- Description
- A Host Header Injection vulnerability in TRMTracker application may allow an attacker by modifying the host header value in an HTTP request to leverage multiple attack vectors, including defacing the site content through web-cache poisoning.
- Source
- cybersecurity@hitachienergy.com
- NVD status
- Awaiting Analysis
CVSS 3.1
- Type
- Secondary
- Base score
- 6.1
- Impact score
- 2.7
- Exploitability score
- 2.8
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
- Severity
- MEDIUM
- cybersecurity@hitachienergy.com
- CWE-74
- Hype score
- Not currently trending
New post from https://t.co/uXvPWJy6tj (CVE-2025-27632 | Hitachi Energy TRMTracker up to 6.2.04/6.3.01 HTTP Request Host injection) has been published on https://t.co/YgACmthMNM
@WolfgangSesin
25 Mar 2025
6 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2025-27632 A Host Header Injection vulnerability in TRMTracker application may allow an attacker by modifying the host header value in an HTTP request to leverage multiple attac… https://t.co/e10ZnlcifL
@CVEnew
25 Mar 2025
322 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes