Vulnerabilities > URL Redirection to Untrusted Site ('Open Redirect')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-08-24 | CVE-2020-10775 | Open Redirect vulnerability in multiple products An Open redirect vulnerability was found in ovirt-engine versions 4.4 and earlier, where it allows remote attackers to redirect users to arbitrary web sites and attempt phishing attacks. | 5.3 |
| 2020-08-24 | CVE-2020-4598 | Open Redirect vulnerability in IBM Security Guardium Insights 2.0.1 IBM Security Guardium Insights 2.0.1 could allow a remote attacker to conduct phishing attacks, using an open redirect attack. | 6.1 |
| 2020-08-19 | CVE-2020-4653 | Open Redirect vulnerability in IBM Planning Analytics 2.0 IBM Planning Analytics 2.0 could allow a remote attacker to conduct phishing attacks, using an open redirect attack. | 6.1 |
| 2020-07-30 | CVE-2020-15129 | Open Redirect vulnerability in Traefik In Traefik before versions 1.7.26, 2.2.8, and 2.3.0-rc3, there exists a potential open redirect vulnerability in Traefik's handling of the "X-Forwarded-Prefix" header. | 4.7 |
| 2020-07-23 | CVE-2020-7520 | Open Redirect vulnerability in Schneider-Electric Software Update Utility A CWE-601: URL Redirection to Untrusted Site ('Open Redirect') vulnerability exists in Schneider Electric Software Update (SESU), V2.4.0 and prior, which could cause execution of malicious code on the victim's machine. | 4.7 |
| 2020-07-22 | CVE-2020-8559 | Open Redirect vulnerability in Kubernetes The Kubernetes kube-apiserver in versions v1.6-v1.15, and versions prior to v1.16.13, v1.17.9 and v1.18.6 are vulnerable to an unvalidated redirect on proxied upgrade requests that could allow an attacker to escalate privileges from a node compromise to a full cluster compromise. | 6.8 |
| 2020-07-14 | CVE-2019-12783 | Open Redirect vulnerability in Verint Impact 360 15.1 An issue was discovered in Verint Impact 360 15.1. | 6.1 |
| 2020-07-13 | CVE-2019-20901 | Open Redirect vulnerability in Atlassian Jira The login.jsp resource in Jira before version 8.5.2, and from version 8.6.0 before version 8.6.1 allows remote attackers to redirect users to a different website which they may use as part of performing a phishing attack via an open redirect in the os_destination parameter. | 6.1 |
| 2020-07-10 | CVE-2020-5607 | Open Redirect vulnerability in Ss-Proj Shirasagi Open redirect vulnerability in SHIRASAGI v1.13.1 and earlier allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors. | 6.1 |
| 2020-07-07 | CVE-2020-11882 | Open Redirect vulnerability in Telefonica O2 Business 1.2.0 The O2 Business application 1.2.0 for Android exposes the canvasm.myo2.SplashActivity activity to other applications. | 6.1 |