Описание
A UI redress vulnerability in the administrative user interface of CA Technologies CA Strong Authentication 9.0.x, 8.2.x, 8.1.x, 8.0.x, 7.1.x and CA Risk Authentication 9.0.x, 8.2.x, 8.1.x, 8.0.x, 3.1.x may allow a remote attacker to gain sensitive information in some cases.
Ссылки
- Third Party AdvisoryVDB Entry
- Mailing ListThird Party Advisory
- Third Party AdvisoryVDB Entry
- Mailing ListThird Party Advisory
- Vendor Advisory
- Third Party AdvisoryVDB Entry
- Mailing ListThird Party Advisory
- Third Party AdvisoryVDB Entry
- Mailing ListThird Party Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия от 8.0 (включая) до 8.2.1 (включая)
Одно из
cpe:2.3:a:ca:risk_authentication:*:*:*:*:*:*:*:*
cpe:2.3:a:ca:risk_authentication:3.1:*:*:*:*:*:*:*
cpe:2.3:a:ca:risk_authentication:9.0:*:*:*:*:*:*:*
Конфигурация 2Версия от 8.0 (включая) до 8.2.1 (включая)
Одно из
cpe:2.3:a:ca:strong_authentication:*:*:*:*:*:*:*:*
cpe:2.3:a:ca:strong_authentication:7.1:*:*:*:*:*:*:*
cpe:2.3:a:ca:strong_authentication:9.0:*:*:*:*:*:*:*
EPSS
Процентиль: 80%
0.01452
Низкий
4.3 Medium
CVSS3
4 Medium
CVSS2
Дефекты
CWE-1021
CWE-1021
Связанные уязвимости
github
больше 3 лет назад
A UI redress vulnerability in the administrative user interface of CA Technologies CA Strong Authentication 9.0.x, 8.2.x, 8.1.x, 8.0.x, 7.1.x and CA Risk Authentication 9.0.x, 8.2.x, 8.1.x, 8.0.x, 3.1.x may allow a remote attacker to gain sensitive information in some cases.
EPSS
Процентиль: 80%
0.01452
Низкий
4.3 Medium
CVSS3
4 Medium
CVSS2
Дефекты
CWE-1021
CWE-1021