|Number of vulnerabilities||1|
|CVE ID|| CVE-2017-8945
|CWE ID|| CWE-601
|Public exploit||Not available|
IceWall Federation Agent
|Vulnerable software versions||
IceWall Federation Agent 3.0
The vulnerability allows a remote attacker to redirect website visitors to external websites.
The weakness exists due to incorrect validation of redirected URL. A remote attacker can create a specially crafted link and redirect the victim on potentially dangerous website.Successful exploitation of the vulnerability may allow an attacker to perform phishing attack.
Install update from vendor's website.