Vulnerability Description
Open redirect vulnerability in the valid_back_url function in app/controllers/application_controller.rb in Redmine before 2.6.7, 3.0.x before 3.0.5, and 3.1.x before 3.1.1 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a crafted back_url parameter, as demonstrated by "@attacker.com," a different vulnerability than CVE-2014-1985.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Debian | Debian Linux | 7.0 |
| Redmine | Redmine | <= 2.6.6 |
References
- http://www.debian.org/security/2016/dsa-3529
- http://www.redmine.org/news/101Patch
- http://www.securityfocus.com/bid/78625
- https://github.com/redmine/redmine/commit/032f2c9be6520d9d1a1608aa4f1d5d1f184f24
- https://www.redmine.org/issues/19577PatchVendor Advisory
- http://www.debian.org/security/2016/dsa-3529
- http://www.redmine.org/news/101Patch
- http://www.securityfocus.com/bid/78625
- https://github.com/redmine/redmine/commit/032f2c9be6520d9d1a1608aa4f1d5d1f184f24
- https://www.redmine.org/issues/19577PatchVendor Advisory
FAQ
What is CVE-2015-8474?
CVE-2015-8474 is a vulnerability with a CVSS score of 7.4 (HIGH). Open redirect vulnerability in the valid_back_url function in app/controllers/application_controller.rb in Redmine before 2.6.7, 3.0.x before 3.0.5, and 3.1.x before 3.1.1 allows remote attackers to r...
How severe is CVE-2015-8474?
CVE-2015-8474 has been rated HIGH with a CVSS base score of 7.4/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2015-8474?
Check the references section above for vendor advisories and patch information. Affected products include: Debian Debian Linux, Redmine Redmine.