URL Redirection to Untrusted Site ('Open Redirect') vulnerability in FORM authentication feature Apache Tomcat.This issue affects Apache Tomcat: from 11.0.0-M1 through 11.0.0-M10, from 10.1.0-M1 through 10.0.12, from 9.0.0-M1 through 9.0.79 and from 8.5.0 through 8.5.92.
The vulnerability is limited to the ROOT (default) web application.
Metrics
Affected Vendors & Products
References
History
Fri, 27 Sep 2024 19:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
MITRE
Status: PUBLISHED
Assigner: apache
Published: 2023-08-25T20:39:36.584Z
Updated: 2024-09-27T18:43:12.433Z
Reserved: 2023-08-22T18:21:35.140Z
Link: CVE-2023-41080
Vulnrichment
Updated: 2024-08-02T18:46:11.691Z
NVD
Status : Modified
Published: 2023-08-25T21:15:09.397
Modified: 2024-11-21T08:20:31.427
Link: CVE-2023-41080
Redhat