exploitDog

GHSA-mmg7-h35c-v85f

Опубликовано: 22 мар. 2023

Источник: github

Github: Не прошло ревью

CVSS3: 3.5

Описание

Experience Manager versions 6.5.15.0 (and earlier) are affected by a URL Redirection to Untrusted Site ('Open Redirect') vulnerability. A low-privilege authenticated attacker could leverage this vulnerability to redirect users to malicious websites. Exploitation of this issue requires user interaction.

Experience Manager versions 6.5.15.0 (and earlier) are affected by a URL Redirection to Untrusted Site ('Open Redirect') vulnerability. A low-privilege authenticated attacker could leverage this vulnerability to redirect users to malicious websites. Exploitation of this issue requires user interaction.

Ссылки

EPSS

Процентиль: 64%

0.0047

Низкий

3.5 Low

CVSS3

CVE ID

Дефекты

CWE-601

Связанные уязвимости

CVE-2023-22258

CVSS3: 5.4

nvd

почти 3 года назад

Experience Manager versions 6.5.15.0 (and earlier) are affected by a URL Redirection to Untrusted Site ('Open Redirect') vulnerability. A low-privilege authenticated attacker could leverage this vulnerability to redirect users to malicious websites. Exploitation of this issue requires user interaction.

BDU:2023-01607

CVSS3: 3.5

fstec

почти 3 года назад

Уязвимость системы управления контентом и медиа-данными Adobe Experience Manager, связанная с переадресацией URL на ненадежный сайт, позволяющая нарушителю обойти ограничения безопасности

EPSS

Процентиль: 64%

0.0047

Низкий

3.5 Low

CVSS3

CVE ID

Дефекты

CWE-601