VYPR
Moderate severityNVD Advisory· Published Nov 2, 2015· Updated Jun 17, 2026

CVE-2015-5210

CVE-2015-5210

Description

Open redirect vulnerability in Apache Ambari before 2.1.2 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the targetURI parameter.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
org.apache.ambari:ambariMaven
>= 1.7.0, < 2.1.22.1.2

Affected products

7
  • Apache/Ambari6 versions
    cpe:2.3:a:apache:ambari:*:*:*:*:*:*:*:*+ 5 more
    • cpe:2.3:a:apache:ambari:*:*:*:*:*:*:*:*range: <=2.1.1
    • cpe:2.3:a:apache:ambari:1.7.0:*:*:*:*:*:*:*
    • cpe:2.3:a:apache:ambari:2.0.0:*:*:*:*:*:*:*
    • cpe:2.3:a:apache:ambari:2.0.1:*:*:*:*:*:*:*
    • cpe:2.3:a:apache:ambari:2.0.2:*:*:*:*:*:*:*
    • cpe:2.3:a:apache:ambari:2.1.0:*:*:*:*:*:*:*
  • ghsa-coords
    Range: >= 1.7.0, < 2.1.2

Patches

Vulnerability mechanics

References

5

News mentions

0

No linked articles in our index yet.