exploitDog

CVE-2024-7941

Опубликовано: 27 авг. 2024

Источник: nvd

CVSS3: 4.3

EPSS Низкий

Описание

An HTTP parameter may contain a URL value and could cause the web application to redirect the request to the specified URL. By modifying the URL value to a malicious site, an attacker may successfully launch a phishing scam and steal user credentials.

Ссылки

https://publisher.hitachienergy.com/preview?DocumentID=8DBD000160&LanguageCode=en&DocumentPartId=&Action=Launch
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:hitachienergy:microscada_x_sys600:10.5:*:*:*:*:*:*:*

EPSS

Процентиль: 55%

0.0033

Низкий

4.3 Medium

CVSS3

Дефекты

CWE-601

CWE-601

Связанные уязвимости

GHSA-fqxm-c9wh-542c

CVSS3: 4.3

github

больше 1 года назад

An HTTP parameter may contain a URL value and could cause the web application to redirect the request to the specified URL. By modifying the URL value to a malicious site, an attacker may successfully launch a phishing scam and steal user credentials.

EPSS

Процентиль: 55%

0.0033

Низкий

4.3 Medium

CVSS3

Дефекты

CWE-601

CWE-601