An issue was discovered in PRiSE adAS 1.7.0. The OPENSSO module does not properly check the goto parameter, leading to an open redirect that leaks the session cookie.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2019-09-20T13:38:15

Updated: 2024-08-05T00:34:52.625Z

Reserved: 2019-08-10T00:00:00

Link: CVE-2019-14912

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2019-09-20T14:15:11.167

Modified: 2024-11-21T04:27:40.260

Link: CVE-2019-14912

cve-icon Redhat

No data.