A Host header injection vulnerability has been discovered in SecZetta NEProfile 3.3.11. Authenticated remote adversaries can poison this header resulting in an adversary controlling the execution flow for the 302 HTTP status.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2020-08-26T18:49:04
Updated: 2024-08-04T12:04:22.955Z
Reserved: 2020-05-14T00:00:00
Link: CVE-2020-12855
Vulnrichment
No data.
NVD
Status : Modified
Published: 2020-08-26T19:15:14.300
Modified: 2024-11-21T05:00:25.117
Link: CVE-2020-12855
Redhat
No data.