CVE-2015-2028
published 2015-10-04CVE-2015-2028: CRLF injection vulnerability in IBM WebSphere eXtreme Scale 7.1.0 before 7.1.0.3 and 7.1.1 before 7.1.1.1 allows remote attackers to inject arbitrary HTTP…
medium4.3CVSS 3.1
AVNACMAuNCNIPAN
CRLF injection vulnerability in IBM WebSphere eXtreme Scale 7.1.0 before 7.1.0.3 and 7.1.1 before 7.1.1.1 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via a crafted URL.
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| ibm | websphere_extreme_scale | — | — |
| ibm | websphere_extreme_scale | — | — |
| ibm | websphere_extreme_scale | — | — |