RStudio Connect prior to 2023.01.0 is affected by an Open Redirect issue. The vulnerability could allow an attacker to redirect users to malicious websites.
References
| Link | Resource |
|---|---|
| https://support.posit.co/hc/en-us/articles/10983374992023 | Exploit Third Party Advisory |
| https://tenable.com/security/research/tra-2022-30 | Exploit Third Party Advisory |
Configurations
History
14 Jun 2023, 23:15
| Type | Values Removed | Values Added |
|---|---|---|
| Summary | RStudio Connect prior to 2023.01.0 is affected by an Open Redirect issue. The vulnerability could allow an attacker to redirect users to malicious websites. |
11 Feb 2023, 17:45
| Type | Values Removed | Values Added |
|---|---|---|
| References | (MISC) https://support.posit.co/hc/en-us/articles/10983374992023 - Exploit, Third Party Advisory |
20 Dec 2022, 14:15
| Type | Values Removed | Values Added |
|---|---|---|
| References |
|
09 Sep 2022, 02:33
| Type | Values Removed | Values Added |
|---|---|---|
| CVSS |
v2 : v3 : |
v2 : unknown
v3 : 6.1 |
| CPE | cpe:2.3:a:rstudio:connect:*:*:*:*:*:*:*:* | |
| First Time |
Rstudio connect
Rstudio |
|
| References | (MISC) https://tenable.com/security/research/tra-2022-30 - Exploit, Third Party Advisory | |
| CWE | CWE-601 |
06 Sep 2022, 18:50
| Type | Values Removed | Values Added |
|---|---|---|
| New CVE |
Information
Published : 2022-09-06 18:15
Updated : 2023-12-10 14:35
NVD link : CVE-2022-38131
Mitre link : CVE-2022-38131
CVE.ORG link : CVE-2022-38131
JSON object : View
Products Affected
rstudio
- connect
CWE
CWE-601
URL Redirection to Untrusted Site ('Open Redirect')