Nov 26, 2019 7:00 pm EDT
Categorized: Medium Severity
Share this post:
The software receives data from an upstream component, but does not neutralize or incorrectly neutralizes CR and LF characters before the data is included in outgoing HTTP headers.
Affected product(s) and affected version(s):
IBM QRadar Network Packet Capture 7.3.0 – 7.3.2 Patch 2
Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: https://www.ibm.com/support/pages/node/1115655