15 Oct 2020
Vulnérabilité CVE-2019-4552 CVE Vulnerability
IBM Security Access Manager 9.0.7 and IBM Security Verify Access 10.0.0 are vulnerable to HTTP response splitting attacks. A remote attacker could exploit this vulnerability using specially-crafted URL to cause the server to return a split response, once the URL is clicked. This would allow the attacker to perform further attacks, such as Web cache poisoning, cross-site scripting, and possibly obtain sensitive information. IBM X-Force ID: 165960. (CVSS:5.8) (Last Update:2020-10-20)
Vulnerability Details : IBM Security Access Manager 9.0.7 and IBM Security Verify Access 10.0.0 are vulnerable to HTTP response splitting attacks. A remote attacker could exploit this vulnerability using specially-crafted URL to cause the server to return a split response, once the URL is clicked. This would allow the attacker to perform further attacks, such as Web cache poisoning, cross-site scripting, and possibly obtain sensitive information. IBM X-Force ID: 165960. Publish Date : 2020-10-15 Last Update Date : 2020-10-20 - CVSS Scores & Vulnerability Types
- Products Affected By CVE-2019-4552
- Number Of Affected Versions By Product
- References For CVE-2019-4552
| ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
- Metasploit Modules Related To CVE-2019-4552There are not any metasploit modules related to this CVE entry (Please visit www.metasploit.com for more information) |