CVE-2021-28979
MEDIUMSafeNet KeySecure < 8.12.0 - HTTP Response Splitting via Crafted URL
Title source: llmDescription
SafeNet KeySecure Management Console 8.12.0 is vulnerable to HTTP response splitting attacks. A remote attacker could exploit this vulnerability using specially-crafted URL to cause the server to return a split response, once the URL is clicked.
References (4)
Core 4
Core References
Not Applicable x_refsource_misc
http://thales.com
Third Party Advisory x_refsource_misc
https://www.gruppotim.it/redteam
Product x_refsource_misc
http://safenet.com
Vendor Advisory
https://www.thalesgroup.com/en
Scores
CVSS v3
6.5
EPSS
0.0144
EPSS Percentile
69.8%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
Details
CWE
CWE-74
Status
published
Products (1)
thalesgroup/safenet_keysecure
< 8.12.0
Published
Jun 16, 2021
Tracked Since
Feb 18, 2026