGI components.

Ссылки

EPSS

Процентиль: 100%

0.9258

Критический

6.5 Medium

CVSS3

CVE ID

Связанные уязвимости

CVE-2021-31249

CVSS3: 6.5

nvd

больше 4 лет назад

A CRLF injection vulnerability was found on BF-430, BF-431, and BF-450M TCP/IP Converter devices from CHIYU Technology Inc due to a lack of validation on the parameter redirect= available on multiple CGI components.

EPSS

Процентиль: 100%

0.9258

Критический

6.5 Medium

CVSS3

CVE ID