exploitDog

GHSA-wm88-9wvv-gw9c

Опубликовано: 17 мая 2022

Источник: github

Github: Не прошло ревью

Описание

CRLF injection vulnerability in WebKit in Apple Safari before 6.0 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP request splitting attacks via a crafted web site that leverages improper WebSockets URI handling.

CRLF injection vulnerability in WebKit in Apple Safari before 6.0 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP request splitting attacks via a crafted web site that leverages improper WebSockets URI handling.

Ссылки

EPSS

Процентиль: 57%

0.00346

Низкий

CVE ID

Дефекты

CWE-20

Связанные уязвимости

CVE-2012-3696

nvd

больше 13 лет назад

CRLF injection vulnerability in WebKit in Apple Safari before 6.0 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP request splitting attacks via a crafted web site that leverages improper WebSockets URI handling.

EPSS

Процентиль: 57%

0.00346

Низкий

CVE ID

Дефекты

CWE-20