CVE Vulnerabilities

CVE-2015-7428

Published: Feb 29, 2016 | Modified: Mar 02, 2016
CVSS 3.x
7.4
HIGH
Source:
NVD
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:H/A:N
CVSS 2.x
5.8 MEDIUM
AV:N/AC:M/Au:N/C:P/I:P/A:N
RedHat/V2
RedHat/V3
Ubuntu

Open redirect vulnerability in IBM WebSphere Portal 8.0.x before 8.0.0.1 CF20 and 8.5.x before 8.5.0.0 CF09 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a crafted URL.

Affected Software

Name Vendor Start Version End Version
Websphere_portal Ibm 8.5.0.0 8.5.0.0
Websphere_portal Ibm 8.0.0.1 8.0.0.1
Websphere_portal Ibm 8.0.0.0 8.0.0.0

References