Описание
Open redirect vulnerability in the Console in Puppet Enterprise before 2015.2.1 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via the string parameter.
Ссылки
- Third Party AdvisoryVDB Entry
- Vendor Advisory
- Third Party AdvisoryVDB Entry
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 2015.2.0 (включая)
cpe:2.3:a:puppet:puppet_enterprise:*:*:*:*:*:*:*:*
EPSS
Процентиль: 41%
0.00189
Низкий
6.1 Medium
CVSS3
5.8 Medium
CVSS2
Дефекты
CWE-601
Связанные уязвимости
CVSS3: 6.1
debian
около 9 лет назад
Open redirect vulnerability in the Console in Puppet Enterprise before ...
CVSS3: 6.1
github
больше 3 лет назад
Open redirect vulnerability in the Console in Puppet Enterprise before 2015.2.1 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via the string parameter.
EPSS
Процентиль: 41%
0.00189
Низкий
6.1 Medium
CVSS3
5.8 Medium
CVSS2
Дефекты
CWE-601