CVE-2023-2524

MEDIUM

Control iD RHiD 23.3.19.0 - Open Redirect

Title source: llm

Description

A vulnerability classified as critical has been found in Control iD RHiD 23.3.19.0. This affects an unknown part of the file /v2/#/. The manipulation leads to direct request. It is possible to initiate the attack remotely. The associated identifier of this vulnerability is VDB-228015. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.

References (2)

[Permissions Required] https://vuldb.com/?id.228015

[Permissions Required] https://vuldb.com/?ctiid.228015

Scores

CVSS v3 6.3

EPSS 0.0007

EPSS Percentile 20.2%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-425

Status published

Products (1)

controlid/rhid 23.3.19.0

Published May 04, 2023

Tracked Since Feb 18, 2026