Host Header Injection vulnerability in the HCL BigFix OSD Bare Metal Server version 311.12 or lower allows attacker to supply invalid input to cause the OSD Bare Metal Server to perform a redirect to an attacker-controlled domain.
References
Link | Resource |
---|---|
https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0105601 | Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: HCL
Published: 2023-06-22T22:18:21.455Z
Updated: 2023-06-22T22:18:21.455Z
Reserved: 2023-03-10T03:59:29.452Z
Link: CVE-2023-28016
JSON object: View
NVD Information
Status : Analyzed
Published: 2023-06-22T23:15:09.343
Modified: 2023-07-03T19:17:06.243
Link: CVE-2023-28016
JSON object: View
Redhat Information
No data.
CWE