CVE-2019-5915

1. Home
2. Security
3. Security Advisories
4. CVE-2019-5915

Description

OpenAM (Open Source Edition) contains an open redirect vulnerability.

Impact

When accessing a specially crafted page, the user may be redirected to an arbitrary website. As a result, the user may become a victim of a phishing attack.

Solution

Patch for this vulnerability has been released by OpenAM Consortium. Apply the patch according to the information provided by OpenAM Consortium.

Reference

• https://github.com/openam-jp/openam/issues/34
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5915
• http://jvn.jp/en/jp/JVN43193964/