Lucene search
+L

4 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 12:48 a.m.8 views

CVE-2022-22399

IBM Aspera Faspex 5.0.0 and 5.0.1 is vulnerable to HTTP header injection, caused by improper validation of input by the HOST headers. This could allow an attacker to conduct various attacks against the vulnerable system, including cross-site scripting, cache poisoning or session hijacking. IBM...

6.5CVSS6.3AI score0.00369EPSS
Exploits0References1
IBM Security Bulletins
IBM Security Bulletins
added 2025/03/26 2:14 a.m.44 views

Security Bulletin: IBM Aspera Faspex 5.0.0/5.0.1 affected by vulnerability (CVE-2022-22399)

Summary This security bulletin addresses a HTTP header injection vulnerability that have been remediated in IBM Aspera Faspex 5.0.2. Vulnerability Details CVEID:CVE-2022-22399 DESCRIPTION: IBM Aspera Faspex 5 is vulnerable to HTTP header injection, caused by improper validation of input by the HO...

6.5CVSS5.9AI score0.00369EPSS
Exploits0Affected Software1
CVE
CVE
added 2024/03/05 7:58 p.m.98 views

CVE-2022-22399

IBM Aspera Faspex 5.0.0 and 5.0.1 are affected by an HTTP header injection flaw caused by improper validation of the HOST header. The vulnerability can enable cross‑site scripting, cache poisoning, or session hijacking against vulnerable installations. Affected products: IBM Aspera Faspex 5.0.0 a...

6.5CVSS5.3AI score0.00369EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2024/03/05 7:58 p.m.19 views

CVE-2022-22399 IBM Aspera Faspex HTTP header injection

IBM Aspera Faspex 5.0.0 and 5.0.1 is vulnerable to HTTP header injection, caused by improper validation of input by the HOST headers. This could allow an attacker to conduct various attacks against the vulnerable system, including cross-site scripting, cache poisoning or session hijacking. IBM...

5.4CVSS5.5AI score0.00369EPSS
Exploits0References2
Rows per page
Query Builder