Lucene search

K

CaCVELIST:CVE-2020-11664

HistoryApr 15, 2020 - 7:02 p.m.

CVE-2020-11664

2020-04-1519:02:58

ca

www.cve.org

0.002 Low

EPSS

Percentile

59.5%

CA API Developer Portal 4.3.1 and earlier handles homeRedirect page redirects in an insecure manner, which allows attackers to perform open redirect attacks.

CNA Affected

[
  {
    "product": "CA API Developer Portal",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "4.3.1 and earlier"
      }
    ]
  }
]

References

packetstormsecurity.com/files/157244/CA-API-Developer-Portal-4.2.x-4.3.1-Access-Bypass-Privilege-Escalation.html

packetstormsecurity.com/files/157276/CA-API-Developer-Portal-4.2.x-4.3.1-Access-Bypass-Privilege-Escalation.html

seclists.org/fulldisclosure/2020/Apr/24

techdocs.broadcom.com/us/product-content/status/announcement-documents/2020/CA20200414-01-Securit-Notice-for-CA-API-Developer-Portal.html

0.002 Low

EPSS

Percentile

59.5%

Related for CVELIST:CVE-2020-11664

prion1 nvd1 cve1