CVE-2022-29718

Published

Last updated

NVD

https://nvd.nist.gov/vuln/detail/CVE-2022-29718

Severity

Unknown

Description

Caddy v2.4 was discovered to contain an open redirect vulnerability. A remote unauthenticated attacker may exploit this vulnerability to redirect users to arbitrary web URLs by tricking the victim users to click on crafted links.

References

https://images.chainguard.dev/security/CGA-x6wv-g666-wr84
https://github.com/advisories/GHSA-2927-hv3p-f3vp
https://images.chainguard.dev/security/CGA-294f-53cv-6w84
https://images.chainguard.dev/security/CGA-6rfc-rxpv-qr6r
https://github.com/caddyserver/caddy/pull/4499
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CP2VIUT5IKA3OKM6YWA5LTLJ2GTEIH7C/

Affected packages

Advisories are based on vulnerability information provided by Grype from Anchore. Learn how Chainguard creates security advisories.

Safe Source for Open Source™

Media Kit Contact Us

Private Policy

CVE-2022-29718

Severity

Description

References

Affected packages

Products

Why Chainguard

Customers

Company

Resources