CVE-2025-8737 Information

Aug 09, 2025 cve

Description

A vulnerability which was classified as problematic was found in zlt2000 microservices-platform up to 6.0.0. This affects the function onLogoutSuccess of the file src/main/java/com/central/oauth/handler/OauthLogoutSuccessHandler.java. The manipulation of the argument redirect_url leads to open redirect. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N

Reference

https://github.com/zlt2000/microservices-platform/issues/78 https://github.com/zlt2000/microservices-platform/issues/78#issue-3264847333 https://vuldb.com/?ctiid.319233 https://vuldb.com/?id.319233 https://vuldb.com/?submit.623477 A vulnerability which was classified as problematic was found in zlt2000 microservices-platform up to 6.0.0. This affects the function onLogoutSuccess of the file src/main/java/com/central/oauth/handler/OauthLogoutSuccessHandler.java. The manipulation of the argument redirect_url leads to open redirect. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.

Attack Complexity

LOW

Privileges Required

LOW

User Interaction Required

LOW

Scope

REQUIRED

Confidentiality Impact

UNCHANGED

Integrity Impact

NONE

Availability Impact

LOW

Base Score

NONE

Base Severity

3.5

CNNVD-202508-795 (Published: 2025-08-08)

Share on: