CRLF injection vulnerability in Jenkins before 1.491, Jenkins LTS before 1.480.1, and Jenkins Enterprise 1.424.x before 1.424.6.13, 1.447.x before 1.447.4.1, and 1.466.x before 1.466.10.1 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via unspecified vectors.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: redhat
Published: 2013-02-24T22:00:00
Updated: 2016-06-09T13:57:01
Reserved: 2012-12-06T00:00:00
Link: CVE-2012-6072
JSON object: View
NVD Information
Status : Analyzed
Published: 2013-02-24T22:55:01.097
Modified: 2018-10-30T16:27:19.920
Link: CVE-2012-6072
JSON object: View
Redhat Information
No data.
CWE