PT-2019-17576 · Aruba · Arubaos
Publicado
2019-09-13
·
Atualizado
2020-08-24
·
CVE-2019-5314
CVSS v3.1
6.1
Média
| Vetor | AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N |
Name of the Vulnerable Software and Affected Versions
ArubaOS (affected versions not specified)
Description
The issue concerns certain web components in the software that are susceptible to HTTP Response splitting (CRLF injection) and Reflected XSS. An attacker could exploit this by sending specific URL parameters.
Recommendations
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Special Elements Injection
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Arubaos