PT-2020-14006 · Wso2 · Wso2 Is As Key Manager+1
Published
2020-06-18
·
Updated
2022-11-16
·
CVE-2020-14446
CVSS v3.1
6.1
Medium
| Vector | AC:L/AV:N/A:N/C:L/I:L/PR:N/S:C/UI:R |
Name of the Vulnerable Software and Affected Versions
WSO2 Identity Server versions through 5.10.0
WSO2 IS as Key Manager versions through 5.10.0
Description
An issue exists in the software, specifically an open redirect.
Recommendations
For WSO2 Identity Server versions through 5.10.0, update to a version later than 5.10.0 to resolve the issue.
For WSO2 IS as Key Manager versions through 5.10.0, update to a version later than 5.10.0 to resolve the issue.
Exploit
Fix
Open Redirect
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Wso2 Is As Key Manager
Wso2 Identity Server