CVE-2017-9393

Summary

CA Identity Manager r12.6 to r12.6 SP8, 14.0, and 14.1 allows remote attackers to potentially identify passwords of locked accounts through an exhaustive search.

Affected Software

VendorProductVersion RangeStatus
CA TechnologiesIdentity Manager12.6 through 12.6 SP8affected
CA TechnologiesIdentity Manager14.0affected
CA TechnologiesIdentity Manager14.1affected

Weaknesses

  • Information Disclosure

ADP Enrichment

CVE Program Container

Additional References

References