216.73.217.64

CVE-2024-6377

· Published 20/08/2024 14:15 · Modified 27/08/2024 08:15

Labels: CVE-2024-6377 2024-08-20[email protected]CVE-2024-6377CWE-601CWE-79

Essential information

Published
20/08/2024 14:15
Modified
27/08/2024 08:15
Author
Creator
CVSS
6.1 MEDIUM (v3.1)
CISA KEV
No
CWE
CVSS vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

CVSS metrics

Description

An URL redirection to untrusted site (open redirect) vulnerability affecting 3DPassport in 3DSwymer from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2024x allows an attacker to redirect users to an arbitrary website via a crafted URL.

NVD status

Status
Modified — CVE has been recently published to the CVE List and has been received by the NVD.
Source
[email protected]
NVD
View on NVD

Affected products (CPE)

ProductCPE
3ds / 3dexperience cpe:2.3:o:3ds:3dexperience:*:*:*:*:*:*:*:*

References