CRLF Injection - Vulnerability
Type: Vulnerability
Frequency: Mentioned 15 times
Threat intelligence on CRLF Injection (Vulnerability). Found in 4 clusters.
Related Threat Clusters
- Critical CRLF Injection Vulnerability in cpp-httplib (CVE-2026-45372) (Threat Score: 72.6)
- Critical Privilege Escalation Vulnerability in Pardus Linux Discovered (Threat Score: 72.0)
- Multiple OpenJDK Versions Exposed to Remote Information Theft Vulnerabilities (Threat Score: 65.6)
- SUSE and openSUSE Address CRLF Injection Vulnerability in netty (Threat Score: 45.6)
Recent Articles
- CVE-2026-45372: cpp-httplib: HTTP header value percent-decoding in server-side `parse_header` enables CRLF injection [CRITICAL] CVSS 9.9 Exploit Intelligence — Recent CVEs / 16h cpp-httplib is a C++11 single-file header-only cross platform HTTP/HTTPS library. Prior to 0.44.0, when cpp-httplib's server parses an incoming request, it applies percent-decoding to every header value except Location and Referer. The validity check (is_field_value) is run before decoding, so encod - exploit-intel.com
- Pardus Linux Vulnerability Chain Enables Complete System Takeover - Thecyberexpress
- Ubuntu 25.10 OpenJDK 17 Critical Risk RCE DoS USN-7998 - Linuxsecurity
- Ubuntu 25.10 OpenJDK 17 Important RMI Info Disclosure 7997-1 CVE-2026 - Linuxsecurity
- Ubuntu 25.10 OpenJDK 25 Critical RCE Information Disclosure 7996 - Linuxsecurity
- Ubuntu 25 OpenJDK 25 Important Security Threats USN-7995 - Linuxsecurity
- Ubuntu 25.10 OpenJDK 21 Critical Code Exec Issue USN-8002 - Linuxsecurity
- Ubuntu 25.10 OpenJDK 8 Critical Remote Code Exec Security Alert USN-8000 - Linuxsecurity
- USN-7998-1: OpenJDK 17 vulnerabilities - Ubuntu
- USN-8003-1: CRaC JDK 21 vulnerabilities - Ubuntu