A vulnerability in the web-based management interface of Cisco Webex Video Mesh could allow an unauthenticated, remote attacker to redirect a user to a malicious web page. This vulnerability is due to improper input validation of the URL parameters in an HTTP request. An attacker could exploit this vulnerability by persuading a user to click a crafted link. A successful exploit could allow the attacker to redirect a user to a malicious website. Attackers may use this type of vulnerability, known as an open redirect attack, as part of a phishing attack to persuade users to unknowingly visit malicious sites.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: cisco
Published: 2021-11-04T15:40:39.972034Z
Updated: 2024-09-16T22:36:47.274Z
Reserved: 2020-11-13T00:00:00
Link: CVE-2021-1500
Vulnrichment
No data.
NVD
Status : Modified
Published: 2021-11-04T16:15:08.297
Modified: 2023-11-07T03:28:27.010
Link: CVE-2021-1500
Redhat
No data.