CRLF Injection Vulnerability in Reprise License Manager (RLM) Web Interface

CRLF Injection Vulnerability in Reprise License Manager (RLM) Web Interface

CVE-2021-37499 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N

CRLF vulnerability in Reprise License Manager (RLM) web interface through 14.2BL4 in the password parameter in View License Result function, that allows remote attackers to inject arbitrary HTTP headers.

Learn more about our Web App Pen Testing.