EIP-2026-101275

PRE-CVE

FirePass 7.0 SSL VPN - 'refreshURL' Open Redirection

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-101275. PoCs published by Aung Khant.

AI-analyzed exploit summary The exploit describes a URI-redirection vulnerability in FirePass SSL VPN due to improper input sanitization. It allows attackers to redirect users to malicious sites via crafted URLs, aiding in phishing attacks.

Description

FirePass 7.0 SSL VPN - 'refreshURL' Open Redirection

Exploits (1)

exploitdb WRITEUP VERIFIED

by Aung Khant · textremotehardware

https://www.exploit-db.com/exploits/37969

View Code ZIP pw:eip

The exploit describes a URI-redirection vulnerability in FirePass SSL VPN due to improper input sanitization. It allows attackers to redirect users to malicious sites via crafted URLs, aiding in phishing attacks.

Classification

Writeup 90%

Attack Type

Other

Complexity

Trivial

Reliability

Reliable

Target: FirePass SSL VPN (versions prior to 7.0.0 HF-70-7 and 6.1.0 HF-610-9)

No auth needed

Prerequisites: Access to craft a malicious URL

MITRE ATT&CK

T1566.002 - Spearphishing Link

devstral-2 · analyzed Feb 16, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026