CVE-2024-8586

CVSS 3.1 Score 6.1 of 10 (medium)

Details

Published Sep 9, 2024
CWE ID 601

Summary

CVE-2024-8586 identifies an Open Redirect vulnerability in WebITR from Uniong, affecting users by allowing unauthorized remote attackers to forge URLs. This vulnerability can deceive users into believing they are accessing a trusted domain, potentially leading to phishing attacks. The CVSS base score for this vulnerability is 6.1, indicating a medium severity level with low integrity and confidentiality impact but requiring user interaction for exploitation. To remediate the issue, it is recommended that organizations apply relevant patches or updates provided by Uniong and educate users on recognizing potential phishing attempts. Failure to address this vulnerability may expose organizations to security breaches and unauthorized access through deceptive redirects.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share