Broadcom Siteminder vulnerabilities
3 known vulnerabilities affecting broadcom/siteminder.
Total CVEs
3
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
MEDIUM3
Vulnerabilities
Page 1 of 1
CVE-2026-3862MEDIUMCVSS 4.6v12.9v12.8.x2026-03-10
CVE-2026-3862 [MEDIUM] CWE-79 CVE-2026-3862: Cross-site Scripting (XSS) allows an attacker to submit specially crafted data to the application wh
Cross-site Scripting (XSS) allows an attacker to submit specially crafted data to the application which is returned unaltered in the resulting web page.
cvelistv5nvd
CVE-2013-5968MEDIUMCVSS 4.3v12.0v12.5+1 more2013-10-29
CVE-2013-5968 [MEDIUM] CWE-79 CVE-2013-5968: Cross-site scripting (XSS) vulnerability in CA SiteMinder 12.0 through 12.51, and SiteMinder 6 Web A
Cross-site scripting (XSS) vulnerability in CA SiteMinder 12.0 through 12.51, and SiteMinder 6 Web Agents, allows remote attackers to inject arbitrary web script or HTML via vectors involving a " (double quote) character.
nvd
CVE-2011-1718MEDIUMCVSS 4.3v12.02011-04-27
CVE-2011-1718 [MEDIUM] CWE-20 CVE-2011-1718: The Web Agents component in CA SiteMinder R6 before SP6 CR2 and R12 before SP3 CR2 does not properly
The Web Agents component in CA SiteMinder R6 before SP6 CR2 and R12 before SP3 CR2 does not properly handle multi-line headers, which allows remote authenticated users to conduct impersonation attacks and gain privileges via crafted data.
nvd