CVE-2024-9329 in Glassfish정보

요약

\~에 의해 MITRE • 2024. 09. 30.

In Eclipse Glassfish versions before 7.0.17, The Host HTTP parameter could cause the web application to redirect to the specified URL, when the requested endpoint is '/management/domain'. By modifying the URL value to a malicious site, an attacker may successfully launch a phishing scam and steal user credentials.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

책임이 있는

Eclipse

예약하다

2024. 09. 29.

모더레이션

수락

항목

VDB-278851

EPSS

0.00679

출처

Do you need the next level of professionalism?

Upgrade your account now!