Lucene search
K

7 matches found

F5 Networks
F5 Networks
added 2025/02/20 2:0 a.m.17 views

K000149883: PSR-7 header validation vulnerability CVE-2023-30536

Security Advisory Description slim/psr7 is a PSR-7 implementation for use with Slim 4. In versions prior to 1.6.1 an attacker could sneak in a newline \n into both the header names and values. While the specification states that \r\n\r\n is used to terminate the header list, many servers in the...

6.5CVSS6.7AI score0.00743EPSS
Exploits0
OpenVAS
OpenVAS
added 2025/01/31 12:0 a.m.20 views

Fedora: Security Advisory (FEDORA-2025-c17ef0f176)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.5AI score0.8833EPSS
Exploits17References9
Circl
Circl
added 2023/04/18 2:28 a.m.7 views

CVE-2023-30536

creationtimestamp| type| source ---|---|--- 2023-04-18 02:28:41+00:00| seen| https://t.me/cibsecurity/62316...

6.5CVSS6.9AI score0.00743EPSS
Exploits0References1
OSV
OSV
added 2023/04/17 10:15 p.m.2 views

DEBIAN-CVE-2023-30536

slim/psr7 is a PSR-7 implementation for use with Slim 4. In versions prior to 1.6.1 an attacker could sneak in a newline \n into both the header names and values. While the specification states that \r\n\r\n is used to terminate the header list, many servers in the wild will also accept \n\n. An...

6.5CVSS6.9AI score0.00743EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/04/17 9:17 p.m.7 views

CVE-2023-30536 Insecure header validation in slim/psr7

slim/psr7 is a PSR-7 implementation for use with Slim 4. In versions prior to 1.6.1 an attacker could sneak in a newline \n into both the header names and values. While the specification states that \r\n\r\n is used to terminate the header list, many servers in the wild will also accept \n\n. An...

6.5CVSS6.5AI score0.00743EPSS
Exploits0References3
CVE
CVE
added 2023/04/17 9:17 p.m.66 views

CVE-2023-30536

CVE-2023-30536 affects slim/psr7 (Slim-Psr7) before 1.6.1, where an attacker controlling header names can inject a newline character into header names and values, potentially producing malformed HTTP messages and causing application errors or a DoS via a remote service firewall. The issue is reso...

6.5CVSS6.6AI score0.00743EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2023/04/17 9:17 p.m.41 views

CVE-2023-30536 Insecure header validation in slim/psr7

slim/psr7 is a PSR-7 implementation for use with Slim 4. In versions prior to 1.6.1 an attacker could sneak in a newline \n into both the header names and values. While the specification states that \r\n\r\n is used to terminate the header list, many servers in the wild will also accept \n\n. An...

6.5CVSS6.9AI score0.00743EPSS
Exploits0References3
Rows per page
Query Builder