5.7 Medium
AI Score
Confidence
High
5.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:P/A:N
0.001 Low
EPSS
Percentile
49.9%
Open redirect vulnerability in the web server in IBM Domino 8.5 before 8.5.3 FP6 IF9 and 9.0 before 9.0.1 FP4 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks or cross-site scripting (XSS) attacks via a crafted URL, aka SPR SJAR9DNGDA.
CPE | Name | Operator | Version |
---|---|---|---|
ibm:domino | ibm domino | eq | 9.0.1 |
ibm:domino | ibm domino | eq | 8.5.0 |
ibm:domino | ibm domino | eq | 8.5.1 |
ibm:domino | ibm domino | eq | 8.5.3 |
ibm:domino | ibm domino | eq | 8.5.2 |