CVE-2024-1227

MEDIUM

Rejetto Http File Server 2.2a build 124 - Open Redirect

Title source: llm

Description

An open redirect vulnerability, the exploitation of which could allow an attacker to create a custom URL and redirect a legitimate page to a malicious site.

References (1)

Core 1

Core References

Third Party Advisory

https://www.incibe.es/en/incibe-cert/notices/aviso/multiple-vulnerabilities-rejettos-http-file-server

Scores

CVSS v3 6.5

EPSS 0.0049

EPSS Percentile 38.2%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-601

Status published

Products (1)

Rejetto/Http File Server 2.2a, build #124

Published Mar 12, 2024

Tracked Since Feb 18, 2026