PT-2025-20365 · Halo · Halo
Published
2025-05-08
·
Updated
2025-05-09
·
CVE-2025-40846
CVSS v4.0
7.1
High
| Vector | AV:N/AC:L/AT:P/PR:L/UI:A/VC:H/VI:L/VA:N/SC:H/SI:H/SA:H/S:P/AU:Y/R:U/RE:L/U:Red |
Name of the Vulnerable Software and Affected Versions
Halo versions up to 2.174.101
Halo versions 2.175.1 through 2.184.21
Description
The issue is related to improper input validation, specifically with the
returnUrl parameter in Account Security Settings. This lack of validation allows attackers to redirect users to malicious websites (open redirect) and inject JavaScript code to perform cross-site scripting attacks.Recommendations
For Halo versions up to 2.174.101, update to a version that includes proper input validation for the
returnUrl parameter.
For Halo versions 2.175.1 through 2.184.21, update to a version that includes proper input validation for the returnUrl parameter.
As a temporary workaround, consider restricting access to the returnUrl parameter in the Account Security Settings to minimize the risk of exploitation.Fix
Open Redirect
RCE
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Halo