CVE-2024-39736 | IBM Datacap Navigator 9.1.5/9.1.6/9.1.7/9.1.8/9.1.9 HTTP Header Host http headers for scripting syntax (XFDB-296003)

Inserito da Angelo Barbosa | Lug 15, 2024 | CVE

A vulnerability, which was classified as critical, has been found in IBM Datacap Navigator 9.1.5/9.1.6/9.1.7/9.1.8/9.1.9. This issue affects some unknown processing of the component HTTP Header Handler. The manipulation of the argument Host leads to improper neutralization of http headers for scripting syntax.

The identification of this vulnerability is CVE-2024-39736. The attack may be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-39736 | IBM Datacap Navigator 9.1.5/9.1.6/9.1.7/9.1.8/9.1.9 HTTP Header Host http headers for scripting syntax (XFDB-296003)

Post correlati

VDB-256322 | Backdoor.Win32.Beastdoor.oq Service Port 1332 backdoor

CVE-2023-45894 | Parallels RAS prior 19.2.23975 Remote Application Server access control

CVE-2024-20353 | Cisco ASA/Firepower Threat Defense Web Server infinite loop (cisco-sa-asaftd-websrvs-dos-X8gNucD2)

CVE-2024-27950 | sirv Image Optimizer, Resizer and CDN Plugin up to 7.2.0 on WordPress authorization