CVE-2020-11053 — Open Redirect in Proxy

CWE-601 — Open Redirect CWE-1289 — Improper Validation of Unsafe Equivalence in Input CWE-610 — Externally Controlled Reference to a Resource in Another Sphere6 documents4 sources

Severity

6.1MEDIUMNVD

EPSS

0.2%

top 54.20%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Oauth2 Proxy Github.com Oauth2-proxy Oauth2-proxy Oauth2 Proxy Project Oauth2 Proxy

Timeline

PublishedMay 7

Latest updateDec 20

Description

In OAuth2 Proxy before 5.1.1, there is an open redirect vulnerability. Users can provide a redirect address for the proxy to send the authenticated user to at the end of the authentication flow. This is expected to be the original URL that the user was trying to access. This redirect URL is checked within the proxy and validated before redirecting the user to prevent malicious actors providing redirects to potentially harmful sites. However, by crafting a redirect URL with HTML encoded whitespac…

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:NExploitability: 2.8 | Impact: 2.7

Affected Packages3 packages

▶CVEListV5oauth2_proxy/oauth2_proxy< 5.1.1

▶NVDoauth2_proxy_project/oauth2_proxy< 5.1.1

▶Gogithub.com/oauth2-proxy_oauth2-proxy< 5.1.1

🔴Vulnerability Details

OSV

Open Redirect in OAuth2 Proxy↗2021-12-20

▶

GHSA

Open Redirect in OAuth2 Proxy↗2021-12-20

▶

📐Framework References

CWE

Improper Validation of Unsafe Equivalence in Input↗

▶

CWE

Externally Controlled Reference to a Resource in Another Sphere↗

▶

CWE

URL Redirection to Untrusted Site ('Open Redirect')↗

▶