Unrated severityNVD Advisory· Published Jul 28, 2010· Updated Apr 29, 2026

CVE-2010-2337

Description

Open redirect vulnerability in RSA Federated Identity Manager 4.0 before 4.0.25 and 4.1 before 4.1.26 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unknown vectors.

Affected products

Rsa/Federated Identity Manager2 versions
cpe:2.3:a:rsa:federated_identity_manager:4.0:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:rsa:federated_identity_manager:4.0:*:*:*:*:*:*:*
- cpe:2.3:a:rsa:federated_identity_manager:4.1:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

secunia.com/advisories/40704nvdVendor Advisory
www.vupen.com/english/advisories/2010/1880nvdVendor Advisory
archives.neohapsis.com/archives/bugtraq/2010-07/0187.htmlnvd
osvdb.org/66504nvd
www.securityfocus.com/bid/41850nvd
www.securitytracker.com/idnvd
exchange.xforce.ibmcloud.com/vulnerabilities/60564nvd
knowledge.rsasecurity.com/scolcms/set.aspxnvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000