← back
CVE-2015-4668

CVE-2015-4668

EPSS 6.7%
Vexday Risk Score
38Attention
SSVC decision (CISA)
Attend
PoC available → attend closely
Exploit maturity
Functional exploit
Automatable exploit available (Nuclei/Metasploit).
CVSS EPSS 6.7%KEV nãoPoC públicaNuclei simMetasploit Patch
Lifecycle
27 Jul 2015Public PoC
25 Sep 2017Published on NVD
Recommendation: Plan a near-term fix — a public PoC already exists.
Open redirect vulnerability in Xsuite 2.4.4.5 and earlier allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the redirurl parameter.
Affected products
n/a · n/a
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.