Lucene search

MitreCVE-2014-8471

HistoryNov 04, 2014 - 8:55 p.m.

CVE-2014-8471

2014-11-0420:55:04

mitre

web.nvd.nist.gov

cve-2014-8471

ca cloud service management

csm

replay attacks

remote attackers

nvd

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

AI Score

6.9

Confidence

Low

EPSS

0.003

Percentile

68.5%

JSON

CA Cloud Service Management (CSM) before Summer 2014 allows remote attackers to conduct replay attacks via unspecified vectors.

Affected configurations

Nvd

Node

cacloud_service_managementRange≤2014spring

VendorProductVersionCPE
cacloud_service_management*cpe:2.3:a:ca:cloud_service_management:*:spring:*:*:*:*:*:*

Vendor	Product	Version	CPE
ca	cloud_service_management	*	cpe:2.3:a:ca:cloud_service_management::spring::::::*

References

www.ca.com/us/support/ca-support-online/product-content/recommended-reading/security-notices/ca20141103-01-security-notice-for-ca-cloud-service-management.aspx

www.securityfocus.com/bid/70919

www.securitytracker.com/id/1031214

exchange.xforce.ibmcloud.com/vulnerabilities/98534

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

AI Score

6.9

Confidence

Low

EPSS

0.003

Percentile

68.5%

JSON

Related for CVE-2014-8471