cve/2021/CVE-2021-22098.md

CVE-2021-22098

Description

UAA server versions prior to 75.4.0 are vulnerable to an open redirect vulnerability. A malicious user can exploit the open redirect vulnerability by social engineering leading to take over of victims’ accounts in certain cases along with redirection of UAA users to a malicious sites.

POC

Reference

No PoCs from references.

Github

• https://github.com/n0-traces/cve_monitor