CVE-2025-2418
MEDIUMTR7 Web Application Firewall 4.30-16022026 - Open Redirect
Title source: llmDescription
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in TR7 Cyber Defense Inc. Web Application Firewall allows Phishing. This issue affects Web Application Firewall: from 4.30 before v1.4.0.117.
References (2)
Core 2
Core References
Third Party Advisory, US Government Resource government-resource
broken-link
https://www.usom.gov.tr/bildirim/tr-26-0066
Government Resource government-resource
https://siberguvenlik.gov.tr/guvenlik-bildirimleri/detay/tr-26-0066
Scores
CVSS v3
4.3
EPSS
0.0024
EPSS Percentile
14.7%
Attack Vector
ADJACENT_NETWORK
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
no
Technical Impact
partial
Details
CWE
CWE-601
Status
published
Products (2)
TR7 Cyber Defense Inc./Web Application Firewall
4.30 - 16022026
TR7 Cyber Defense Inc./Web Application Firewall
4.30 - v1.4.0.117
Published
Feb 16, 2026
Tracked Since
Feb 18, 2026