Improper input validation in Dell Openmanage_server_administrator
CVE-2013-0740
Open redirect vulnerability in Dell OpenManage Server Administrator (OMSA) before 7.3.0 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the file parameter to HelpViewer.
Vulnerability class: Drupalgeddon 2 (CVE-2018-7600)
EPSS: 0.012 (63.4th percentile) — read the EPSS interpretation.
Affected products
- Dell Openmanage_server_administrator — versions 7.0.0, 7.0.0.1, 7.1.0
- N/a — versions n/a
Weakness classification (CWE)
References
- PSIRT-CNA@flexerasoftware.com (x_refsource_SECUNIA, Vendor Advisory, third-party-advisory)
- PSIRT-CNA@flexerasoftware.com (x_refsource_OSVDB, vdb-entry)
- PSIRT-CNA@flexerasoftware.com (vdb-entry, x_refsource_BID)