A vulnerability in the web-based management interface of Cisco Integrated Management Controller (IMC) Software could allow an unauthenticated, remote malicious user to redirect a user to a malicious web page. This vulnerability is due to improper input validation of the parameters in an HTTP request. An attacker could exploit this vulnerability by persuading a user to click a crafted link. A successful exploit could allow the malicious user to redirect a user to a malicious website. This vulnerability is known as an open redirect attack, which is used in phishing attacks to get users to visit malicious sites without their knowledge.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
cisco ucs manager |
||
cisco integrated management controller |
||
cisco encs 5100 firmware |
||
cisco encs 5400 firmware |
||
cisco c220 m6 firmware |
||
cisco c225 m6 firmware |
||
cisco c240 m6 firmware |
||
cisco c245 m6 firmware |
||
cisco c125 m5 firmware |
||
cisco c220 m5 firmware |
||
cisco c240 m5 firmware |
||
cisco c480 m5 firmware |
||
cisco c480 ml m5 firmware |
||
cisco ucs-e140s firmware |
||
cisco ucs-e140d firmware |
||
cisco ucs-e160d firmware |
||
cisco ucs-e160s-m3 firmware |
||
cisco ucs-e180d-m3 firmware |
||
cisco ucs-e1120d-m3 firmware |
||
cisco ucs-e140s-m2 firmware |
||
cisco ucs-e180d-m2 firmware |
||
cisco ucs-e140s-m1 firmware |
||
cisco ucs-e140dp firmware |
||
cisco ucs-e160dp-m1 firmware |
||
cisco ucs s3260 firmware |