CA Cloud Service Management (CSM) before Summer 2014 does not properly verify authentication tokens from an Identity Provider, which allows user-assisted remote attackers to bypass intended access restrictions via unspecified vectors.
References
Configurations
History
No history.
Information
Published : 2014-11-04 20:55
Updated : 2024-02-28 12:20
NVD link : CVE-2014-8472
Mitre link : CVE-2014-8472
CVE.ORG link : CVE-2014-8472
JSON object : View
Products Affected
ca
- cloud_service_management
CWE
CWE-287
Improper Authentication