A vulnerability in the web framework of Cisco Prime Service Catalog could allow an authenticated, remote attacker to conduct a web URL redirect attack against a user who is logged in to an affected system. More Information: CSCvb21745. Known Affected Releases: 10.0_R2_tanggula.
References
| Link | Resource |
|---|---|
| http://www.securityfocus.com/bid/95947 | Third Party Advisory VDB Entry |
| http://www.securitytracker.com/id/1037772 | |
| https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170201-psc | Vendor Advisory |
| http://www.securityfocus.com/bid/95947 | Third Party Advisory VDB Entry |
| http://www.securitytracker.com/id/1037772 | |
| https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170201-psc | Vendor Advisory |
Configurations
History
21 Nov 2024, 03:26
| Type | Values Removed | Values Added |
|---|---|---|
| References | () http://www.securityfocus.com/bid/95947 - Third Party Advisory, VDB Entry | |
| References | () http://www.securitytracker.com/id/1037772 - | |
| References | () https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170201-psc - Vendor Advisory |
Information
Published : 2017-02-03 07:59
Updated : 2024-11-21 03:26
NVD link : CVE-2017-3810
Mitre link : CVE-2017-3810
CVE.ORG link : CVE-2017-3810
JSON object : View
Products Affected
cisco
- prime_service_catalog
CWE
CWE-601
URL Redirection to Untrusted Site ('Open Redirect')