CVE-2023-26788

Name of the Vulnerable Software and Affected Versions Veritas Appliance version 4.1.0.1

Description The issue allows for Host Header Injection attacks, where the HTTP host header can be manipulated, causing the application to behave in unexpected ways. Any changes made to the header would result in the request being sent to a completely different Domain/IP address.

Recommendations For Veritas Appliance version 4.1.0.1, as a temporary workaround, consider restricting access to the HTTP host header to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.