Ca Siteminder vulnerabilities
2 known vulnerabilities affecting ca/siteminder.
Total CVEs
2
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
MEDIUM2
Vulnerabilities
Page 1 of 1
CVE-2011-4054MEDIUMCVSS 4.3≤ 6≤ 122011-12-08
CVE-2011-4054 [MEDIUM] CWE-79 CVE-2011-4054: Cross-site scripting (XSS) vulnerability in login.fcc in CA SiteMinder R6 SP6 before CR7 and R12 SP3
Cross-site scripting (XSS) vulnerability in login.fcc in CA SiteMinder R6 SP6 before CR7 and R12 SP3 before CR8 allows remote attackers to inject arbitrary web script or HTML via the postpreservationdata parameter.
nvd
CVE-2011-1718MEDIUMCVSS 4.3v62011-04-27
CVE-2011-1718 [MEDIUM] CWE-20 CVE-2011-1718: The Web Agents component in CA SiteMinder R6 before SP6 CR2 and R12 before SP3 CR2 does not properly
The Web Agents component in CA SiteMinder R6 before SP6 CR2 and R12 before SP3 CR2 does not properly handle multi-line headers, which allows remote authenticated users to conduct impersonation attacks and gain privileges via crafted data.
nvd