CWE-644 对HTTP头部进行脚本语法转义处理不恰当类漏洞列表 45

CWE-644 对HTTP头部进行脚本语法转义处理不恰当类弱点 45 条 CVE 漏洞汇总，含 AI 中文分析。

CWE-644属于HTTP头注入漏洞，指产品未正确净化HTTP头中的脚本语法。攻击者常通过构造恶意HTTP头，利用浏览器组件（如Flash）执行跨站脚本攻击，窃取用户数据或劫持会话。开发者应避免将用户可控数据直接写入HTTP头，需对输入进行严格过滤与编码，确保特殊字符被正确转义，从而阻断恶意脚本的执行路径，保障应用安全。

MITRE CWE 官方描述

CWE：CWE-644 HTTP 头部的脚本语法不当中和英文：产品未对 HTTP 头部中的 Web 脚本语法进行中和，或中和不当。这些脚本语法可被能够处理原始头部的 Web 浏览器组件（如 Flash）所利用。攻击者可能能够对启用了这些组件的用户实施跨站脚本（Cross-Site Scripting, XSS）及其他攻击。如果产品未对服务器发出的 HTTP 响应头部中包含的用户可控数据进行中和，则该头部可能包含将在客户端浏览器上下文中执行的脚本，从而导致跨站脚本漏洞，或可能引发 HTTP 响应拆分（HTTP Response Splitting）攻击。为确保不存在任何脚本语法，必须仔细控制放置在 HTTP 响应头部和 HTTP 响应主体中的数据，并考虑各种编码方式。

常见影响 (2)

Integrity, Confidentiality, AvailabilityExecute Unauthorized Code or Commands

Run arbitrary code.

ConfidentialityRead Application Data

Attackers may be able to obtain sensitive information.

缓解措施 (2)

Architecture and DesignPerform output validation in order to filter/escape/encode unsafe data that is being passed from the server in an HTTP response header.

Architecture and DesignDisable script execution functionality in the clients' browser.

代码示例 (1)

In the following Java example, user-controlled data is added to the HTTP headers and returned to the client. Given that the data is not subject to neutralization, a malicious user may be able to inject dangerous scripting tags that will lead to script execution in the client browser.

response.addHeader(HEADER_NAME, untrustedRawInputData);

Bad · Java

CVE ID	タイトル	CVSS	深刻度	公開日
CVE-2024-39736	IBM Datacap Navigator HTTP HOST header injection — Datacap Navigator	6.5	Medium	2024-07-15
CVE-2022-22399	IBM Aspera Faspex HTTP header injection — Aspera Faspex	5.4	Medium	2024-03-05
CVE-2024-21499	caddy-security 安全漏洞 — github.com/greenpau/caddy-security	4.3	Medium	2024-02-17
CVE-2024-1064	Improper Neutralization of HTTP Headers for Scripting Syntax in Crafty Controller 4 — Crafty Controller	7.5	High	2024-02-03
CVE-2023-47143	IBM Tivoli Application Dependency Discovery Manager HOST header injection — Tivoli Application Dependency Discovery Manager	10.0	Critical	2024-02-02
CVE-2023-34036	Forwarded header exploit with Spring HATEOAS on WebFlux — Spring HATEOAS	5.3	Medium	2023-07-17
CVE-2023-36921	Header Injection in SAP Solution Manager (Diagnostic Agent) — SAP Solution Manager (Diagnostic Agent)	7.2	High	2023-07-11
CVE-2023-32465	Dell PowerProtect Cyber Recovery 安全漏洞 — PowerProtect Cyber Recovery	8.8	High	2023-06-14
CVE-2022-45102	Dell EMC Data Protection Central 安全漏洞 — Data Protection Central	5.4	Medium	2023-02-01
CVE-2021-38997	IBM API Connect HOST header injection — API Connect	5.4	Medium	2022-12-01
CVE-2022-34316	IBM CICS TX information disclosure — CICS TX	3.7	Low	2022-11-14
CVE-2021-20784	Voidtools Everything 安全漏洞 — Everything	6.1	-	2021-07-14
CVE-2021-21265	October CMS vulnerable to Potential Host Header Poisoning on misconfigured servers — october	6.8	Medium	2021-03-10
CVE-2020-6982	Honeywell WIN-PAK 安全漏洞 — Honeywell WIN-PAK 4.7.2, Web and prior versions	9.8	-	2020-03-24
CVE-2017-6031	Certec EDV GmbH atvise scada 安全漏洞 — Certec EDV GmbH atvise scada	8.3	-	2017-05-06

CWE-644（对HTTP头部进行脚本语法转义处理不恰当）是常见的弱点类别，本平台收录该类弱点关联的 45 条 CVE 漏洞。

目標達成 すべての支援者に感謝 — 100%達成しました！

CWE-644 对HTTP头部进行脚本语法转义处理不恰当 类漏洞列表 45

目標達成すべての支援者に感謝 — 100%達成しました！

CWE-644 对HTTP头部进行脚本语法转义处理不恰当类漏洞列表 45