A CWE-601:URL Redirection to Untrusted Site (‘Open Redirect’) vulnerability exists that could
cause disclosure of information through phishing attempts over HTTP.
References
Configurations
Configuration 1 (hide)
| AND |
|
Configuration 2 (hide)
| AND |
|
Configuration 3 (hide)
| AND |
|
Configuration 4 (hide)
| AND |
|
Configuration 5 (hide)
| AND |
|
Configuration 6 (hide)
| AND |
|
Configuration 7 (hide)
| AND |
|
Configuration 8 (hide)
| AND |
|
Configuration 9 (hide)
| AND |
|
Configuration 10 (hide)
| AND |
|
Configuration 11 (hide)
| AND |
|
Configuration 12 (hide)
| AND |
|
Configuration 13 (hide)
| AND |
|
Configuration 14 (hide)
| AND |
|
Configuration 15 (hide)
| AND |
|
Configuration 16 (hide)
| AND |
|
History
21 Nov 2024, 08:42
| Type | Values Removed | Values Added |
|---|---|---|
| References | () https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2023-346-01&p_enDocType=Security+and+Safety+Notice&p_File_Name=SEVD-2023-346-01.pdf - Vendor Advisory | |
| CVSS |
v2 : v3 : |
v2 : unknown
v3 : 8.2 |
27 Dec 2023, 18:45
| Type | Values Removed | Values Added |
|---|---|---|
| CPE | cpe:2.3:h:schneider-electric:eb45e:-:*:*:*:*:*:*:* cpe:2.3:h:schneider-electric:jr900:-:*:*:*:*:*:*:* cpe:2.3:o:schneider-electric:qp450_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:schneider-electric:jr240_firmware:-:*:*:*:*:*:*:* cpe:2.3:h:schneider-electric:qb450:-:*:*:*:*:*:*:* cpe:2.3:o:schneider-electric:eb45e_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:schneider-electric:qr150_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:schneider-electric:qr450_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:schneider-electric:eh450:-:*:*:*:*:*:*:* cpe:2.3:o:schneider-electric:jr900_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:schneider-electric:eb450_firmware:-:*:*:*:*:*:*:* cpe:2.3:h:schneider-electric:qp450:-:*:*:*:*:*:*:* cpe:2.3:h:schneider-electric:jr240:-:*:*:*:*:*:*:* cpe:2.3:h:schneider-electric:er450:-:*:*:*:*:*:*:* cpe:2.3:h:schneider-electric:qr150:-:*:*:*:*:*:*:* cpe:2.3:o:schneider-electric:eh45e_firmware:-:*:*:*:*:*:*:* cpe:2.3:h:schneider-electric:qh150:-:*:*:*:*:*:*:* cpe:2.3:o:schneider-electric:er45e_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:schneider-electric:qb450_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:schneider-electric:qp150:-:*:*:*:*:*:*:* cpe:2.3:h:schneider-electric:eb450:-:*:*:*:*:*:*:* cpe:2.3:h:schneider-electric:eh45e:-:*:*:*:*:*:*:* cpe:2.3:h:schneider-electric:qh450:-:*:*:*:*:*:*:* cpe:2.3:h:schneider-electric:er45e:-:*:*:*:*:*:*:* cpe:2.3:o:schneider-electric:qh150_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:schneider-electric:qh450_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:schneider-electric:er450_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:schneider-electric:eh450_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:schneider-electric:qp150_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:schneider-electric:qb150:-:*:*:*:*:*:*:* cpe:2.3:h:schneider-electric:qr450:-:*:*:*:*:*:*:* cpe:2.3:o:schneider-electric:qb150_firmware:*:*:*:*:*:*:*:* |
|
| CVSS |
v2 : v3 : |
v2 : unknown
v3 : 6.1 |
| References | () https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2023-346-01&p_enDocType=Security+and+Safety+Notice&p_File_Name=SEVD-2023-346-01.pdf - Vendor Advisory |
14 Dec 2023, 05:15
| Type | Values Removed | Values Added |
|---|---|---|
| New CVE |
Information
Published : 2023-12-14 05:15
Updated : 2024-11-21 08:42
NVD link : CVE-2023-5629
Mitre link : CVE-2023-5629
CVE.ORG link : CVE-2023-5629
JSON object : View
Products Affected
schneider-electric
- eh450
- qb450_firmware
- er45e
- qr450_firmware
- er450_firmware
- qp150
- er450
- qr150_firmware
- jr900_firmware
- qh450
- eh450_firmware
- qb150_firmware
- eb45e
- eb450_firmware
- eh45e_firmware
- qh150
- qp150_firmware
- jr240_firmware
- qh150_firmware
- qb450
- qb150
- qp450_firmware
- er45e_firmware
- eb45e_firmware
- jr900
- qr450
- jr240
- qh450_firmware
- qp450
- eh45e
- eb450
- qr150
CWE
CWE-601
URL Redirection to Untrusted Site ('Open Redirect')