Open Redirect vulnerability exists in IceWarp MailServer IceWarp Server Deep Castle 2 Update 1 (13.0.1.2) via the referer parameter.
References
| Link | Resource |
|---|---|
| http://icewarp.com | Product |
| http://mail.ziyan.com | Permissions Required |
| https://medium.com/%40rohitgautam26/cve-2021-36580-69219798231c | |
| http://icewarp.com | Product |
| http://mail.ziyan.com | Permissions Required |
| https://medium.com/%40rohitgautam26/cve-2021-36580-69219798231c |
Configurations
Configuration 1 (hide)
|
History
21 Nov 2024, 06:13
| Type | Values Removed | Values Added |
|---|---|---|
| References | () http://icewarp.com - Product | |
| References | () http://mail.ziyan.com - Permissions Required | |
| References | () https://medium.com/%40rohitgautam26/cve-2021-36580-69219798231c - |
07 Nov 2023, 03:36
| Type | Values Removed | Values Added |
|---|---|---|
| References |
|
|
03 Aug 2023, 13:36
| Type | Values Removed | Values Added |
|---|---|---|
| CPE | cpe:2.3:a:icewarp:icewarp_server:*:*:*:*:*:*:*:* cpe:2.3:a:icewarp:mail_server:*:*:*:*:*:*:*:* |
|
| CWE | CWE-601 | |
| References | (MISC) http://mail.ziyan.com - Permissions Required | |
| References | (MISC) http://icewarp.com - Product | |
| References | (MISC) https://medium.com/@rohitgautam26/cve-2021-36580-69219798231c - Exploit, Technical Description, Third Party Advisory | |
| First Time |
Icewarp mail Server
Icewarp icewarp Server Icewarp |
|
| CVSS |
v2 : v3 : |
v2 : unknown
v3 : 6.1 |
27 Jul 2023, 18:49
| Type | Values Removed | Values Added |
|---|---|---|
| New CVE |
Information
Published : 2023-07-27 18:15
Updated : 2024-11-21 06:13
NVD link : CVE-2021-36580
Mitre link : CVE-2021-36580
CVE.ORG link : CVE-2021-36580
JSON object : View
Products Affected
icewarp
- icewarp_server
- mail_server
CWE
CWE-601
URL Redirection to Untrusted Site ('Open Redirect')