CVE-2024-8646

In Eclipse Glassfish versions prior to 7.0.10, a URL redirection

Publication date: 2024-09-11

Last updated on: 2024-09-18

Description

In Eclipse Glassfish versions prior to 7.0.10, a URL redirection vulnerability to untrusted sites existed. This vulnerability is caused by the vulnerability CVE-2023-41080 in the Apache code included in GlassFish. This vulnerability only affects applications that are explicitly deployed to the root context .

CVSS Scores

Affected Vendors & Products

Currently, no data is known.

Helpful Resources

Broken Link
Vendor Advisory
Patch
Product

Exploitability

CWE ID	Description
CWE-601	URL Redirection to Untrusted Site ('Open Redirect')

Ask Our AI Assistant

Need more information? Ask your question to get an AI reply (Powered by our expertise)

0/70

Meta Information

Date published:

2024-09-11

Date last modified:

2024-09-18

Date generated:

2025-01-15

NVD report:

CVE-2024-8646