Detections
Analytics

CVE-2023-37624

medium

Description

Netdisco before v2.063000 was discovered to contain an open redirect vulnerability. An attacker may exploit this vulnerability to redirect users to arbitrary web URLs by tricking the victim users to click on crafted links.

References

https://github.com/netdisco/netdisco/commit/a2da6a7a046c1c0fd41072dd6991eec7614293f8

https://github.com/benjaminpsinclair/Netdisco-CVE

https://github.com/benjaminpsinclair/Netdisco-2023-Advisory

Details

Source: Mitre, NVD

Published: 2023-07-26

Updated: 2023-08-02

Risk Information

CVSS v2

Base Score: 6.4

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:N

Severity: Medium

CVSS v3

Base Score: 6.1

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Severity: Medium