PT-2024-27013 · Ca Technologies · Siteminder Web Agent For Domino Web Server+1
Published
2024-06-14
·
Updated
2024-07-03
·
CVE-2024-36459
CVSS v4.0
8.4
High
| Vector | AV:N/AC:L/AT:N/PR:N/UI:A/VC:L/VI:H/VA:L/SC:L/SI:H/SA:L |
Name of the Vulnerable Software and Affected Versions
SiteMinder Web Agent for IIS Web Server (affected versions not specified)
SiteMinder Web Agent for Domino Web Server (affected versions not specified)
Description
A CRLF cross-site scripting issue has been identified in certain configurations of the affected software. This allows an attacker to execute arbitrary Javascript code in a client browser.
Recommendations
For SiteMinder Web Agent for IIS Web Server, at the moment, there is no information about a newer version that contains a fix for this vulnerability.
For SiteMinder Web Agent for Domino Web Server, at the moment, there is no information about a newer version that contains a fix for this vulnerability.
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Siteminder Web Agent For Domino Web Server
Siteminder Web Agent For Iis Web Server