CVE-2020-10775

MEDIUM Year: 2020
CVSS v3 Score
5.3
Medium
CVSS v2 Score
2.6
Low
Weakness Type
CWE-451
View all →

Vulnerability Description

An Open redirect vulnerability was found in ovirt-engine versions 4.4 and earlier, where it allows remote attackers to redirect users to arbitrary web sites and attempt phishing attacks. Once the target has opened the malicious URL in their browser, the critical part of the URL is no longer visible. The highest threat from this vulnerability is on confidentiality.

Related Vulnerabilities

CVE-2016-9460

MEDIUM
CVSS:5.3(Medium)

Nextcloud Server before 9.0.52 & ownCloud Server before 9.0.4 are vulnerable to a content-spoofing attack in the files app. The location bar in the files app was not verifying the passed parameters. A...

CWE-4512016

CVE-2016-9467

MEDIUM
CVSS:5.3(Medium)

Nextcloud Server before 9.0.54 and 10.0.1 & ownCloud Server before 9.0.6 and 9.1.2 suffer from content spoofing in the files app. The location bar in the files app was not verifying the passed paramet...

CWE-4512016

CVE-2016-9468

MEDIUM
CVSS:5.3(Medium)

Nextcloud Server before 9.0.54 and 10.0.1 & ownCloud Server before 9.0.6 and 9.1.2 suffer from content spoofing in the dav app. The exception message displayed on the DAV endpoints contained partially...

CWE-4512016

CVE-2021-33593

MEDIUM
CVSS:5.3(Medium)

Whale browser for iOS before 1.14.0 has an inconsistent user interface issue that allows an attacker to obfuscate the address bar which may lead to address bar spoofing.

CWE-4512021

CVE-2022-20530

MEDIUM
CVSS:5.3(Medium)

In strings.xml, there is a possible permission bypass due to a misleading string. This could lead to remote information disclosure of call logs with no additional execution privileges needed. User int...

CWE-4512022

CVE-2024-47044

MEDIUM
CVSS:5.3(Medium)

Multiple Home GateWay/Hikari Denwa routers provided by NIPPON TELEGRAPH AND TELEPHONE EAST CORPORATION are vulnerable to insufficient access restrictions for Device Setting pages. If this vulnerabilit...

CWE-4512024