exploitDog

GHSA-2rhf-mvhm-8hfp

Опубликовано: 16 нояб. 2022

Источник: github

Github: Не прошло ревью

CVSS3: 6.1

Описание

An unvalidated redirect vulnerability exists in Esri Portal for ArcGIS Quick Capture Web Designer versions 10.8.1 to 10.9.1. A remote, unauthenticated attacker can potentially induce an unsuspecting authenticated user to access an an attacker controlled domain.

An unvalidated redirect vulnerability exists in Esri Portal for ArcGIS Quick Capture Web Designer versions 10.8.1 to 10.9.1. A remote, unauthenticated attacker can potentially induce an unsuspecting authenticated user to access an an attacker controlled domain.

Ссылки

EPSS

Процентиль: 58%

0.00361

Низкий

6.1 Medium

CVSS3

CVE ID

Дефекты

CWE-601

Связанные уязвимости

CVE-2022-38201

CVSS3: 6.1

nvd

около 3 лет назад

An unvalidated redirect vulnerability exists in Esri Portal for ArcGIS Quick Capture Web Designer versions 10.8.1 to 10.9.1. A remote, unauthenticated attacker can potentially induce an unsuspecting authenticated user to access an an attacker controlled domain.

EPSS

Процентиль: 58%

0.00361

Низкий

6.1 Medium

CVSS3

CVE ID

Дефекты

CWE-601