CVE-2010-2337

Open redirect vulnerability in RSA Federated Identity Manager 4.0 before 4.0.25 and 4.1 before 4.1.26 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unknown vectors.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
6 UNKNOWN
NETWORK
MEDIUM
AV:N/AC:M/Au:S/C:P/I:P/A:P
dellCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 73%
VendorProductVersion
rsafederated_identity_manager
4.0
rsafederated_identity_manager
4.1
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://archives.neohapsis.com/archives/bugtraq/2010-07/0187.html
http://osvdb.org/66504
http://secunia.com/advisories/40704
http://www.securityfocus.com/bid/41850
http://www.securitytracker.com/id?1024239
http://www.vupen.com/english/advisories/2010/1880
https://exchange.xforce.ibmcloud.com/vulnerabilities/60564
https://knowledge.rsasecurity.com/scolcms/set.aspx?id=8692
http://archives.neohapsis.com/archives/bugtraq/2010-07/0187.html
http://osvdb.org/66504
http://secunia.com/advisories/40704
http://www.securityfocus.com/bid/41850
http://www.securitytracker.com/id?1024239
http://www.vupen.com/english/advisories/2010/1880
https://exchange.xforce.ibmcloud.com/vulnerabilities/60564
https://knowledge.rsasecurity.com/scolcms/set.aspx?id=8692