CVE-2010-1221
published 2010-04-07CVE-2010-1221: CA XOsoft r12.0 and r12.5 does not properly perform authentication, which allows remote attackers to enumerate usernames via a SOAP request.
PriorityP434medium5CVSS 2.0
AVNACLAuNCPINAN
EPSS
2.07%
79.0th percentile
CA XOsoft r12.0 and r12.5 does not properly perform authentication, which allows remote attackers to enumerate usernames via a SOAP request.
Affected
6 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| ca | xosoft_content_distribution | — | — |
| ca | xosoft_content_distribution | — | — |
| ca | xosoft_high_availability | — | — |
| ca | xosoft_high_availability | — | — |
| ca | xosoft_replication | — | — |
| ca | xosoft_replication | — | — |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
http://www.securityfocus.com/archive/1/510564/100/0/threadedhttp://www.securityfocus.com/bid/39244https://support.ca.com/irj/portal/anonymous/phpsupcontent?contentID=232869http://www.securityfocus.com/archive/1/510564/100/0/threadedhttp://www.securityfocus.com/bid/39244https://support.ca.com/irj/portal/anonymous/phpsupcontent?contentID=232869
2010-04-07
Published