CVE-2013-3998

Currently unrated

Key Information:

Vendor: IBM
Status: Infosphere Biginsights
Vendor: CVE Published:; 26 March 2014

Summary

CRLF injection vulnerability in the Web Application Enterprise Console in IBM InfoSphere BigInsights 1.1 and 2.x before 2.1 FP2 allows remote authenticated users to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via unspecified vectors.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/84987

vdb-entryx_refsource_XF

http://www-01.ibm.com/support/docview.wss?uid=swg21667812

x_refsource_CONFIRM

Timeline

Vulnerability published
Mar 26, 2014
Vulnerability Reserved
Jun 7, 2013