exploitDog

GHSA-p7j4-x6vj-wmfx

Опубликовано: 17 мая 2022

Источник: github

Github: Не прошло ревью

Описание

CRLF injection vulnerability in the web framework in Cisco Web Security Appliance (WSA) 7.7 and earlier allows remote attackers to inject arbitrary HTTP headers and conduct redirection attacks via a crafted URL, aka Bug ID CSCuj61002.

CRLF injection vulnerability in the web framework in Cisco Web Security Appliance (WSA) 7.7 and earlier allows remote attackers to inject arbitrary HTTP headers and conduct redirection attacks via a crafted URL, aka Bug ID CSCuj61002.

Ссылки

EPSS

Процентиль: 43%

0.00211

Низкий

CVE ID

Дефекты

CWE-20

Связанные уязвимости

CVE-2014-2137

nvd

почти 12 лет назад

CRLF injection vulnerability in the web framework in Cisco Web Security Appliance (WSA) 7.7 and earlier allows remote attackers to inject arbitrary HTTP headers and conduct redirection attacks via a crafted URL, aka Bug ID CSCuj61002.

EPSS

Процентиль: 43%

0.00211

Низкий

CVE ID

Дефекты

CWE-20