2 matches found
CVE-2019-4186
CVE-2019-4186 affects IBM Jazz for Service Management 1.1.3, via an HTTP header injection flaw caused by incorrect trust in the Host header during caching. A remote attacker could send a crafted HTTP GET to inject arbitrary headers, enabling attacks such as cross-site scripting, cache poisoning, ...
Security Bulletin: IBM Jazz for Service Management is vulnerable to HTTP header injection, caused by incorrect trust in the HTTP Host header (CVE-2019-4186)
Summary IBM Jazz for Service Management is vulnerable to HTTP header injection, caused by incorrect trust in the HTTP Host header. Vulnerability Details CVEID: CVE-2019-4186 DESCRIPTION: IBM Jazz for Service Management is vulnerable to HTTP header injection, caused by incorrect trust in the HTTP...