CVE-2020-23015
CVE-2020-23015
Vexday Risk Score
18Bajo
Decisión SSVC (CISA)
Attend
PoC disponible → seguir de cerca
Madurez del exploit
Exploit funcional
Exploit automatizable disponible (Nuclei/Metasploit).
CVSS —EPSS 2.7%KEV nãoPoC —Nuclei simMetasploit —Patch —
Ciclo de vida
03 may 2021Publicada en NVD
Recomendación: Planificar corrección próxima — ya existe PoC pública.
An open redirect issue was discovered in OPNsense through 20.1.5. The redirect parameter "url" in login page was not filtered and can redirect user to any website.
Productos afectados
n/a · n/aReferencias
https://github.com/opnsense/core/issues/4061