PT-2024-31881 · Magarsus Consultancy · Magarsus Consultancy Sso

Published

2024-06-26

Updated

2024-06-27

CVE-2024-4604

CVSS v3.1

6.1

Medium

Vector

AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Name of the Vulnerable Software and Affected Versions Magarsus Consultancy SSO (Single Sign On) versions 1.0 through 1.1

Description The issue allows manipulation of hidden fields through URL redirection to untrusted sites, also known as an 'Open Redirect'. This can potentially be used to manipulate user input in unintended ways.

Recommendations For versions 1.0 through 1.1, update to version 1.1 or later to resolve the issue.

Fix

Open Redirect

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-601

Related Identifiers

CVE-2024-4604

Affected Products

Magarsus Consultancy Sso

PT-2024-31881 · Magarsus Consultancy · Magarsus Consultancy Sso

CVE-2024-4604

Weakness Enumeration

Related Identifiers

Affected Products

References · 4