CVE-2018-18837

Published June 18th, 2019

View on NVD ↗

CVSS v3

N/A

CVSS v2

5.8

MEDIUM

Affected

PROJECT

Description

An issue was discovered in Netdata 1.10.0. HTTP Header Injection exists via the api/v1/data filename parameter because of web_client_api_request_v1_data in web/api/web_api_v1.c.

netdata/netdata

The fastest path to AI-powered full stack observability, even for lean teams.

GitHub

79.1K