Описание
The mirror-registry doesn't properly sanitize the host header HTTP header in HTTP request received, allowing an attacker to perform malicious redirects to attacker-controlled domains or phishing campaigns.
EPSS
Процентиль: 9%
0.00035
Низкий
6.5 Medium
CVSS3
Дефекты
CWE-601
Связанные уязвимости
CVSS3: 6.5
redhat
около 2 месяцев назад
The mirror-registry doesn't properly sanitize the host header HTTP header in HTTP request received, allowing an attacker to perform malicious redirects to attacker-controlled domains or phishing campaigns.
CVSS3: 6.5
github
26 дней назад
The mirror-registry doesn't properly sanitize the host header HTTP header in HTTP request received, allowing an attacker to perform malicious redirects to attacker-controlled domains or phishing campaigns.
EPSS
Процентиль: 9%
0.00035
Низкий
6.5 Medium
CVSS3
Дефекты
CWE-601