Unrated severityNVD Advisory· Published Apr 1, 2014· Updated Jun 16, 2026
CVE-2013-1869
CVE-2013-1869
Description
CRLF injection vulnerability in spacewalk-java before 2.1.148-1 and Red Hat Network (RHN) Satellite 5.6 allows remote attackers to inject arbitrary HTTP headers, and conduct HTTP response splitting attacks and cross-site scripting (XSS) attacks, via the return_url parameter.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
4cpe:2.3:a:redhat:spacewalk-java:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:redhat:spacewalk-java:*:*:*:*:*:*:*:*range: <=2.1.147-1
- (no CPE)range: <2.1.148-1
- Range: =5.6
Patches
Vulnerability mechanics
References
5News mentions
0No linked articles in our index yet.