CVE-2014-2138

2014-04-01T23:58:17
ID CVE-2014-2138
Type cve
Reporter NVD
Modified 2014-04-02T12:56:56

Description

CRLF injection vulnerability in the web framework in Cisco Security Manager 4.2 and earlier allows remote attackers to inject arbitrary HTTP headers and conduct redirection attacks via a crafted URL, aka Bug ID CSCun82349.