Описание
BentoML Open Redirect vulnerability
An open redirect vulnerability in bentoml/bentoml v1.3.9 allows a remote unauthenticated attacker to redirect users to arbitrary websites via a specially crafted URL. This can be exploited for phishing attacks, malware distribution, and credential theft.
Пакеты
Наименование
bentoml
pip
Затронутые версииВерсия исправления
<= 1.3.9
Отсутствует
6.1 Medium
CVSS3
Дефекты
CWE-601
6.1 Medium
CVSS3
Дефекты
CWE-601