CVE-2022-46288

Summary

Open redirect vulnerability in DENSHI NYUSATSU CORE SYSTEM v6 R4 and earlier allows a remote unauthenticated attacker to redirect a user to an arbitrary web site and conduct a phishing attack by having a user to access a specially crafted URL.

Affected Software

VendorProductVersion RangeStatus
Japan Construction Information CenterDENSHI NYUSATSU CORE SYSTEMv6 R4 and earlieraffected

Weaknesses

  • Open Redirect

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References