CVE-2019-7393

Summary

A UI redress vulnerability in the administrative user interface of CA Technologies CA Strong Authentication 9.0.x, 8.2.x, 8.1.x, 8.0.x, 7.1.x and CA Risk Authentication 9.0.x, 8.2.x, 8.1.x, 8.0.x, 3.1.x may allow a remote attacker to gain sensitive information in some cases.

Affected Software

VendorProductVersion RangeStatus
CA Technologies, A Broadcom CompanyCA Strong Authentication9.0.xaffected
CA Technologies, A Broadcom CompanyCA Strong Authentication8.2.xaffected
CA Technologies, A Broadcom CompanyCA Strong Authentication8.1.xaffected
CA Technologies, A Broadcom CompanyCA Strong Authentication8.0.xaffected
CA Technologies, A Broadcom CompanyCA Strong Authentication7.1.xaffected
CA Technologies, A Broadcom CompanyCA Risk Authentication9.0.xaffected
CA Technologies, A Broadcom CompanyCA Risk Authentication8.2.xaffected
CA Technologies, A Broadcom CompanyCA Risk Authentication8.1.xaffected
CA Technologies, A Broadcom CompanyCA Risk Authentication8.0.xaffected
CA Technologies, A Broadcom CompanyCA Risk Authentication3.1.xaffected

Weaknesses

  • CWE-1021: CWE-1021: Improper Restriction of Rendered UI Layers or Frames

ADP Enrichment

CVE Program Container

Additional References

References