CVE-2016-4993 in WildFlyالمعلومات

الملخص

بحسب MITRE

CRLF injection vulnerability in the Undertow web server in WildFly 10.0.0, as usued in Red Hat JBoss Enterprise Application Platform (EAP) 7.x before 7.0.2, allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via unspecified vectors.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

حجز

24/05/2016

إفشاء

26/09/2016

الاعتدال

تمت الموافقة

إدخال

VDB-92173

CPE

جاهز

CWE

CWE-93 (مؤكد)

CVSS

6.1 (NVD)

EPSS

0.01476

KEV

لا

النشاطات

منخفض جدًا

القطاع

Government, Hospital, ...

المصادر

MITRE	https://www.cve.org/CVERecord?id=CVE-2016-4993
NVD	https://nvd.nist.gov/vuln/detail/CVE-2016-4993
CVE Details	https://www.cvedetails.com/cve/CVE-2016-4993/

التالي ▸نظرة عامة ◂ السابق

Do you want to use VulDB in your project?

Use the official API to access entries easily!