Open Redirect Vulnerability in vTiger CRM by vTiger
CVE-2024-44776

6.1MEDIUM

Key Information:

Vendor: Vtiger
Status: Vtiger Crm
Vendor: CVE Published:; 29 August 2024

What is CVE-2024-44776?

An Open Redirect vulnerability exists in the page parameter of vTiger CRM version 7.4.0. This flaw permits attackers to craft URLs that redirect unsuspecting users to potentially harmful or malicious websites. Exploiting this vulnerability could lead to phishing attacks or other security threats, as users may unknowingly follow these deceptive links, compromising their sensitive information.

References

http://vtiger.com

https://packetstormsecurity.com/files/180461/vTiger-CRM-7...

CVSS V3.1

Score:

6.1

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

Low

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Changed

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Aug 29, 2024
Vulnerability Reserved
Aug 21, 2024

Vtiger

What is CVE-2024-44776?

References

CVSS V3.1

Timeline