CVE-2022-23102

Name of the Vulnerable Software and Affected Versions SINEMA Remote Connect Server versions prior to V2.0

Description A vulnerability has been identified that allows for an open redirect, potentially leading to phishing attacks. An attacker could trick a valid authenticated user into clicking a malicious link. This issue is related to the server's handling of URL redirects, which can be exploited by a remote attacker to conduct phishing attacks using a specially crafted link.

Recommendations For versions prior to V2.0, update to version V2.0 or later to resolve the issue. As a temporary workaround, consider restricting access to external links from within the SINEMA Remote Connect Server to minimize the risk of exploitation. Avoid using links from untrusted sources until the issue is resolved.