VYPR

rpm package

suse/apache2-mod_auth_mellon&distro=SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS

pkg:rpm/suse/apache2-mod_auth_mellon&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP2-ESPOS

Vulnerabilities (1)

  • CVE-2021-3639MedAug 22, 2022
    affected < 0.17.0-150200.5.7.1fixed 0.17.0-150200.5.7.1

    A flaw was found in mod_auth_mellon where it does not sanitize logout URLs properly. This issue could be used by an attacker to facilitate phishing attacks by tricking users into visiting a trusted web application URL that redirects to an external and potentially malicious server