[com.yahoo.athenz:athenz] Athenz vulnerable to Open Redirect

Open redirect vulnerability in Athenz v1.8.24 and earlier allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a specially crafted page.

References

• https://nvd.nist.gov/vuln/detail/CVE-2019-6035
• https://github.com/yahoo/athenz/pull/700
• http://jvn.jp/en/jp/JVN57070811/index.html
• https://github.com/AthenZ/athenz/commit/c4dc89b31fda501af45c20b33db620a077079744
• https://github.com/advisories/GHSA-9hg5-7hwc-v434