Open Redirect Vulnerability in Affected Product from Vendor
CVE-2026-45448

4.3MEDIUM

Key Information:

Vendor: Ntop
Status: Ntopng
Vendor: CVE Published:; 14 May 2026

What is CVE-2026-45448?

This vulnerability allows an attacker to exploit the open redirect flaw, redirecting users from a legitimate site to an untrusted site. This could lead to phishing attacks, unauthorized data collection, or distribution of malicious content. Users are encouraged to apply the latest security patches and to ensure that their products are updated to mitigate these risks.

Affected Version(s)

ntopng ntopng-6.7.251215

References

https://www.gov.il/en/departments/dynamiccollectors/cve_a...

CVSS V3.1

Score:

4.3

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

None

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 14, 2026
Vulnerability Reserved
May 12, 2026

Credit

Sami Mirov

CVE-2026-45448 Data

JSON