CVE-2017-18262

Blackboard Learn (Since at least 17th of October 2017) has allowed Unvalidated Redirects on any signed-in user through its endpoints for handling Shibboleth logins, as demonstrated by a webapps/bb-auth-provider-shibboleth-BBLEARN/execute/shibbolethLogin?returnUrl= URI.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
6.1 MEDIUM
NETWORK
LOW
NONE
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 50%
VendorProductVersion
blackboardblackboard_learn
𝑥
≤ 9.1
blackboardblackboard_learn
9.1:q2_2016
blackboardblackboard_learn
9.1:q2_2017
blackboardblackboard_learn
9.1:q4_2015
blackboardblackboard_learn
9.1:q4_2016
blackboardblackboard_learn
9.1:q4_2017
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://seclists.org/fulldisclosure/2018/Apr/57
http://www.securitytracker.com/id/1040767
https://ethan.pm/blackboard.txt
http://seclists.org/fulldisclosure/2018/Apr/57
http://www.securitytracker.com/id/1040767
https://ethan.pm/blackboard.txt