CWE-601: Open Redirect — known CVE vulnerabilities
CVEs classified under CWE-601 (Open Redirect), ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (50)
CVE-2018-3774 — CVSS 10.0 (critical): Incorrect parsing in url-parse <1.4.3 returns wrong hostname which leads to multiple vulnerabilities such as SSRF, Open Redirect, Bypass…
CVE-2019-25282 — CVSS 9.8 (critical): V-SOL GPON/EPON OLT Platform v2.03 contains an open redirect vulnerability in the script that allows attackers to manipulate the 'parent'…
CVE-2020-36912 — CVSS 9.8 (critical): Plexus anblick Digital Signage Management 3.1.13 contains an open redirect vulnerability in the 'PantallaLogin' script that allows…
CVE-2025-43526 — CVSS 9.8 (critical): This issue was addressed with improved URL validation. This issue is fixed in Safari 26.2, macOS Tahoe 26.2. On a Mac with Lockdown Mode…
CVE-2025-55031 — CVSS 9.8 (critical): Malicious pages could use Firefox for iOS to pass FIDO: links to the OS and trigger the hybrid passkey transport. An attacker within…
CVE-2024-22891 — CVSS 9.8 (critical): Nteract v.0.28.0 was discovered to contain a remote code execution (RCE) vulnerability via the Markdown link.
CVE-2022-31657 — CVSS 9.8 (critical): VMware Workspace ONE Access and Identity Manager contain a URL injection vulnerability. A malicious actor with network access may be able…
CVE-2026-6795 — CVSS 9.6 (critical): URL redirection to untrusted site ('open redirect') vulnerability in DivvyDrive Information Technologies Inc. DivvyDrive allows Parameter…
CVE-2026-34931 — CVSS 9.6 (critical): hoppscotch is an open source API development ecosystem. Prior to version 2026.3.0, there is an open redirect vulnerability that leads to…
CVE-2022-40083 — CVSS 9.6 (critical): Labstack Echo v4.8.0 was discovered to contain an open redirect vulnerability via the Static Handler component. This vulnerability can be…
CVE-2022-28755 — CVSS 9.6 (critical): The Zoom Client for Meetings (for Android, iOS, Linux, macOS, and Windows) before version 5.11.0 are susceptible to a URL parsing…
CVE-2026-41106 — CVSS 9.3 (critical): Url redirection to untrusted site ('open redirect') in M365 Copilot allows an unauthorized attacker to elevate privileges over a network.
CVE-2026-33102 — CVSS 9.3 (critical): Url redirection to untrusted site ('open redirect') in M365 Copilot allows an unauthorized attacker to elevate privileges over a network.
CVE-2022-41559 — CVSS 9.3 (critical): The Web Client component of TIBCO Software Inc.'s TIBCO Nimbus contains an easily exploitable vulnerability that allows an unauthenticated…
CVE-2019-6741 — CVSS 9.3 (critical): This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Samsung Galaxy S9 prior to January 2019…
CVE-2025-54145 — CVSS 9.1 (critical): The QR scanner could allow arbitrary websites to be opened if a user was tricked into scanning a malicious link that leveraged Firefox's…
CVE-2022-36029 — CVSS 9.1 (critical): Greenlight is an end-user interface for BigBlueButton servers. Versions prior to 2.13.0 have an open redirect vulnerability in the Login…
CVE-2022-36028 — CVSS 9.1 (critical): Greenlight is an end-user interface for BigBlueButton servers. Versions prior to 2.13.0 have an open redirect vulnerability in the Login…
CVE-2017-8989 — CVSS 9.1 (critical): A security vulnerability in HPE IceWall SSO Dfw 10.0 and 11.0 on RHEL, HP-UX, and Windows could be exploited remotely to allow URL…
CVE-2026-0573 — CVSS 9.0 (critical): An URL redirection vulnerability was identified in GitHub Enterprise Server that allowed attacker-controlled redirects to leak sensitive…
CVE-2025-50067 — CVSS 9.0 (critical): Vulnerability in Oracle Application Express (component: Strategic Planner Starter App). Supported versions that are affected are 24.2.4 and…
CVE-2026-47645 — CVSS 8.8 (high): Url redirection to untrusted site ('open redirect') in Microsoft 365 Copilot's Business Chat allows an unauthorized attacker to elevate…
CVE-2026-35259 — CVSS 8.8 (high): Vulnerability in the WebLogic Server product of Oracle Fusion Middleware (component: Console). Supported versions that are affected are…
CVE-2026-23818 — CVSS 8.8 (high): A vulnerability has been identified in the graphical user interface (GUI) of HPE Aruba Networking Private 5G Core On-Prem that could allow…
CVE-2025-62428: Drawing-Captcha APP provides interactive, engaging verification for Web-Based Applications. The vulnerability is a Host Header Injection in…
CVE-2025-24381 — CVSS 8.8 (high): Dell Unity, version(s) 5.4 and prior, contain(s) an URL Redirection to Untrusted Site ('Open Redirect') vulnerability. An unauthenticated…
CVE-2024-45981 — CVSS 8.8 (high): A host header injection vulnerability in BookReviewLibrary 1.0 allows attackers to obtain the password reset token via user interaction…
CVE-2024-45979 — CVSS 8.8 (high): A host header injection vulnerability in Lines Police CAD 1.0 allows attackers to obtain the password reset token via user interaction with…
CVE-2024-26504 — CVSS 8.8 (high): An issue in Wifire Hotspot v.4.5.3 allows a local attacker to execute arbitrary code via a crafted payload to the dst parameter.
CVE-2023-20886 — CVSS 8.8 (high): VMware Workspace ONE UEM console contains an open redirect vulnerability. A malicious actor may be able to redirect a victim to an attacker…
CVE-2022-28763 — CVSS 8.8 (high): The Zoom Client for Meetings (for Android, iOS, Linux, macOS, and Windows) before version 5.12.2 is susceptible to a URL parsing…
CVE-2022-41204 — CVSS 8.8 (high): An attacker can change the content of an SAP Commerce - versions 1905, 2005, 2105, 2011, 2205, login page through a manipulated URL. They…
CVE-2021-22964 — CVSS 8.8 (high): A redirect vulnerability in the `fastify-static` module version >= 4.2.4 and < 4.4.1 allows remote attackers to redirect Mozilla Firefox…
CVE-2019-10751 — CVSS 8.8 (high): All versions of the HTTPie package prior to version 1.0.3 are vulnerable to Open Redirect that allows an attacker to write an arbitrary…
CVE-2016-9078 — CVSS 8.8 (high): Redirection from an HTTP connection to a "data:" URL assigns the referring site's origin to the "data:" URL in some circumstances. This can…
CVE-2017-11879 — CVSS 8.8 (high): ASP.NET Core 2.0 allows an attacker to steal log-in session information such as cookies or authentication tokens via a specially crafted…
CVE-2017-1000117 — CVSS 8.8 (high): A malicious third-party can give a crafted "ssh://..." URL to an unsuspecting victim, and an attempt to visit the URL can result in any…
CVE-2017-1156 — CVSS 8.8 (high): IBM WebSphere Portal 8.5 and 9.0 could allow a remote attacker to conduct phishing attacks, using an open redirect attack. By persuading a…
CVE-2026-35258 — CVSS 8.7 (high): Vulnerability in the WebLogic Server product of Oracle Fusion Middleware (component: Console). Supported versions that are affected are…
CVE-2024-11274 — CVSS 8.7 (high): An issue was discovered in GitLab CE/EE affecting all versions starting from 16.1 prior to 17.4.6, starting from 17.5 prior to 17.5.4, and…
CVE-2023-49104 — CVSS 8.7 (high): An issue was discovered in ownCloud owncloud/oauth2 before 0.6.1, when Allow Subdomains is enabled. An attacker is able to pass in a…
CVE-2019-3788 — CVSS 8.7 (high): Cloud Foundry UAA Release, versions prior to 71.0, allows clients to be configured with an insecure redirect uri. Given a UAA client was…
CVE-2024-8527: Open Redirect in URL parameter in Automated Logic WebCTRL and Carrier i-Vu versions 6.0, 6.5, 7.0, 8.0, 8.5, 9.0 may allow attackers to…
CVE-2025-31491 — CVSS 8.6 (high): AutoGPT is a platform that allows users to create, deploy, and manage continuous artificial intelligence agents that automate complex…
CVE-2026-35302 — CVSS 8.3 (high): Vulnerability in the WebLogic Server product of Oracle Fusion Middleware (component: Console). Supported versions that are affected are…
CVE-2018-1251 — CVSS 8.3 (high): Dell EMC Unity and UnityVSA versions prior to 4.3.1.1525703027 contains a URL Redirection vulnerability. A remote unauthenticated attacker…
CVE-2026-46806 — CVSS 8.2 (high): Vulnerability in the Oracle WebCenter Content product of Oracle Fusion Middleware (component: Content Server). The supported version that…
CVE-2023-5629 — CVSS 8.2 (high): A CWE-601:URL Redirection to Untrusted Site (‘Open Redirect’) vulnerability exists that could cause disclosure of information through…