CVE-2024-34328
Unknown
Unknown - Not Provided
BaseFortify
Publication date: 2025-07-31
Last updated on: 2025-07-31
Assigner: MITRE
Description
Description
An open redirect in Sielox AnyWare v2.1.2 allows attackers to execute a man-in-the-middle attack via a crafted URL.
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| sielox | anyware | 2.1.2 |
Helpful Resources
Exploitability
CWE
KEV
| CWE ID | Description |
|---|---|
| CWE-601 | The web application accepts a user-controlled input that specifies a link to an external site, and uses that link in a redirect. |
Attack-Flow Graph
AI Powered Q&A
How can this vulnerability impact me? :
The vulnerability can allow attackers to intercept and manipulate communications between the user and the intended site by redirecting users to malicious sites, potentially leading to data theft or unauthorized access.
Can you explain this vulnerability to me?
This vulnerability is an open redirect in Sielox AnyWare v2.1.2 that allows attackers to redirect users to malicious sites via a crafted URL, enabling a man-in-the-middle attack.
Ask Our AI Assistant
Need more information? Ask your question to get an AI reply (Powered by our expertise)
0/70