Lucene search
HpeCVELIST:CVE-2019-5314HistorySep 13, 2019 - 4:49 p.m.
CVE-2019-5314
2019-09-1316:49:38
hpe
www.cve.org
0.001 Low
EPSS
Percentile
34.0%
Some web components in the ArubaOS software are vulnerable to HTTP Response splitting (CRLF injection) and Reflected XSS. An attacker would be able to accomplish this by sending certain URL parameters that would trigger this vulnerability.
CNA Affected
[
{
"product": "Aruba Mobility Controllers",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "Aruba Mobility Controller firmware (ArubaOS) 6.x prior to 6.4.4.21 6.5.x prior to 6.5.4.13 8.x prior to 8.2.2.6 8.3.0.x prior to 8.3.0.7, 8.4.0.x and prior to 8.4.0.3"
}
]
}
]Related
cve
cve
CVE-2019-5314
2019-09-13 17:15:12
prion
prion
Crlf injection
2019-09-13 17:15:00
nvd
nvd
CVE-2019-5314
2019-09-13 17:15:12