Vulnerability Bulletins

Cisco HyperFlex HX Data Platform Open Redirect Vulnerability

System information
   
Affected software Cisco

Description
A vulnerability in the web-based management interface of Cisco HyperFlex HX Data Platform could allow an unauthenticated, remote attacker to redirect a user to a malicious web page. This vulnerability is due to improper input validation of the parameters in an HTTP request. An attacker could exploit this vulnerability by persuading a user to click a crafted link. A successful exploit could allow the attacker to redirect a user to a malicious website. Cisco has released software updates that

More info:

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-hyperflex-redirect-UxLgqdUF?vs_f=Cisco%20Security%20Advisory&vs_cat=Security%20Intelligence&vs_type=RSS&vs_p=Cisco%20HyperFlex%20HX%20Data%20Platform%20Open%20Redirect%20Vulnerability&vs_k=1

Standar resources
Property Value
CVE CVE-2023-20263.

Version history
Version Comments Date
1.0 Advisory issued 2023-09-07
Ministerio de Defensa
CNI
CCN
CCN-CERT