Vulnerability Description
SeedDMS v6.0.15 was discovered to contain an open redirect vulnerability. An attacker may exploit this vulnerability to redirect users to arbitrary web URLs by tricking the victim users to click on crafted links.
CVSS Score
6.1
MEDIUM
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Seeddms | Seeddms | 6.0.15 |
Related Weaknesses (CWE)
References
- https://medium.com/%40rohitgautam26/cve-2021-39425-8a336eba34dd
- https://owasp.org/www-project-web-security-testing-guide/v41/4-Web_Application_SThird Party Advisory
- https://medium.com/%40rohitgautam26/cve-2021-39425-8a336eba34dd
- https://owasp.org/www-project-web-security-testing-guide/v41/4-Web_Application_SThird Party Advisory
FAQ
What is CVE-2021-39425?
CVE-2021-39425 is a vulnerability with a CVSS score of 6.1 (MEDIUM). SeedDMS v6.0.15 was discovered to contain an open redirect vulnerability. An attacker may exploit this vulnerability to redirect users to arbitrary web URLs by tricking the victim users to click on cr...
How severe is CVE-2021-39425?
CVE-2021-39425 has been rated MEDIUM with a CVSS base score of 6.1/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2021-39425?
Check the references section above for vendor advisories and patch information. Affected products include: Seeddms Seeddms.