Lucene search
K

Cisco Small Business 200,300 and 500 Series Switches - Open Redirect

🗓️ 03 Jul 2026 03:01:05Reported by ProjectDiscoveryType 
nuclei
 nuclei
🔗 github.com👁 74 Views

Cisco Small Business switches vulnerability - Open Redirect. Attacker can redirect to malicious site, obtain sensitive info, execute unauthorized operations

Related
Refs
Code
id: CVE-2019-1943

info:
  name: Cisco Small Business 200,300 and 500 Series Switches - Open Redirect
  author: bhutch
  severity: medium
  description: |
    Cisco Small Business 200,300 and 500 Series Switches contain an open redirect vulnerability in the Web UI. An attacker can redirect a user to a malicious site and possibly obtain sensitive information, modify data, and/or execute unauthorized operations.
  impact: |
    An attacker can exploit this vulnerability to redirect users to malicious websites, leading to phishing attacks or the download of malware.
  remediation: |
    Apply the necessary patches or updates provided by Cisco to fix the open redirect vulnerability.
  reference:
    - https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190717-sbss-redirect
    - https://www.exploit-db.com/exploits/47118
    - https://nvd.nist.gov/vuln/detail/CVE-2019-1943
    - https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190717-sbss-redirect
  classification:
    cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
    cvss-score: 6.1
    cve-id: CVE-2019-1943
    cwe-id: CWE-601
    epss-score: 0.1051
    epss-percentile: 0.95206
    cpe: cpe:2.3:o:cisco:sg200-50_firmware:-:*:*:*:*:*:*:*
  metadata:
    verified: "true"
    max-request: 1
    vendor: cisco
    product: sg200-50_firmware
    shodan-query: "/config/log_off_page.htm"
    censys-query: "services.http.response.headers.location: /config/log_off_page.htm"
  tags: cve,cve2019,redirect,cisco,vuln

http:
  - raw:
      - |
        GET / HTTP/1.1
        Host: interact.sh

    matchers-condition: and
    matchers:
      - type: word
        part: server
        words:
          - 'GoAhead-Webs'

      - type: regex
        part: header
        regex:
          - '(?i)Location:\shttps?:\/\/interact\.sh/cs[\w]+/'

      - type: status
        status:
          - 302
# digest: 4a0a00473045022100c2533855e33d7657994c1523712196a73bdf64dfcd45a7a3765e8a45dd41fbd202200e605d30a72598b5024c28e6bc58f77ca2842b2f3dd6739e623eb6fe94397a9b:922c64590222798bb761d5b6d8e72950

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

04 Feb 2026 07:00Current
6.2Medium risk
Vulners AI Score6.2
CVSS 25.8
CVSS 34.7 - 6.1
EPSS0.1051
SSVC
74