Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 5:41 a.m.7 views

CVE-2023-0040

Versions of Async HTTP Client prior to 1.13.2 are vulnerable to a form of targeted request manipulation called CRLF injection. This vulnerability was the result of insufficient validation of HTTP header field values before sending them to the network. Users are vulnerable if they pass untrusted...

7.5CVSS7.1AI score0.00549EPSS
Exploits0References1
Circl
Circl
added 2023/01/18 10:21 p.m.7 views

CVE-2023-0040

creationtimestamp| type| source ---|---|--- 2023-01-18 22:21:16+00:00| seen| https://t.me/cibsecurity/56689 2025-04-03 19:35:27+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/10319...

7.5CVSS7.3AI score0.00549EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2023/01/18 12:0 a.m.5 views

CVE-2023-0040

Versions of Async HTTP Client prior to 1.13.2 are vulnerable to a form of targeted request manipulation called CRLF injection. This vulnerability was the result of insufficient validation of HTTP header field values before sending them to the network. Users are vulnerable if they pass untrusted...

7.9AI score0.00549EPSS
Exploits0References1
CVE
CVE
added 2023/01/18 12:0 a.m.96 views

CVE-2023-0040

CVE-2023-0040 affects Async HTTP Client prior to 1.13.2. The root cause is insufficient validation of HTTP header field values, enabling CRLF injection that can inject new HTTP header fields or requests into the data stream. Impact described in the connected documents notes that remote servers ma...

7.5CVSS7.7AI score0.00549EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder