Описание
Open redirect vulnerability in IBM Rational Requirements Composer before 4.0.4 allows remote authenticated users to redirect users to arbitrary web sites and conduct phishing attacks via a crafted URL.
Уязвимые конфигурации
Конфигурация 1Версия до 4.0.3 (включая)
Одно из
cpe:2.3:a:ibm:rational_requirements_composer:*:*:*:*:*:*:*:*
cpe:2.3:a:ibm:rational_requirements_composer:4.0.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:rational_requirements_composer:4.0.1:*:*:*:*:*:*:*
cpe:2.3:a:ibm:rational_requirements_composer:4.0.2:*:*:*:*:*:*:*
EPSS
Процентиль: 35%
0.00141
Низкий
4.9 Medium
CVSS2
Дефекты
CWE-20
Связанные уязвимости
github
больше 3 лет назад
Open redirect vulnerability in IBM Rational Requirements Composer before 4.0.4 allows remote authenticated users to redirect users to arbitrary web sites and conduct phishing attacks via a crafted URL.
EPSS
Процентиль: 35%
0.00141
Низкий
4.9 Medium
CVSS2
Дефекты
CWE-20