CVE-2010-2337

EUVD-2010-2347
Open redirect vulnerability in RSA Federated Identity Manager 4.0 before 4.0.25 and 4.1 before 4.1.26 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unknown vectors.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
6 UNKNOWN
NETWORK
MEDIUM
AV:N/AC:M/Au:S/C:P/I:P/A:P
Base Score
CVSS 3.x
EPSS Score
Percentile: 73%
Affected Products (NVD)
VendorProductVersion
rsafederated_identity_manager
4.0
rsafederated_identity_manager
4.1
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://archives.neohapsis.com/archives/bugtraq/2010-07/0187.html
http://osvdb.org/66504
http://secunia.com/advisories/40704
http://www.securityfocus.com/bid/41850
http://www.securitytracker.com/id?1024239
http://www.vupen.com/english/advisories/2010/1880
https://exchange.xforce.ibmcloud.com/vulnerabilities/60564
https://knowledge.rsasecurity.com/scolcms/set.aspx?id=8692
http://archives.neohapsis.com/archives/bugtraq/2010-07/0187.html
http://osvdb.org/66504
http://secunia.com/advisories/40704
http://www.securityfocus.com/bid/41850
http://www.securitytracker.com/id?1024239
http://www.vupen.com/english/advisories/2010/1880
https://exchange.xforce.ibmcloud.com/vulnerabilities/60564
https://knowledge.rsasecurity.com/scolcms/set.aspx?id=8692