Lucene search

K
prionPRIOn knowledge basePRION:CVE-2018-11347
HistoryDec 04, 2018 - 5:29 p.m.

Design/Logic Flaw

2018-12-0417:29:00
PRIOn knowledge base
www.prio-n.com
3

8.4 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

65.2%

The YunoHost 2.7.2 through 2.7.14 web application is affected by one HTTP Response Header Injection. This flaw allows an attacker to inject, into the response from the server, one or several HTTP Header. It requires an interaction with the user to send him the malicious link. It could be used to perform other attacks such as user redirection to a malicious website, HTTP response splitting, or HTTP cache poisoning.

CPENameOperatorVersion
yunohostge2.7.2
yunohostle2.7.14

8.4 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

65.2%

Related for PRION:CVE-2018-11347