HomePentest-Tools.com Logo

Apache Tomcat Open Redirect Vulnerability (Aug 2023) - Windows CVE-2023-41080

Severity
CVSSv3 Score
6.1
Vulnerability description

Apache Tomcat is prone to an open redirect vulnerability.

Risk description

If the ROOT (default) web application is configured to use FORM authentication then it is possible that a specially crafted URL could be used to trigger a redirect to an URL of the attackers choice.

Recommendation

Update to version 8.5.93, 9.0.80, 10.1.13, 11.0.0-M11 or later.

Codename
Not available
Detectable with
Network Scanner
Scan engine
OpenVAS
Exploitable with Sniper
No
CVE Published
Aug 25, 2023
Detection added at
Software Type
Not available
Vendor
Not available
Product
Not available