A Host header injection vulnerability has been discovered in SecZetta NEProfile 3.3.11. Authenticated remote adversaries can poison this header resulting in an adversary controlling the execution flow for the 302 HTTP status.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2020-08-26T18:49:04

Updated: 2024-08-04T12:04:22.955Z

Reserved: 2020-05-14T00:00:00

Link: CVE-2020-12855

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2020-08-26T19:15:14.300

Modified: 2024-11-21T05:00:25.117

Link: CVE-2020-12855

cve-icon Redhat

No data.