exploitDog

GHSA-j4q2-v3p9-r94x

Опубликовано: 02 мая 2022

Источник: github

Github: Не прошло ревью

Описание

CFNetwork in Apple Mac OS X 10.5 before 10.5.8 places an incorrect URL in a certificate warning in certain 302 redirection scenarios, which makes it easier for remote attackers to trick a user into visiting an arbitrary https web site by leveraging an open redirect vulnerability, a different issue than CVE-2009-2062.

CFNetwork in Apple Mac OS X 10.5 before 10.5.8 places an incorrect URL in a certificate warning in certain 302 redirection scenarios, which makes it easier for remote attackers to trick a user into visiting an arbitrary https web site by leveraging an open redirect vulnerability, a different issue than CVE-2009-2062.

Ссылки

EPSS

Процентиль: 67%

0.00552

Низкий

CVE ID

Связанные уязвимости

CVE-2009-1723

nvd

больше 16 лет назад

CFNetwork in Apple Mac OS X 10.5 before 10.5.8 places an incorrect URL in a certificate warning in certain 302 redirection scenarios, which makes it easier for remote attackers to trick a user into visiting an arbitrary https web site by leveraging an open redirect vulnerability, a different issue than CVE-2009-2062.

EPSS

Процентиль: 67%

0.00552

Низкий

CVE ID