CVE-2020-23015 · Vexday

CVE-2020-23015

EPSS 2.7%

An open redirect issue was discovered in OPNsense through 20.1.5. The redirect parameter "url" in login page was not filtered and can redirect user to any website.

Affected products

n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://github.com/opnsense/core/issues/4061