5 matches found
CVE-2023-50704
An attacker could construct a URL within the application that causes a redirection to an arbitrary external domain and could be leveraged to facilitate phishing attacks against application users...
CVE-2023-50704 URL Redirection to Untrusted Site ('Open Redirect') in EFACEC UC 500E
An attacker could construct a URL within the application that causes a redirection to an arbitrary external domain and could be leveraged to facilitate phishing attacks against application users...
CVE-2023-50704 URL Redirection to Untrusted Site ('Open Redirect') in EFACEC UC 500E
An attacker could construct a URL within the application that causes a redirection to an arbitrary external domain and could be leveraged to facilitate phishing attacks against application users...
CVE-2023-50704
EFACEC UC 500E is affected by CVE-2023-50704 (Open Redirect). Affected product: UC 500E (example 10.1.0); vulnerability arises when an attacker constructs a URL in the application that redirects to an arbitrary external domain, enabling phishing against users. Mitigation: EFACEC has released UC 5...
EFACEC UC 500E
View CSAF 1. EXECUTIVE SUMMARY CVSS v3 6.3 ATTENTION : Exploitable remotely/low attack complexity Vendor : EFACEC Equipment : UC 500 Vulnerabilities : Cleartext Transmission of Sensitive Information, Open Redirect, Exposure of Sensitive Information to an Unauthorized Actor, Improper Access Contro...