exploitDog

GHSA-hgcv-9m52-v3p6

Опубликовано: 01 мая 2022

Источник: github

Github: Не прошло ревью

Описание

CRLF injection vulnerability in IBM WebSphere Application Server (WAS) before 6.0.2.19 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via a single CRLF sequence in a context that is not a valid multi-line header.

CRLF injection vulnerability in IBM WebSphere Application Server (WAS) before 6.0.2.19 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via a single CRLF sequence in a context that is not a valid multi-line header.

Ссылки

EPSS

Процентиль: 78%

0.01135

Низкий

CVE ID

Связанные уязвимости

CVE-2007-1608

nvd

почти 19 лет назад

CRLF injection vulnerability in IBM WebSphere Application Server (WAS) before 6.0.2.19 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via a single CRLF sequence in a context that is not a valid multi-line header.

EPSS

Процентиль: 78%

0.01135

Низкий

CVE ID