Primary

Context

IceWarp Mail Server Open Redirection Vulnerability

Vulnerability

An open redirection vulnerability exists in IceWarp Mail Server version 11.4.0. This vulnerability allows attackers to redirect users to any domain by sending a malicious URL. The issue has been tested and confirmed in Firefox.

Impact

Exploitation of this vulnerability could lead to open redirection, allowing attackers to manipulate users into visiting malicious sites under the guise of a trusted domain.

Remediation

Users can upgrade to IceWarp Mail Server version 13.0.2 to address this vulnerability.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

1.0

exploitability

6.4

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

1.0

exploitability

6.4

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

IceWarp Mail Server Open Redirection Vulnerability

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating