Описание
SimpleSAMLphp before 1.15.2 allows remote attackers to bypass an open redirect protection mechanism via crafted authority data in a URL.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| simplesamlphp | fixed | 1.15.2-1 | package | |
| simplesamlphp | no-dsa | stretch | package | |
| simplesamlphp | no-dsa | jessie | package | |
| simplesamlphp | not-affected | wheezy | package |
Примечания
https://simplesamlphp.org/security/201801-02
EPSS
Процентиль: 38%
0.00165
Низкий
Связанные уязвимости
CVSS3: 6.1
ubuntu
около 8 лет назад
SimpleSAMLphp before 1.15.2 allows remote attackers to bypass an open redirect protection mechanism via crafted authority data in a URL.
CVSS3: 6.1
nvd
около 8 лет назад
SimpleSAMLphp before 1.15.2 allows remote attackers to bypass an open redirect protection mechanism via crafted authority data in a URL.
CVSS3: 6.1
github
больше 3 лет назад
SimpleSAMLphp Open redirection protection bypass
EPSS
Процентиль: 38%
0.00165
Низкий