Lucene search

[email protected]NVD:CVE-2011-1825

HistoryMay 05, 2011 - 1:22 p.m.

CVE-2011-1825

2011-05-0513:22:16

CWE-79

[email protected]

web.nvd.nist.gov

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

AI Score

5.8

Confidence

High

EPSS

0.003

Percentile

71.6%

JSON

Multiple cross-site scripting (XSS) vulnerabilities in the Administrative Console in CA Arcot WebFort Versatile Authentication Server (VAS) before 6.2.5 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Affected configurations

Nvd

Node

caarcot_webfort_versatile_authentication_serverRange≤6.2.4

VendorProductVersionCPE
caarcot_webfort_versatile_authentication_server*cpe:2.3:a:ca:arcot_webfort_versatile_authentication_server:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
ca	arcot_webfort_versatile_authentication_server	*	cpe:2.3:a:ca:arcot_webfort_versatile_authentication_server::::::::

References

osvdb.org/72124

secunia.com/advisories/44317

www.securityfocus.com/archive/1/517702/100/0/threaded

www.securityfocus.com/bid/47587

www.securitytracker.com/id?1025444

www.vupen.com/english/advisories/2011/1114

exchange.xforce.ibmcloud.com/vulnerabilities/67104

support.ca.com/irj/portal/anonymous/phpsupcontent?contentID=%7BA71F5839-D214-4719-B918-4476E4537998%7D

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

AI Score

5.8

Confidence

High

EPSS

0.003

Percentile

71.6%

JSON

Related for NVD:CVE-2011-1825

prion1 cve1 cvelist1 securityvulns2