exploitDog

GHSA-mc75-95xp-qm8h

Опубликовано: 24 мая 2022

Источник: github

Github: Не прошло ревью

Описание

IBM API Connect 10.0.0.0 through 10.0.1.0 and 2018.4.1.0 through 2018.4.1.13 is vulnerable to web cache poisoning, caused by improper input validation by modifying HTTP request headers. IBM X-Force ID: 189842.

IBM API Connect 10.0.0.0 through 10.0.1.0 and 2018.4.1.0 through 2018.4.1.13 is vulnerable to web cache poisoning, caused by improper input validation by modifying HTTP request headers. IBM X-Force ID: 189842.

Ссылки

EPSS

Процентиль: 37%

0.00158

Низкий

CVE ID

Дефекты

CWE-20

Связанные уязвимости

CVE-2020-4828

CVSS3: 6.5

nvd

около 5 лет назад

IBM API Connect 10.0.0.0 through 10.0.1.0 and 2018.4.1.0 through 2018.4.1.13 is vulnerable to web cache poisoning, caused by improper input validation by modifying HTTP request headers. IBM X-Force ID: 189842.

EPSS

Процентиль: 37%

0.00158

Низкий

CVE ID

Дефекты

CWE-20