CyberSec.Space Logo
Back to CVE Browser

CVE-2021-43058

MEDIUM
6.1
CVSS Severity Score
EPSS Score0.0240%
EPSS Percentile35.18th
PublishedNov 1, 2021
Last ModifiedNov 21, 2024

Vulnerability Description

An open redirect vulnerability exists in Replicated Classic versions prior to 2.53.1 that could lead to spoofing. To exploit this vulnerability, an attacker could send a link that has a specially crafted URL and convince the user to click the link, redirecting the user to an untrusted site.

Affected Platforms (CPE)

📦
Replicated

Replicated Classic

< 2.53.1

References & Advisories

🔗 https://www.replicated.com/security/advisories/CVE-2021-43058
🔗 https://www.replicated.com/security/advisories/CVE-2021-43058

Related Vulnerabilities

CVE-2020-105907.5

Replicated Classic 2.x versions have an improperly secured API that exposes sensitive data from the Replicated Admin Console confi...

CVE-2021-427184.9

Information Disclosure in API in Replicated Replicated Classic versions prior to 2.53.1 on all platforms allows authenticated user...

CVE-2021-2132110.0

fastify-reply-from is an npm package which is a fastify plugin to forward the current http request to another server. In fastify-r...

CVE-2021-2132210.0

fastify-http-proxy is an npm package which is a fastify plugin for proxying your http requests to another server, with hooks. By c...