CVE-2021-42357

When using Apache Knox SSO prior to 1.6.1, a request could be crafted to redirect a user to a malicious page due to improper URL parsing. A request that included a specially crafted request parameter could be used to redirect the user to a page controlled by an attacker. This URL would need to be presented to the user outside the normal request flow through a XSS or phishing campaign.

Published: Jan 17, 2022
Updated: May 9, 2024
CVE: CVE-2021-42357
GHSA: GHSA-vv38-4xcj-q4rw
Severity: Medium
Exploit:

CVSS v3:

Severity: Medium
Score: 6.1
AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

CVSS v2:

Severity: Low
Score: 4.3
AV:N/AC:M/Au:N/C:N/I:P/A:N

CWEs:

CWE-79

OWASP TOP 10:

A7 - Cross-Site Scripting (XSS)

Affected Software
References

Software	From	Fixed in
apache / knox	-	1.6.1
org.apache.knox / gateway-service-knoxsso	-	1.6.1

http://www.openwall.com/lists/oss-security/2022/01/17/2
https://lists.apache.org/thread/b7v5dkpyqb51nw0lvz4cybhgrfhk1g7j

Vulnerability Database

CVE-2021-42357

Deep Security Visibility Without the Complexity