EUVD-2019-14068

🗓️ 07 Oct 2025 00:30:54Reported by EUVDType

IBM Cloud Orchestrator has HTTP Response Splitting vulnerability, risking data exposure and attacks.

Reporter	Title	Published	Views	Family All 8
IBM Security Bulletins	Security Bulletin: Cacheable HTTPS Response vulnerability affects IBM Cloud Orchestrator and IBM Cloud Orchestrator Enterprise Edition (CVE-2019-4461)	23 Oct 201919:20	–	ibm
Circl	CVE-2019-4461	29 Jan 202408:41	–	circl
CNVD	IBM Cloud Orchestrator HTTP Response Splitting Vulnerability (CNVD-2019-39202)	28 Oct 201900:00	–	cnvd
CVE	CVE-2019-4461	25 Oct 201916:30	–	cve
Cvelist	CVE-2019-4461	25 Oct 201916:30	–	cvelist
NVD	CVE-2019-4461	25 Oct 201917:15	–	nvd
Prion	Cross site scripting	25 Oct 201917:15	–	prion
Symantec	Multiple IBM Products CVE-2019-4461 HTTP Response Splitting Vulnerability	23 Oct 201900:00	–	symantec

[
  {
    "enisaIdVendor": [
      {
        "id": "ef691728-6ffa-3d30-baba-f939c6c0c1f4",
        "vendor": {
          "name": "IBM"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "0975322f-4b3e-3d26-8c5a-d33bd0e99ac9",
        "product": {
          "name": "Cloud Orchestrator"
        },
        "product_version": "2.5.0.9"
      },
      {
        "id": "0bddc977-9ec5-352c-a4be-0d24f3f08e99",
        "product": {
          "name": "Cloud Orchestrator"
        },
        "product_version": "2.5.0.3"
      },
      {
        "id": "37410377-fb84-3148-bb23-67529bbb1876",
        "product": {
          "name": "Cloud Orchestrator"
        },
        "product_version": "2.5.0.5"
      },
      {
        "id": "3ef36efb-cd47-3428-8417-8d59092833d4",
        "product": {
          "name": "Cloud Orchestrator"
        },
        "product_version": "2.5.0.8"
      },
      {
        "id": "446c8b84-26c7-3284-8037-883816788184",
        "product": {
          "name": "Cloud Orchestrator"
        },
        "product_version": "2.4"
      },
      {
        "id": "4cfb18cb-9bd1-34fd-9268-1936dd3617cf",
        "product": {
          "name": "Cloud Orchestrator"
        },
        "product_version": "2.5.0.4"
      },
      {
        "id": "5a3d1c40-e304-316c-a6ec-153d30af756e",
        "product": {
          "name": "Cloud Orchestrator"
        },
        "product_version": "2.5.0.1"
      },
      {
        "id": "78b7dbb0-edaa-38b5-806a-daf1c3a916e1",
        "product": {
          "name": "Cloud Orchestrator"
        },
        "product_version": "2.4.0.2"
      },
      {
        "id": "7d2db3a4-d9bf-3f45-8874-61b4c84aa9bb",
        "product": {
          "name": "Cloud Orchestrator"
        },
        "product_version": "2.5.0.2"
      },
      {
        "id": "84d51168-cbca-32e2-952c-70222ba6d47c",
        "product": {
          "name": "Cloud Orchestrator"
        },
        "product_version": "2.5.0.7"
      },
      {
        "id": "9c6cacc4-03b6-3c90-9642-b0f17ac4a2b9",
        "product": {
          "name": "Cloud Orchestrator"
        },
        "product_version": "2.4.0.4"
      },
      {
        "id": "b1b516b4-d4d3-398e-ac71-4004345d2727",
        "product": {
          "name": "Cloud Orchestrator"
        },
        "product_version": "2.5.0.6"
      },
      {
        "id": "c5fbec62-9ad8-3bbd-a3d3-5ab8cfd0681a",
        "product": {
          "name": "Cloud Orchestrator"
        },
        "product_version": "2.4.0.5"
      },
      {
        "id": "ca59cd79-e396-3436-94bd-6660a5b2d947",
        "product": {
          "name": "Cloud Orchestrator"
        },
        "product_version": "2.5"
      },
      {
        "id": "ccb3ad40-130d-3680-96bb-95acc0e396b1",
        "product": {
          "name": "Cloud Orchestrator"
        },
        "product_version": "2.4.0.1"
      },
      {
        "id": "e85049a4-e1ea-3bf8-94b4-974fcc51aa65",
        "product": {
          "name": "Cloud Orchestrator"
        },
        "product_version": "2.4.0.3"
      }
    ]
  }
]

Source	Link
ibm	www.ibm.com/support/pages/node/1072684
exchange	www.exchange.xforce.ibmcloud.com/vulnerabilities/163682
github	www.github.com/advisories/GHSA-293c-r3p4-g63r

07 Oct 2025 00:30Current

5.5Medium risk

Vulners AI Score5.5

CVSS 35.4

CVSS 23.5

CVSS 3.15.4

EPSS0.00186