Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
hackerone0x0lukeH1:232327
HistoryMay 26, 2017 - 10:41 p.m.

Ubiquiti Inc.: CRLF Injection on openvpn.svc.ubnt.com

2017-05-2622:41:44
0x0luke
hackerone.com
72

EPSS

0.003

Percentile

70.7%

JSON

The researcher reported the vulnerability CVE-2017-5868 in one of our server, it got promptly mitigated, once no oficial patch was available at the time of submit.
Ubiquiti’s employee VPN server was vulnerable to CVE-2017-5868, the issue was reported to them by me and quickly patched. Thank you Rubens and the Ubiquiti team for the fast fix!

Related

packetstorm 1
nvd 1
prion 1
seebug 1
cve 1
hackerone 1
cvelist 1
packetstorm
packetstorm
OpenVPN Access Server 2.1.4 CRLF Injection
2017-05-27 00:00:00
nvd
nvd
CVE-2017-5868
2017-05-26 01:29:00
prion
prion
Crlf injection
2017-05-26 01:29:00
seebug
seebug
OpenVPN Access Server : CRLF injection with Session fixation(CVE-2017-5868)
2017-05-27 00:00:00
cve
cve
CVE-2017-5868
2017-05-26 01:29:00
hackerone
hackerone
Cuvva: CRLF Injection [vpn.corp.cuvva.com]
2017-05-24 18:16:45
cvelist
cvelist
CVE-2017-5868
2017-05-25 19:00:00

EPSS

0.003

Percentile

70.7%

JSON
Related for H1:232327
packetstorm1nvd1prion1seebug1cve1hackerone1cvelist1