Lucene search
K

4 matches found

Cvelist
Cvelist
added 2024/02/03 9:2 a.m.30 views

CVE-2024-1064 Improper Neutralization of HTTP Headers for Scripting Syntax in Crafty Controller 4

A host header injection vulnerability in the HTTP handler component of Crafty Controller allows a remote, unauthenticated attacker to trigger a Denial of Service DoS condition via a modified host header...

7.5CVSS7.7AI score0.00808EPSS
Exploits1References1
OSV
OSV
added 2024/02/03 9:2 a.m.34 views

CVE-2024-1064 Improper Neutralization of HTTP Headers for Scripting Syntax in Crafty Controller 4

A host header injection vulnerability in the HTTP handler component of Crafty Controller allows a remote, unauthenticated attacker to trigger a Denial of Service DoS condition via a modified host header...

7.5CVSS7.6AI score0.00808EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2024/02/03 9:2 a.m.25 views

CVE-2024-1064 Improper Neutralization of HTTP Headers for Scripting Syntax in Crafty Controller 4

A host header injection vulnerability in the HTTP handler component of Crafty Controller allows a remote, unauthenticated attacker to trigger a Denial of Service DoS condition via a modified host header...

7.5CVSS7.1AI score0.00808EPSS
Exploits1References1
CVE
CVE
added 2024/02/03 9:2 a.m.61 views

CVE-2024-1064

Summary of CVE-2024-1064 (Crafty Controller) : The issue is a host header injection in the HTTP handler of Crafty Controller, enabling a remote, unauthenticated attacker to trigger a Denial of Service via a modified Host header. Reported CVSSv3.1 base score is 7.5 (HIGH) with NETWORK attack vecto...

7.5CVSS7.5AI score0.00808EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder