CVE-2015-2014
published 2015-08-23CVE-2015-2014: Open redirect vulnerability in the web server in IBM Domino 8.5 before 8.5.3 FP6 IF9 and 9.0 before 9.0.1 FP4 allows remote attackers to redirect users to…
medium5.8CVSS 3.1
AVNACMAuNCPIPAN
Open redirect vulnerability in the web server in IBM Domino 8.5 before 8.5.3 FP6 IF9 and 9.0 before 9.0.1 FP4 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks or cross-site scripting (XSS) attacks via a crafted URL, aka SPR SJAR9DNGDA.
Affected
7 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| ibm | domino | — | — |
| ibm | domino | — | — |
| ibm | domino | — | — |
| ibm | domino | — | — |
| ibm | domino | — | — |
| php5 | php5 | >= 0 < 5.5.9+dfsg-1ubuntu4.6 | 5.5.9+dfsg-1ubuntu4.6 |
| redhat | libvirt | >= 0 < 1.2.2-0ubuntu13.1.16 | 1.2.2-0ubuntu13.1.16 |
CVSS provenance
nvd5.8MEDIUMAV:N/AC:M/Au:N/C:P/I:P/A:N
osv7.5HIGH