Lucene search
Redhat.comRH:CVE-2020-5216HistoryFeb 10, 2020 - 3:14 p.m.
CVE-2020-5216
2020-02-1015:14:20
redhat.com
access.redhat.com
8
EPSS
0.001
Percentile
38.5%
A directive injection vulnerability was found in Secure Headers RubyGem before versions 3.9.0, 5.2.0, and 6.3.0. If user-supplied input was passed into the vulnerable function, a new line could be injected, leading to limited header injection, which could create a new Content Security Policy header in the HTTP response.
Related
cvelist
cvelist
cve
cve
CVE-2020-5216
2020-01-23 03:15:10
nvd
nvd
CVE-2020-5216
2020-01-23 03:15:10
osv
osv
CVE-2020-5216
2020-01-23 03:15:10
prion
prion
Design/Logic Flaw
2020-01-23 03:15:00
veracode
veracode
CRLF Injection
2020-01-23 05:56:36
ubuntucve
ubuntucve
CVE-2020-5216
2020-01-23 00:00:00
github
github
debiancve
debiancve
CVE-2020-5216
2020-01-23 03:15:10
rubygems
rubygems
secure_headers header injection due to newline
2020-01-22 21:00:00
redhat
redhat
(RHSA-2020:4366) Important: Satellite 6.8 release
2020-10-27 12:45:25
nessus
nessus
RHEL 7 : Satellite 6.8 (Important) (RHSA-2020:4366)
2020-11-04 00:00:00
rosalinux
rosalinux
Advisory ROSA-SA-2021-1966
2021-07-02 18:06:34