QwikSec

Security Database

CVE

CWE

Training

CVE-2019-7393

Published: May 28, 2019

Modified: Sep 16, 2024

PUBLISHED

Description

A UI redress vulnerability in the administrative user interface of CA Technologies CA Strong Authentication 9.0.x, 8.2.x, 8.1.x, 8.0.x, 7.1.x and CA Risk Authentication 9.0.x, 8.2.x, 8.1.x, 8.0.x, 3.1.x may allow a remote attacker to gain sensitive information in some cases.

Vendor	Product	Versions
CA Technologies, A Broadcom Company	CA Strong Authentication	affected `9.0.x` affected `8.2.x` affected `8.1.x` affected `8.0.x` affected `7.1.x`
CA Technologies, A Broadcom Company	CA Risk Authentication	affected `9.0.x` affected `8.2.x` affected `8.1.x` affected `8.0.x` affected `3.1.x`

Weaknesses (CWE)

References

20190527 CA20190523-01: Security Notice for CA Risk Authentication and CA Strong Authentication

mailing-list

x_refsource_BUGTRAQ

http://packetstormsecurity.com/files/153089/CA-Risk-Strong-Authentication-Privilege-Escalation.html

x_refsource_MISC

vdb-entry

x_refsource_BID

https://support.ca.com/us/product-content/recommended-reading/security-notices/CA20190523-01--security-notice-for-ca-risk-authentication-and-ca-strong-authentication.html

x_refsource_CONFIRM

20190529 CA20190523-01: Security Notice for CA Risk Authentication and CA Strong Authentication

mailing-list

x_refsource_FULLDISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.