exploitDog

GHSA-4f2v-wwv4-6225

Опубликовано: 13 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 6.1

Описание

Novell Access Manager Admin Console and IDP servers before 4.3.3 have a URL that could be used by remote attackers to trigger unvalidated redirects to third party sites.

Novell Access Manager Admin Console and IDP servers before 4.3.3 have a URL that could be used by remote attackers to trigger unvalidated redirects to third party sites.

Ссылки

EPSS

Процентиль: 43%

0.00211

Низкий

6.1 Medium

CVSS3

CVE ID

Дефекты

CWE-601

Связанные уязвимости

CVE-2017-14802

CVSS3: 5.4

nvd

почти 8 лет назад

Novell Access Manager Admin Console and IDP servers before 4.3.3 have a URL that could be used by remote attackers to trigger unvalidated redirects to third party sites.

EPSS

Процентиль: 43%

0.00211

Низкий

6.1 Medium

CVSS3

CVE ID

Дефекты

CWE-601