Vulnerability Description
Plexus anblick Digital Signage Management 3.1.13 contains an open redirect vulnerability in the 'PantallaLogin' script that allows attackers to manipulate the 'pagina' GET parameter. Attackers can craft malicious links that redirect users to arbitrary websites by exploiting improper input validation in the parameter.
CVSS Score
CRITICAL
Related Weaknesses (CWE)
References
- https://exchange.xforce.ibmcloud.com/vulnerabilities/185521
- https://packetstormsecurity.com/files/158473
- https://www.plexus.es/
- https://www.vulncheck.com/advisories/plexus-anblick-digital-signage-management-o
- https://www.zeroscience.mk/en/vulnerabilities/ZSL-2020-5573.php
FAQ
What is CVE-2020-36912?
CVE-2020-36912 is a vulnerability with a CVSS score of 9.8 (CRITICAL). Plexus anblick Digital Signage Management 3.1.13 contains an open redirect vulnerability in the 'PantallaLogin' script that allows attackers to manipulate the 'pagina' GET parameter. Attackers can cra...
How severe is CVE-2020-36912?
CVE-2020-36912 has been rated CRITICAL with a CVSS base score of 9.8/10. This is considered a critical vulnerability requiring immediate attention.
Is there a patch for CVE-2020-36912?
Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.