{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-06-29T13:07:51.537","vulnerabilities":[{"cve":{"id":"CVE-2018-16181","sourceIdentifier":"vultures@jpcert.or.jp","published":"2019-01-09T23:29:03.873","lastModified":"2026-06-17T01:43:50.517","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"HTTP header injection vulnerability in i-FILTER Ver.9.50R05 and earlier may allow remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks that may result in an arbitrary script injection or setting an arbitrary cookie values via unspecified vectors."},{"lang":"es","value":"Vulnerabilidad de inyección de cabeceras HTTP en i-FILTER, en versiones 9.50R05 y anteriores, podría permitir que atacantes remotos inyecten cabeceras HTTP arbitrarias y lleven a cabo ataques de separación de respuesta HTTP que podrían resultar en la inyección de scripts arbitrarios o en la configuración de valores de cookie arbitrarios mediante vectores sin especificar."}],"affected":[{"source":"vultures@jpcert.or.jp","affectedData":[{"vendor":"Digital Arts Inc.","product":"i-FILTER","versions":[{"version":"Ver.9.50R05 and earlier","status":"affected"}]}]}],"metrics":{"cvssMetricV30":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.0","vectorString":"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N","baseScore":6.1,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":2.7}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:M/Au:N/C:P/I:P/A:N","baseScore":5.8,"accessVector":"NETWORK","accessComplexity":"MEDIUM","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"PARTIAL","availabilityImpact":"NONE"},"baseSeverity":"MEDIUM","exploitabilityScore":8.6,"impactScore":4.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":true}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-113"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:daj:i-filter:*:*:*:*:*:*:*:*","versionEndIncluding":"9.50r05","matchCriteriaId":"35CCC75C-3427-4B4A-9C3F-824930DBFDD5"}]}]}],"references":[{"url":"https://download.daj.co.jp/user/ifilter/V9/","source":"vultures@jpcert.or.jp","tags":["Permissions Required","Vendor Advisory"]},{"url":"https://jvn.jp/en/jp/JVN32155106/index.html","source":"vultures@jpcert.or.jp","tags":["Third Party Advisory"]},{"url":"https://download.daj.co.jp/user/ifilter/V9/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Permissions Required","Vendor Advisory"]},{"url":"https://jvn.jp/en/jp/JVN32155106/index.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]}]}}]}