CVE-2012-6299

Unspecified vulnerability in CA IdentityMinder r12.0 through CR16, r12.5 before SP15, and r12.6 GA allows remote attackers to bypass intended access restrictions via unknown vectors.

CVSS v2.0 10.0 HIGH

10.0^/10

CVSS v2.0 : HIGH

V2 Legend

Vector : AV:N/AC:L/Au:N/C:C/I:C/A:C

Exploitability : 10.0 / Impact : 10.0

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

References

Link	Resource
https://support.ca.com/irj/portal/anonymous/phpsupcontent?contentID=%7BFBA53B61-3A68-4506-9876-F845F6DD8A93%7D

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:ca:identityminder::cr16::::::*
	cpe:2.3:a:ca:identityminder:r12.5:sp1::::::
	cpe:2.3:a:ca:identityminder:r12.5:sp14::::::
	cpe:2.3:a:ca:identityminder:r12.6:ga::::::

History

No history.

Information

Published : 2012-12-26 20:55

Updated : 2023-11-07 02:13

NVD link : CVE-2012-6299

Mitre link : CVE-2012-6299

CVE.ORG link : CVE-2012-6299

JSON object : View

Products Affected

identityminder

CWE

NVD-CWE-noinfo

{"id": "CVE-2012-6299", "cveTags": [], "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 10.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C", "authentication": "NONE", "integrityImpact": "COMPLETE", "accessComplexity": "LOW", "availabilityImpact": "COMPLETE", "confidentialityImpact": "COMPLETE"}, "acInsufInfo": true, "impactScore": 10.0, "baseSeverity": "HIGH", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2012-12-26T20:55:02.177", "references": [{"url": "https://support.ca.com/irj/portal/anonymous/phpsupcontent?contentID=%7BFBA53B61-3A68-4506-9876-F845F6DD8A93%7D", "source": "cve@mitre.org"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-noinfo"}]}], "descriptions": [{"lang": "en", "value": "Unspecified vulnerability in CA IdentityMinder r12.0 through CR16, r12.5 before SP15, and r12.6 GA allows remote attackers to bypass intended access restrictions via unknown vectors."}, {"lang": "es", "value": "Una vulnerabilidad no especificada en CA IdentityMinder r12.0 hasta CR16, r12.5 antes de SP15 y r12.6 GA permite a atacantes remotos evitar las restricciones de acceso a trav\u00e9s de vectores desconocidos."}], "lastModified": "2023-11-07T02:13:15.860", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:ca:identityminder:*:cr16:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1D2F6251-EF64-4C38-99E6-6AFDEA7C5EF7", "versionEndIncluding": "r12.0"}, {"criteria": "cpe:2.3:a:ca:identityminder:r12.5:sp1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "016C6C99-22EC-459E-99C0-02D0EA498EF9"}, {"criteria": "cpe:2.3:a:ca:identityminder:r12.5:sp14:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F97E5101-2414-45AB-A6D8-4DC1440D8D37"}, {"criteria": "cpe:2.3:a:ca:identityminder:r12.6:ga:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "71E5DDA1-F03C-44C5-B209-A3688A3B734F"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}

10.0 /10