CVE-2024-22113
MEDIUMAccess analysis CGI An-Analyzer <2023 - Open Redirect
Title source: llmDescription
Open redirect vulnerability in Access analysis CGI An-Analyzer released in 2023 December 31 and earlier allows a remote unauthenticated attacker to redirect users to arbitrary websites and conduct phishing attacks via a specially crafted URL.
References (2)
Core 2
Core References
Third Party Advisory
https://jvn.jp/en/jp/JVN73587943/
Mitigation, Vendor Advisory
https://www.anglers-net.com/anlog/update/
Scores
CVSS v3
6.1
EPSS
0.0040
EPSS Percentile
31.2%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
yes
Technical Impact
partial
Details
CWE
CWE-601
Status
published
Products (1)
anglers-net/cgi_an-anlyzer
< 2023-12-31
Published
Jan 22, 2024
Tracked Since
Feb 18, 2026