Latest Open Redirect Vulnerabilities

DATE CVE VULNERABILITY TITLE RISK
2020-07-23 CVE-2020-7520 Open Redirect vulnerability in Schneider-Electric Software Update Utility 1.0.13/1.1/1.0
A CWE-601: URL Redirection to Untrusted Site ('Open Redirect') vulnerability exists in Schneider Electric Software Update (SESU), V2.4.0 and prior, which could cause execution of malicious code on the victim's machine.
Medium
2020-07-22 CVE-2020-8559 Open Redirect vulnerability in Kubernetes
The Kubernetes kube-apiserver in versions v1.6-v1.15, and versions prior to v1.16.13, v1.17.9 and v1.18.6 are vulnerable to an unvalidated redirect on proxied upgrade requests that could allow an attacker to escalate privileges from a node compromise to a full cluster compromise.
Medium
2020-07-14 CVE-2019-12783 Open Redirect vulnerability in Verint Impact 360
An issue was discovered in Verint Impact 360 15.1.
Medium
2020-07-13 CVE-2019-20901 Open Redirect vulnerability in Atlassian Jira
The login.jsp resource in Jira before version 8.5.2, and from version 8.6.0 before version 8.6.1 allows remote attackers to redirect users to a different website which they may use as part of performing a phishing attack via an open redirect in the os_destination parameter.
Medium
2020-07-10 CVE-2020-5607 Open Redirect vulnerability in Ss-Proj Shirasagi
Open redirect vulnerability in SHIRASAGI v1.13.1 and earlier allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors.
Medium
2020-07-07 CVE-2020-11882 Open Redirect vulnerability in Telefonica O2 Business
The O2 Business application 1.2.0 for Android exposes the canvasm.myo2.SplashActivity activity to other applications.
Medium
2020-07-02 CVE-2019-20417 Open Redirect vulnerability in Atlassian Jira Software Data Center and Jira
NOTE: This candidate is a duplicate of CVE-2019-15011.
Medium
2020-06-29 CVE-2020-4037 Open Redirect vulnerability in Oauth2 Proxy Project Oauth2 Proxy
In OAuth2 Proxy from version 5.1.1 and less than version 6.0.0, users can provide a redirect address for the proxy to send the authenticated user to at the end of the authentication flow.
Medium
2020-06-19 CVE-2017-18897 Open Redirect vulnerability in Mattermost Server
An issue was discovered in Mattermost Server before 4.2.0, 4.1.1, and 4.0.5, when used as an OAuth 2.0 service provider.
Medium
2020-06-19 CVE-2017-18891 Open Redirect vulnerability in Mattermost Server
An issue was discovered in Mattermost Server before 4.2.0, 4.1.1, and 4.0.5.
Medium