exploitDog

CVE-2023-38574

Опубликовано: 05 сент. 2023

Источник: nvd

CVSS3: 6.1

EPSS Низкий

Описание

Open redirect vulnerability in VI Web Client prior to 7.9.6 allows a remote unauthenticated attacker to redirect users to arbitrary web sites and conduct phishing attacks via a specially crafted URL.

Ссылки

https://downloadvi.com/downloads/IPServer/v7.9/796232/v796232RN.pdf
Release Notes
https://jvn.jp/en/jp/JVN60140221/
Third Party Advisory
https://downloadvi.com/downloads/IPServer/v7.9/796232/v796232RN.pdf
Release Notes
https://jvn.jp/en/jp/JVN60140221/
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:i-pro:video_insight:*:*:*:*:*:*:*:*

Версия до 7.9.6 (исключая)

EPSS

Процентиль: 44%

0.0022

Низкий

6.1 Medium

CVSS3

Дефекты

CWE-601

Связанные уязвимости

GHSA-px6p-g8xc-79wp

CVSS3: 6.1

github

больше 2 лет назад

Open redirect vulnerability in VI Web Client prior to 7.9.6 allows a remote unauthenticated attacker to redirect users to arbitrary web sites and conduct phishing attacks via a specially crafted URL.

EPSS

Процентиль: 44%

0.0022

Низкий

6.1 Medium

CVSS3

Дефекты

CWE-601