Lucene search

K
cvelistMitreCVELIST:CVE-2014-2017
HistoryJan 18, 2018 - 2:00 p.m.

CVE-2014-2017

2018-01-1814:00:00
mitre
www.cve.org

6.2 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

48.9%

CRLF injection vulnerability in OXID eShop Professional Edition before 4.7.11 and 4.8.x before 4.8.4, Enterprise Edition before 5.0.11 and 5.1.x before 5.1.4, and Community Edition before 4.7.11 and 4.8.x before 4.8.4 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via unspecified vectors.

6.2 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

48.9%