Host Header Injection Vulnerability in E-Series SANtricity OS Controller Software 11.x versions through 11.70.2

CVE-2022-23237 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

E-Series SANtricity OS Controller Software 11.x versions through 11.70.2 are vulnerable to host header injection attacks that could allow an attacker to redirect users to malicious websites.

Learn more about our Web App Pen Testing.