PT-2017-18892 · Ca · Ca Identity Governance

Published

2017-11-14

Updated

2019-10-09

CVE-2017-9394

CVSS v3.1

5.4

Medium

Vector

AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

Name of the Vulnerable Software and Affected Versions CA Identity Governance version 12.6

Description A stored cross-site scripting issue allows remote authenticated attackers to display HTML or execute script in the context of another user.

Recommendations For CA Identity Governance version 12.6, update to a version that includes a fix for this issue, as no specific workaround is provided in the available information.

Fix

XSS

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-79

Related Identifiers

CVE-2017-9394

Affected Products

Ca Identity Governance

PT-2017-18892 · Ca · Ca Identity Governance

CVE-2017-9394

Weakness Enumeration

Related Identifiers

Affected Products

References · 4