2316353 – (CVE-2024-9266) CVE-2024-9266 express: URL redirection vulnerability

Bug 2316353 (CVE-2024-9266) - CVE-2024-9266 express: URL redirection vulnerability

Summary: CVE-2024-9266 express: URL redirection vulnerability

Keywords:
Status:	NEW
Alias:	CVE-2024-9266
Product:	Security Response
Classification:	Other
Component:	vulnerability
Sub Component:
Version:	unspecified
Hardware:	All
OS:	Linux
Priority:	medium
Severity:	medium
Target Milestone:	---
Assignee:	Product Security DevOps Team
QA Contact:
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+	depends on / blocked

Reported:	2024-10-03 19:20 UTC by OSIDB Bzimport
Modified:	2025-04-18 08:27 UTC (History)
CC List:	185 users (show)
Fixed In Version:
Clone Of:
Environment:
Last Closed:
Embargoed:

Attachments	(Terms of Use)

Description OSIDB Bzimport 2024-10-03 19:20:31 UTC

URL Redirection to Untrusted Site ('Open Redirect') vulnerability in Express. This vulnerability affects the use of the Express Response object. This issue impacts Express: from 3.4.5 before 4.0.0.

Note You need to log in before you can comment on or make changes to this bug.

aarif
aazores
adudiak
adupliak
akostadi
amasferr
amctagga
anjoseph
anli
anpicker
ansmith
aprice
asoldano
bbaranow
bdettelb
bkabrda
bmaxwell
bparees
brian.stansberry
brking
caswilli
cbartlet
cdaley
cdewolf
chazlett
cmah
cmiranda
danken
darran.lofthouse
davidn
david.sastre
dbosanac
dhanak
dholler
dkreling
dkuc
dmayorov
doconnor
dosoudil
dsimansk
dymurray
eaguilar
ebaron
ecerquei
eglynn
ehelms
erack
eric.wittmann
fdeutsch
fjansen
fjuma
ggainey
gkamathe
gmalinko
gotiwari
gparvin
gtanzill
haoli
hasun
hkataria
ibek
ibolton
istudens
ivassile
iweiss
janstey
jcammara
jcantril
jchui
jfula
jhorak
jjoyce
jkoehler
jlledo
jmatthew
jmitchel
jmontleo
jneedle
jolong
jowilson
jprabhak
jreimann
jrokos
jross
jsamir
jschluet
juwatts
jwendell
jwong
kaycoth
kingland
kshier
ktsao
kverlaen
lbainbri
lball
lgao
lhh
lsturman
lsvaty
mabashia
matzew
mburns
mdessi
mgarciac
mhulan
mjaros
mkleinhe
mkudlej
mmakovy
mnovotny
mosmerov
mpierce
mrizzi
msochure
msvehla
mulliken
mvyas
mwringe
nboldt
ngough
nipatil
njean
nmoumoul
nwallace
nyancey
omaciel
ometelka
oramraz
owatkins
pahickey
pantinor
parichar
pbraun
pcattana
pcongius
pcreech
pdelbell
pgaikwad
pgrist
phoracek
pierdipi
pjindal
pmackay
ptisnovs
rcernich
rchan
rguimara
rhaigner
rhos-maint
rhuss
rjohnson
rkubis
rstancel
rstepani
rtaniwa
saroy
sdawley
sfroberg
simaishi
skontopo
slucidi
smaestri
smallamp
smcdonal
smullick
sseago
stcannon
stirabos
syedriko
tasato
teagle
tfister
thason
thavo
tjochec
tkral
tom.jenkinson
tpopela
twalsh
veshanka
wtam
wzheng
xdharmai
yguenane