- Description
- SolarWinds Observability Self-Hosted is susceptible to an open redirection vulnerability. The URL is not properly sanitized, and an attacker could manipulate the string to redirect a user to a malicious site. The attack complexity is high, and authentication is required.
- Source
- psirt@solarwinds.com
- NVD status
- Awaiting Analysis
CVSS 3.1
- Type
- Primary
- Base score
- 4.8
- Impact score
- 3.6
- Exploitability score
- 1.2
- Vector string
- CVSS:3.1/AV:A/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N
- Severity
- MEDIUM
- psirt@solarwinds.com
- CWE-601
- Hype score
- Not currently trending
CVE-2025-26394 Open Redirection Vulnerability in SolarWinds Observability Self-Hosted Platform https://t.co/0fW5OiQEMR
@VulmonFeeds
10 Jun 2025
14 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2025-26394 SolarWinds Observability Self-Hosted is susceptible to an open redirection vulnerability. The URL is not properly sanitized, and an attacker could manipulate the st… https://t.co/S46x9e26X7
@CVEnew
10 Jun 2025
214 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes