exploitDog

CVE-2025-27632

Опубликовано: 25 мар. 2025

Источник: nvd

CVSS3: 6.1

EPSS Низкий

Описание

A Host Header Injection vulnerability in TRMTracker application may allow an attacker by modifying the host header value in an HTTP request to leverage multiple attack vectors, including defacing the site content through web-cache poisoning.

Ссылки

https://publisher.hitachienergy.com/preview?DocumentID=8DBD000210&LanguageCode=en&DocumentPartId=&Action=Launch

EPSS

Процентиль: 41%

0.00195

Низкий

6.1 Medium

CVSS3

Дефекты

CWE-644

Связанные уязвимости

GHSA-gv64-36xp-c47j

CVSS3: 6.1

github

11 месяцев назад

A Host Header Injection vulnerability in TRMTracker application may allow an attacker by modifying the host header value in an HTTP request to leverage multiple attack vectors, including defacing the site content through web-cache poisoning.

EPSS

Процентиль: 41%

0.00195

Низкий

6.1 Medium

CVSS3

Дефекты

CWE-644