Syndesis Misconfiguration Allows for Cross-Origin Resource Sharing (CORS) Vulnerability

Syndesis Misconfiguration Allows for Cross-Origin Resource Sharing (CORS) Vulnerability

CVE-2019-14860 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

It was found that the Syndesis configuration for Cross-Origin Resource Sharing was set to allow all origins. An attacker could use this lack of protection to conduct phishing attacks and further access unauthorized information.

Learn more about our Phishing Simulation.