Lucene search
+L

4 matches found

cve
cve
added 2024/02/03 9:2 a.m.61 views

CVE-2024-1064

Summary of CVE-2024-1064 (Crafty Controller) : The issue is a host header injection in the HTTP handler of Crafty Controller, enabling a remote, unauthenticated attacker to trigger a Denial of Service via a modified Host header. Reported CVSSv3.1 base score is 7.5 (HIGH) with NETWORK attack vecto...

7.5CVSS7.5AI score0.00808EPSS
Exploits1References1Affected Software1
cvelist
cvelist
added 2024/02/03 9:2 a.m.34 views

CVE-2024-1064 Improper Neutralization of HTTP Headers for Scripting Syntax in Crafty Controller 4

A host header injection vulnerability in the HTTP handler component of Crafty Controller allows a remote, unauthenticated attacker to trigger a Denial of Service DoS condition via a modified host header...

7.5CVSS7.7AI score0.00808EPSS
Exploits1References1
vulnrichment
vulnrichment
added 2024/02/03 9:2 a.m.26 views

CVE-2024-1064 Improper Neutralization of HTTP Headers for Scripting Syntax in Crafty Controller 4

A host header injection vulnerability in the HTTP handler component of Crafty Controller allows a remote, unauthenticated attacker to trigger a Denial of Service DoS condition via a modified host header...

7.5CVSS7.1AI score0.00808EPSS
Exploits1References1
osv
osv
added 2024/02/03 9:2 a.m.35 views

CVE-2024-1064 Improper Neutralization of HTTP Headers for Scripting Syntax in Crafty Controller 4

A host header injection vulnerability in the HTTP handler component of Crafty Controller allows a remote, unauthenticated attacker to trigger a Denial of Service DoS condition via a modified host header...

7.5CVSS7.6AI score0.00808EPSS
Exploits1References3
Rows per page
Query Builder