exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 5

CVE-2026-3633

18 дней назад

CRLF injection in soup_message_new() when method is user provided

CVSS3: 3.9

EPSS: Низкий

CVE-2026-3633

20 дней назад

A flaw was found in libsoup. A remote attacker, by controlling the method parameter of the `soup_message_new()` function, could inject arbitrary headers and additional request data. This vulnerability, known as CRLF (Carriage Return Line Feed) injection, occurs because the method value is not properly escaped during request line construction, potentially leading to HTTP request injection.

CVSS3: 3.9

EPSS: Низкий

CVE-2026-3633

9 дней назад

A flaw was found in libsoup. A remote attacker, by controlling the method parameter of the `soup_message_new()` function, could inject arbitrary headers and additional request data. This vulnerability, known as CRLF (Carriage Return Line Feed) injection, occurs because the method value is not properly escaped during request line construction, potentially leading to HTTP request injection.

CVSS3: 3.9

EPSS: Низкий

CVE-2026-3633

9 дней назад

A flaw was found in libsoup. A remote attacker, by controlling the met ...

CVSS3: 3.9

EPSS: Низкий

GHSA-6p72-283f-crv2

9 дней назад

A flaw was found in libsoup. A remote attacker, by controlling the method parameter of the `soup_message_new()` function, could inject arbitrary headers and additional request data. This vulnerability, known as CRLF (Carriage Return Line Feed) injection, occurs because the method value is not properly escaped during request line construction, potentially leading to HTTP request injection.

CVSS3: 3.9

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2026-3633 CRLF injection in soup_message_new() when method is user provided	CVSS3: 3.9	0% Низкий	18 дней назад
CVE-2026-3633 A flaw was found in libsoup. A remote attacker, by controlling the method parameter of the `soup_message_new()` function, could inject arbitrary headers and additional request data. This vulnerability, known as CRLF (Carriage Return Line Feed) injection, occurs because the method value is not properly escaped during request line construction, potentially leading to HTTP request injection.	CVSS3: 3.9	0% Низкий	20 дней назад
CVE-2026-3633 A flaw was found in libsoup. A remote attacker, by controlling the method parameter of the `soup_message_new()` function, could inject arbitrary headers and additional request data. This vulnerability, known as CRLF (Carriage Return Line Feed) injection, occurs because the method value is not properly escaped during request line construction, potentially leading to HTTP request injection.	CVSS3: 3.9	0% Низкий	9 дней назад
CVE-2026-3633 A flaw was found in libsoup. A remote attacker, by controlling the met ...	CVSS3: 3.9	0% Низкий	9 дней назад
GHSA-6p72-283f-crv2 A flaw was found in libsoup. A remote attacker, by controlling the method parameter of the `soup_message_new()` function, could inject arbitrary headers and additional request data. This vulnerability, known as CRLF (Carriage Return Line Feed) injection, occurs because the method value is not properly escaped during request line construction, potentially leading to HTTP request injection.	CVSS3: 3.9	0% Низкий	9 дней назад

Уязвимостей на страницу