Detections
Analytics

CVE-2011-1826

medium

Description

Open redirect vulnerability in the Administrative Console in CA Arcot WebFort Versatile Authentication Server (VAS) before 6.2.5 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors.

References

https://support.ca.com/irj/portal/anonymous/phpsupcontent?contentID=%7BA71F5839-D214-4719-B918-4476E4537998%7D

https://exchange.xforce.ibmcloud.com/vulnerabilities/67105

http://www.vupen.com/english/advisories/2011/1114

http://www.securitytracker.com/id?1025444

http://www.securityfocus.com/bid/47588

http://www.securityfocus.com/archive/1/517702/100/0/threaded

http://secunia.com/advisories/44317

http://osvdb.org/72125

Details

Source: Mitre, NVD

Published: 2011-05-05

Updated: 2026-06-16

Risk Information

CVSS v2

Base Score: 5.8

Vector: CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:N

Severity: Medium

CVSS v3

Base Score: 6.1

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Severity: Medium

EPSS

EPSS: 0.00512