CVE-2012-3540: CVE-2012-3540

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2012-3540

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

Open redirect vulnerability in views/auth_forms.py in OpenStack Dashboard (Horizon) Essex (2012.1) allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the next parameter to auth/login/. NOTE: this issue was originally assigned CVE-2012-3542 by mistake.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

OpenStack 输入验证错误漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

OpenStack是美国美国国家航空航天局（NASA）的一个云平台管理项目。 OpenStack Dashboard (Horizon)提供了基本的用户接口管理OpenStack服务。OpenStack Dashboard Horizon中存在输入验证错误漏洞。攻击者利用该漏洞通过构造一个特制的URL并诱使用户跟随。当不知情受害者跟随链接，他们可被重定向到攻击者控制的网站，有助于钓鱼攻击。也可能存在其他攻击。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2012-3540

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2012-3540

Please Login to view more intelligence information

https://bugs.launchpad.net/horizon/+bug/1039077x_refsource_CONFIRM
https://github.com/openstack/horizon/commit/35eada8a27323c0f83c400177797927aba6bc99bx_refsource_CONFIRM
http://www.securityfocus.com/bid/55329vdb-entryx_refsource_BID
http://secunia.com/advisories/50480third-party-advisoryx_refsource_SECUNIA
http://www.ubuntu.com/usn/USN-1565-1vendor-advisoryx_refsource_UBUNTU
https://exchange.xforce.ibmcloud.com/vulnerabilities/78196vdb-entryx_refsource_XF
https://lists.launchpad.net/openstack/msg16278.htmlmailing-listx_refsource_MLIST
http://www.openwall.com/lists/oss-security/2012/08/30/4mailing-listx_refsource_MLIST
🔗 https://lists.launchpad.net/openstack/msg16281.htmlmailing-listx_refsource_MLIST
🔗 http://www.openwall.com/lists/oss-security/2012/08/30/5mailing-listx_refsource_MLIST
https://nvd.nist.gov/vuln/detail/CVE-2012-3540

New Vulnerabilities

Product: n/a

Vendor: n/a

V. Comments for CVE-2012-3540

No comments yet

Support Us — Your donation helps us keep running

I. Basic Information for CVE-2012-3540

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2012-3540

III. Intelligence Information for CVE-2012-3540

New Vulnerabilities

V. Comments for CVE-2012-3540

Leave a comment