Lucene search
K

5 matches found

NVD
NVD
added 2014/07/16 2:19 p.m.20 views

CVE-2014-3427

CRLF injection vulnerability in Yealink VoIP Phones with firmware 28.72.0.2 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via the model parameter to servlet...

5CVSS7AI score0.05197EPSS
Exploits2References3
Prion
Prion
added 2014/07/16 2:19 p.m.16 views

Crlf injection

CRLF injection vulnerability in Yealink VoIP Phones with firmware 28.72.0.2 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via the model parameter to servlet...

5CVSS7.5AI score0.05197EPSS
Exploits2References3Affected Software1
CVE
CVE
added 2014/07/16 2:0 p.m.56 views

CVE-2014-3427

CVE-2014-3427 affects Yealink VoIP Phones (validated on firmware 28.72.0.2) and arises from CRLF injection in the servlet handling the model parameter, enabling remote header injection and HTTP response splitting. Impact, as stated: arbitrary HTTP headers can be injected via the model parameter t...

5CVSS7.2AI score0.05197EPSS
Exploits2References3Affected Software1
Prion
Prion
added 2014/06/16 6:55 p.m.16 views

Cross site scripting

Cross-site scripting XSS vulnerability in Yealink VoIP Phones with firmware 28.72.0.2 allows remote attackers to inject arbitrary web script or HTML via the model parameter to servlet...

4.3CVSS6.2AI score0.01854EPSS
Exploits2References4Affected Software2
Cvelist
Cvelist
added 2014/06/16 6:0 p.m.28 views

CVE-2014-3428

Cross-site scripting XSS vulnerability in Yealink VoIP Phones with firmware 28.72.0.2 allows remote attackers to inject arbitrary web script or HTML via the model parameter to servlet...

5.7AI score0.01854EPSS
Exploits2References4
Rows per page
Query Builder