Medium severity5.4NVD Advisory· Published Sep 30, 2024· Updated Jun 17, 2026
CVE-2024-47530
CVE-2024-47530
Description
Scout is a web-based visualizer for VCF-files. Open redirect vulnerability allows performing phishing attacks on users by redirecting them to malicious page. /login API endpoint is vulnerable to open redirect attack via next parameter due to absence of sanitization logic. Additionally, due to lack of scheme validation, HTTPS Downgrade Attack can be performed on the users. This vulnerability is fixed in 4.89.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: < 4.89
Patches
Vulnerability mechanics
References
2News mentions
0No linked articles in our index yet.