Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cveMitreCVE-2015-4668
HistorySep 25, 2017 - 5:29 p.m.

CVE-2015-4668

2017-09-2517:29:00
CWE-601
mitre
web.nvd.nist.gov
29
vulnerability
xsuite
open redirect
remote attackers
phishing attacks
nvd

CVSS2

5.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:P/A:N

CVSS3

6.1

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

AI Score

7.5

Confidence

High

EPSS

0.004

Percentile

73.6%

JSON

Open redirect vulnerability in Xsuite 2.4.4.5 and earlier allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the redirurl parameter.

Affected configurations

Nvd
Node
xceediumxsuiteMatch2.3.0
OR
xceediumxsuiteMatch2.4.3.0
VendorProductVersionCPE
xceediumxsuite2.3.0cpe:2.3:a:xceedium:xsuite:2.3.0:*:*:*:*:*:*:*
xceediumxsuite2.4.3.0cpe:2.3:a:xceedium:xsuite:2.4.3.0:*:*:*:*:*:*:*

Related

nuclei 1
prion 1
cvelist 1
nvd 1
openvas 1
packetstorm 1
exploitdb 1
zdt 1
securityvulns 1
exploitpack 1
nuclei
nuclei
Xsuite <=2.4.4.5 - Open Redirect
2022-07-16 00:37:16
prion
prion
Open redirect
2017-09-25 17:29:00
cvelist
cvelist
CVE-2015-4668
2017-09-25 17:00:00
nvd
nvd
CVE-2015-4668
2017-09-25 17:29:00
openvas
openvas
Xceedium Xsuite Multiple Vulnerabilities
2016-03-03 00:00:00
packetstorm
packetstorm
Xceedium Xsuite Command Injection / XSS / Traversal / Escalation
2015-07-22 00:00:00
exploitdb
exploitdb
Xceedium Xsuite - Multiple Vulnerabilities
2015-07-27 00:00:00
zdt
zdt
Xceedium Xsuite Command Injection / XSS / Traversal / Escalation Vulnerabilities
2015-07-23 00:00:00
securityvulns
securityvulns
Multiple &#40;remote and local&#41; Vulnerabilities in Xceedium Xsuite [MZ-15-02]
2015-07-27 00:00:00
exploitpack
exploitpack
Xceedium Xsuite - Multiple Vulnerabilities
2015-07-27 00:00:00

CVSS2

5.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:P/A:N

CVSS3

6.1

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

AI Score

7.5

Confidence

High

EPSS

0.004

Percentile

73.6%

JSON
Related for CVE-2015-4668
nuclei1prion1cvelist1nvd1openvas1packetstorm1exploitdb1zdt1securityvulns1exploitpack1