Moderate severityNVD Advisory· Published Dec 19, 2022· Updated Apr 17, 2025
Apache Helix: Open redirect
CVE-2022-47500
Description
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in Apache Software Foundation Apache Helix UI component.This issue affects Apache Helix all releases from 0.8.0 to 1.0.4.
Solution: removed the the forward component since it was improper designed for UI embedding.
User please upgrade to 1.1.0 to fix this issue.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
org.apache.helix:helixMaven | >= 0.8.0, < 1.1.0 | 1.1.0 |
Affected products
2Patches
Vulnerability mechanics
References
3- github.com/advisories/GHSA-mhxg-2xf7-4xwxghsaADVISORY
- lists.apache.org/thread/lr74xtxxbb1t3dfn5qzzwl2xjr3qlbmhghsavendor-advisoryWEB
- nvd.nist.gov/vuln/detail/CVE-2022-47500ghsaADVISORY
News mentions
0No linked articles in our index yet.