CVE-2023-6545

MEDIUM

Beckhoffs TwinCAT/BSD - Open Redirect

Title source: llm

Description

The package authelia-bhf included in Beckhoffs TwinCAT/BSD is prone to an open redirect that allows a remote unprivileged attacker to redirect a user to another site. This may have limited impact to integrity and does solely affect anthelia-bhf the Beckhoff fork of authelia.

References (2)

Core 2

Core References

Third Party Advisory

https://cert.vde.com/en/advisories/VDE-2023-067/

Vendor Advisory

https://download.beckhoff.com/download/Document/product-security/Advisories/advisory-2023-001.pdf

Scores

CVSS v3 4.7

EPSS 0.0043

EPSS Percentile 34.5%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:L/A:N

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-601

Status published

Products (1)

beckhoff/authelia-bhf < 4.37.5

Published Dec 14, 2023

Tracked Since Feb 18, 2026