CVE-2022-31735

EPSS 0.4%CWE-601

OpenAM Consortium Edition version 14.0.0 provided by OpenAM Consortium contains an open redirect vulnerability (CWE-601). When accessing an affected server through some specially crafted URL, the user may be redirected to an arbitrary website.

Produtos afetados

OpenAM consortium · OpenAM (OpenAM Consortium Edition)

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

https://github.com/openam-jp/openam/issues/259 https://jvn.jp/en/vu/JVNVU99326969/