CVE-2015-8094

CVE-2015-8094

EPSS 1.5%

Open redirect vulnerability in Cloudera HUE before 3.10.0 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the next parameter.

Produtos afetados

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

http://cloudera.github.io/hue/latest/release-notes/release-notes-3.10.0.html https://github.com/cloudera/hue/pull/346 https://issues.cloudera.org/browse/HUE-3626 https://www.harmfultrust.com/p/advisories.html