CHIYU TCP/IP Converter devices - CRLF injection Vulnerability CVE-2021-31249 Scanner Detail
CHIYU TCP/IP Converter devices allow CRLF Injection vulnerability.
A CRLF injection vulnerability was found on BF-430, BF-431, and BF-450M TCP/IP Converter devices from CHIYU Technology Inc due to a lack of validation on the parameter redirect= available on multiple CGI components.
Some Advice for Common Problems
- You need to apply related fixes.
- Sanitize all parameters received as input from the user.