CVE-2024-43794 | opensearch-project security-dashboards-plugin up to 1.3.18/2.15.x nextUrl redirect

Posted by Angelo Barbosa | Aug 23, 2024 | CVE

A vulnerability was found in opensearch-project security-dashboards-plugin up to 1.3.18/2.15.x. It has been classified as problematic. This affects an unknown part. The manipulation of the argument nextUrl leads to open redirect.

This vulnerability is uniquely identified as CVE-2024-43794. It is possible to initiate the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-43794 | opensearch-project security-dashboards-plugin up to 1.3.18/2.15.x nextUrl redirect

Related Posts

CVE-2023-0437 | MongoDB C Driver up to 1.24.x bson_utf8_validate infinite loop

CVE-2023-52119 | Icegram Engage Plugin up to 3.1.18 on WordPress cross-site request forgery

CVE-2023-46297 | Mercusys MW325R 3_1.11.0 221019 HTTP Request denial of service

CVE-2024-34075 | xiboon kurwov up to 3.2.4 MarkovData#getNext deserialization