CVE-2024-57241

Medium

Published: 11 February 2025

Published

11 February 2025

Modified

01 April 2025

KEV Added

—

Patch

—

CVSS Score 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N

EPSS Score 0.2408 96.1th percentile

Risk Priority 27 60% EPSS · 20% KEV · 20% CVSS

Description

Adversaries may send spearphishing emails with a malicious link in an attempt to gain access to victim systems.

Security Summary

CVE-2024-57241 is an open redirect vulnerability (CWE-601) affecting Dedecms versions 5.71sp1 and earlier. The flaw arises from a logic error in the web application that fails to validate input from GET requests, enabling arbitrary URL redirection.

Unauthenticated remote attackers can exploit this vulnerability over the network with low attack complexity and no user interaction required. Per the CVSS 3.1 score of 6.5 (AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N), exploitation leads to low impacts on confidentiality and integrity, with no availability disruption, typically allowing attackers to redirect users to malicious sites for phishing or similar follow-on attacks.

A reference implementation or proof-of-concept for the vulnerability is available at https://github.com/woshidaheike/dedecms-url-redirection.

Details

CWE(s): CWE-601

Affected Products

dedecms

all versions

MITRE ATT&CK Enterprise Techniques

T1566.002 Spearphishing Link Initial Access

Adversaries may send spearphishing emails with a malicious link in an attempt to gain access to victim systems.

attack.mitre.org →

Why these techniques?

Open URL redirection vulnerability enables attackers to craft deceptive links on the vulnerable Dedecms site that redirect users to arbitrary malicious domains, facilitating spearphishing link attacks (T1566.002).

References

https://github.com/woshidaheike/dedecms-url-redirection
Third Party Advisory · cve@mitre.org