Lucene search

[email protected]CVE-2011-1826

HistoryMay 05, 2011 - 1:22 p.m.

CVE-2011-1826

2011-05-0513:22:00

CWE-20

[email protected]

web.nvd.nist.gov

cve-2011-1826

open redirect

ca arcot webfort

vas

phishing attacks

administrative console

vulnerability

nvd

6.9 Medium

AI Score

Confidence

Low

5.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:P/A:N

0.004 Low

EPSS

Percentile

73.5%

JSON

Open redirect vulnerability in the Administrative Console in CA Arcot WebFort Versatile Authentication Server (VAS) before 6.2.5 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors.

CPENameOperatorVersion
ca:arcot_webfort_versatile_authentication_serverca arcot webfort versatile authentication serverle6.2.4

CPE	Name	Operator	Version
ca:arcot_webfort_versatile_authentication_server	ca arcot webfort versatile authentication server	le	6.2.4

References

osvdb.org/72125

secunia.com/advisories/44317

www.securityfocus.com/archive/1/517702/100/0/threaded

www.securityfocus.com/bid/47588

www.securitytracker.com/id?1025444

www.vupen.com/english/advisories/2011/1114

exchange.xforce.ibmcloud.com/vulnerabilities/67105

support.ca.com/irj/portal/anonymous/phpsupcontent?contentID=%7BA71F5839-D214-4719-B918-4476E4537998%7D

6.9 Medium

AI Score

Confidence

Low

5.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:P/A:N

0.004 Low

EPSS

Percentile

73.5%

JSON

Related for CVE-2011-1826

prion1 cvelist1 securityvulns2