← volver
CVE-2020-23015

CVE-2020-23015

EPSS 2.7%
Vexday Risk Score
18Bajo
Decisión SSVC (CISA)
Attend
PoC disponible → seguir de cerca
Madurez del exploit
Exploit funcional
Exploit automatizable disponible (Nuclei/Metasploit).
CVSS EPSS 2.7%KEV nãoPoC Nuclei simMetasploit Patch
Ciclo de vida
03 may 2021Publicada en NVD
Recomendación: Planificar corrección próxima — ya existe PoC pública.
An open redirect issue was discovered in OPNsense through 20.1.5. The redirect parameter "url" in login page was not filtered and can redirect user to any website.
Productos afectados
n/a · n/a