CyberAlerts is shutting down on June 30th, 2025. Thank you for your support!

CVE-2025-40846: HaloITSM open redirect via the returnUrl

7.1 CVSS

Description

Improper Input Validation, the returnUrl parameter in Account Security Settings lacks proper input validation, allowing attackers to redirect users to malicious websites (Open Redirect) and inject JavaScript code to perform cross site scripting attack.

The vulnerability affects Halo versions up to 2.174.101 and all versions between 2.175.1 and 2.184.21

Classification

CVE ID: CVE-2025-40846

CVSS Base Severity: HIGH

CVSS Base Score: 7.1

CVSS Vector: CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:A/VC:H/VI:L/VA:N/SC:H/SI:H/SA:H/S:P/AU:Y/R:U/RE:L/U:Red

Problem Types

CWE-20 Improper Input Validation CWE-601 URL Redirection to Untrusted Site ('Open Redirect')

Affected Products

Vendor: HaloITSM

Product: ITSM

Exploit Prediction Scoring System (EPSS)

EPSS Score: 0.09% (probability of being exploited)

EPSS Percentile: 26.22% (scored less or equal to compared to others)

EPSS Date: 2025-06-06 (when was this score calculated)

References

https://nvd.nist.gov/vuln/detail/CVE-2025-40846
https://support.haloservicedesk.com/kb?id=2501

Timeline

2025-05-08 09:40:16 UTC
CVE

HaloITSM open redirect via the returnUrl