Open Redirect Vulnerability in Halvotec RaQuest 10.23.10801.0

Open Redirect Vulnerability in Halvotec RaQuest 10.23.10801.0

CVE-2019-19613 · MEDIUM Severity

CVSS:3.1/AV:A/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

An issue was discovered in Halvotec RaQuest 10.23.10801.0. The login page of the admin application is vulnerable to an Open Redirect attack allowing an attacker to redirect a user to a malicious site after authentication. The attacker needs to be on the same network to modify the victim's request on the wire. Fixed in Release 24.2020.20608.0

Learn more about our Network Penetration Testing.