Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

oracle-oval логотип

ELSA-2023-6523

Опубликовано: 11 нояб. 2023
Источник: oracle-oval
Платформа: Oracle Linux 9

Описание

ELSA-2023-6523: python-tornado security update (MODERATE)

[6.1.0-9]

  • Fix an open redirect in StaticFileHandler Resolves: CVE-2023-28370

Обновленные пакеты

Oracle Linux 9

Oracle Linux aarch64

python3-tornado

6.1.0-9.el9

Oracle Linux x86_64

python3-tornado

6.1.0-9.el9

Связанные CVE

CVE-2023-28370

Ссылки на источники

Связанные уязвимости

ubuntu логотип

CVE-2023-28370

CVSS3: 6.1
ubuntu
больше 2 лет назад

Open redirect vulnerability in Tornado versions 6.3.1 and earlier allows a remote unauthenticated attacker to redirect a user to an arbitrary web site and conduct a phishing attack by having user access a specially crafted URL.

redhat логотип

CVE-2023-28370

CVSS3: 7.4
redhat
больше 2 лет назад

Open redirect vulnerability in Tornado versions 6.3.1 and earlier allows a remote unauthenticated attacker to redirect a user to an arbitrary web site and conduct a phishing attack by having user access a specially crafted URL.

nvd логотип

CVE-2023-28370

CVSS3: 6.1
nvd
больше 2 лет назад

Open redirect vulnerability in Tornado versions 6.3.1 and earlier allows a remote unauthenticated attacker to redirect a user to an arbitrary web site and conduct a phishing attack by having user access a specially crafted URL.

msrc логотип

CVE-2023-28370

CVSS3: 6.1
msrc
6 месяцев назад

Описание отсутствует

debian логотип

CVE-2023-28370

CVSS3: 6.1
debian
больше 2 лет назад

Open redirect vulnerability in Tornado versions 6.3.1 and earlier allo ...