CVE Vulnerabilities

CVE-2021-37499

Published: Jan 20, 2023 | Modified: Apr 30, 2025
CVSS 3.x
6.5
MEDIUM
Source:
NVD
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N
CVSS 2.x
RedHat/V2
RedHat/V3
Ubuntu

CRLF vulnerability in Reprise License Manager (RLM) web interface through 14.2BL4 in the password parameter in View License Result function, that allows remote attackers to inject arbitrary HTTP headers.

Affected Software

Name Vendor Start Version End Version
Reprise_license_manager Reprisesoftware * 17.0 (excluding)

References