CVE-2015-5210

EPSS 0.96%

Apache Ambari Open Redirect

Published: 5/17/2022Modified: 12/6/2024

Description

Open redirect vulnerability in Apache Ambari before 2.1.2 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the targetURI parameter.

Affected packages (1)

Maven/org.apache.ambari:ambari>= 1.7.0, < 2.1.2

References (3)

ADVISORYhttps://nvd.nist.gov/vuln/detail/CVE-2015-5210
WEBhttps://cwiki.apache.org/confluence/display/AMBARI/Ambari+Vulnerabilities#AmbariVulnerabilities-FixedinAmbari2.1.2
WEBhttp://www.openwall.com/lists/oss-security/2015/10/13/4