CVE-2015-5210: Apache Ambari Open Redirect

May 17, 2022 (updated August 13, 2023)

Open redirect vulnerability in Apache Ambari before 2.1.2 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the targetURI parameter.

References

www.openwall.com/lists/oss-security/2015/10/13/4
cwiki.apache.org/confluence/display/AMBARI/Ambari+Vulnerabilities
github.com/advisories/GHSA-w3p6-94x2-xcvm
nvd.nist.gov/vuln/detail/CVE-2015-5210

Detect and mitigate CVE-2015-5210 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →