PT-2021-21268 · Unknown+7 · Mod Auth Mellon+7

Dhananjay Arunesh

Published

2021-08-04

Updated

2024-06-15

CVE-2021-3639

CVSS v3.1

6.1

Medium

Vector

AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Name of the Vulnerable Software and Affected Versions mod auth mellon (affected versions not specified)

Description A flaw in mod auth mellon allows attackers to facilitate phishing attacks by tricking users into visiting a trusted web application URL that redirects to an external and potentially malicious server. This issue could be used to compromise confidentiality and integrity.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Open Redirect

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-601

Related Identifiers

ALSA-2022:1934

AZL-10651

AZL-36962

CESA-2022_1934

CVE-2021-3639

DLA-3359-1

OPENSUSE-SU-2022_1524-1

OPENSUSE-SU-2024:13848-1

RHSA-2022:1934

RHSA-2022_1934

RLSA-2022:1934

SUSE-SU-2021:2912-1

SUSE-SU-2021_2912-1

SUSE-SU-2022:1524-1

SUSE-SU-2022_1524-1

USN-5069-1

USN-5069-2

Affected Products

Almalinux

Centos

Linuxmint

Red Hat

Rocky Linux

Suse

Ubuntu

Mod Auth Mellon

PT-2021-21268 · Unknown+7 · Mod Auth Mellon+7

CVE-2021-3639

Weakness Enumeration

Related Identifiers

Affected Products

References · 29