Crlf injection

2016-09-0719:28:00

PRIOn knowledge base

www.prio-n.com

7.4 High

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

43.2%

JSON

CRLF injection vulnerability in Huawei FusionAccess before V100R006C00 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via unspecified vectors.

CPENameOperatorVersion
fusionaccesseq100r5c30-v
fusionaccesseq100r5c10-v
fusionaccesseq100r5c20-v

Name	Operator	Version
fusionaccess	eq	100r5c30-v
fusionaccess	eq	100r5c10-v
fusionaccess	eq	100r5c20-v

References

www.huawei.com/en/psirt/security-advisories/huawei-sa-20160817-01-fusionaccess-en

www.securityfocus.com/bid/92502