Home > Vulnerability Database > CVE-2014-4696

WhiteSource Vulnerability Database

CVE-2014-4696

Good to know:

Date: July 2, 2014

Multiple open redirect vulnerabilities in the Suricata package before 1.0.6 for pfSense through 2.1.4 allow remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via (1) the referer parameter to suricata_rules_flowbits.php or (2) the returl parameter to suricata_select_alias.php.

Language: PHP

Severity Score

5.8

Related Resources (3)

Url: https://pfsense.org/security/advisories/pfSense-SA-14_13.packages.asc

Url: https://nvd.nist.gov/vuln/detail/CVE-2014-4696

Url: https://www.whitesourcesoftware.com/vulnerability-database/CVE-2014-4696

Severity Score

5.8

Top Fix

Upgrade Version

No fix version available

CVSS v2

Base Score:	5.8
Access Vector (AV):	NETWORK
Access Complexity (AC):	MEDIUM
Authentication (AU):	NONE
Confidentiality (C):	PARTIAL
Integrity (I):	PARTIAL
Availability (A):	NONE
Additional information:

WhiteSource Vulnerability Database

We found results for “”

CVE-2014-4696

Good to know:

Date: July 2, 2014

Language: PHP

Severity Score

Related Resources (3)

Severity Score

Top Fix

Upgrade Version

CVSS v2

Do you need more information?