Multiple CRLF injection vulnerabilities in the Universal Access component in IBM Curam Social Program Management (SPM) 6.0.5.5, when WebSphere Application Server is not used, allow remote authenticated users to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via unspecified parameters.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: ibm
Published: 2014-08-12T00:00:00
Updated: 2024-08-06T10:35:55.962Z
Reserved: 2014-04-29T00:00:00
Link: CVE-2014-3069
Vulnrichment
No data.
NVD
Status : Modified
Published: 2014-08-12T00:55:03.627
Modified: 2024-11-21T02:07:24.527
Link: CVE-2014-3069
Redhat
No data.