CVE-2021-38123 | ByteOS Network

NVD Vulnerability Details :

CVE-2021-38123

Modified

More Info Official Page

Source-security@opentext.com

Published At-07 Sep, 2021 | 17:15

Updated At-07 Nov, 2023 | 03:37

Open Redirect vulnerability in Micro Focus Network Automation, affecting Network Automation versions 10.4x, 10.5x, 2018.05, 2018.11, 2019.05, 2020.02, 2020.08, 2020.11, 2021.05. The vulnerability could allow redirect users to malicious websites after authentication.

Metrics

Type	Version	Base score	Base severity	Vector
Primary	3.1	6.1	MEDIUM	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
Primary	2.0	5.8	MEDIUM	AV:N/AC:M/Au:N/C:P/I:P/A:N

CPE Matches

Micro Focus International Limited

>>network_automation>>10.40

cpe:2.3:a:microfocus:network_automation:10.40:*:*:*:*:*:*:*

Micro Focus International Limited

>>network_automation>>10.50

cpe:2.3:a:microfocus:network_automation:10.50:*:*:*:*:*:*:*

Micro Focus International Limited

>>network_automation>>2018.05

cpe:2.3:a:microfocus:network_automation:2018.05:*:*:*:*:*:*:*

Micro Focus International Limited

>>network_automation>>2018.11

cpe:2.3:a:microfocus:network_automation:2018.11:*:*:*:*:*:*:*

Micro Focus International Limited

>>network_automation>>2019.05

cpe:2.3:a:microfocus:network_automation:2019.05:*:*:*:*:*:*:*

Micro Focus International Limited

>>network_automation>>2020.02

cpe:2.3:a:microfocus:network_automation:2020.02:*:*:*:*:*:*:*

Micro Focus International Limited

>>network_automation>>2020.08

cpe:2.3:a:microfocus:network_automation:2020.08:*:*:*:*:*:*:*

Micro Focus International Limited

>>network_automation>>2020.11

cpe:2.3:a:microfocus:network_automation:2020.11:*:*:*:*:*:*:*

Micro Focus International Limited

>>network_automation>>2021.05

cpe:2.3:a:microfocus:network_automation:2021.05:*:*:*:*:*:*:*

Weaknesses

CWE ID	Type	Source
CWE-601	Primary	nvd@nist.gov

References

Hyperlink	Source	Resource
https://portal.microfocus.com/s/article/KM000001673	security@opentext.com	N/A