VYPR
Unrated severityNVD Advisory· Published Nov 18, 2019· Updated Aug 5, 2024

CVE-2018-13257

CVE-2018-13257

Description

The bb-auth-provider-cas authentication module within Blackboard Learn 2018-07-02 is susceptible to HTTP host header spoofing during Central Authentication Service (CAS) service ticket validation, enabling a phishing attack from the CAS server login page.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2

Patches

Vulnerability mechanics

News mentions

0

No linked articles in our index yet.