Vulnerability CVE-2018-1067

Vulnerability CVE-2018-1067

Published: 2018-05-21

Description:

Type:

(Improper Neutralization of CRLF Sequences in HTTP Headers ('HTTP Response Splitting'))

CVSS Base Score	Impact Subscore	Exploitability Subscore
5.8/10	4.9/10	8.6/10

Affected software
Redhat -> Jboss enterprise application platform
Redhat -> Undertow
Redhat -> Virtualization

https://access.redhat.com/errata/RHSA-2018:1247

https://access.redhat.com/errata/RHSA-2018:1248

https://access.redhat.com/errata/RHSA-2018:1249

https://access.redhat.com/errata/RHSA-2018:1251

https://access.redhat.com/errata/RHSA-2018:2643

https://access.redhat.com/errata/RHSA-2019:0877

https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-1067