VYPR
Unrated severityNVD Advisory· Published Apr 27, 2011· Updated Jun 16, 2026

CVE-2011-1718

CVE-2011-1718

Description

The Web Agents component in CA SiteMinder R6 before SP6 CR2 and R12 before SP3 CR2 does not properly handle multi-line headers, which allows remote authenticated users to conduct impersonation attacks and gain privileges via crafted data.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

3
  • cpe:2.3:a:broadcom:siteminder:12.0:sp3:cr01:*:*:*:*:*
  • Ca/Siteminder2 versions
    cpe:2.3:a:ca:siteminder:6:sp5_cr35:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:ca:siteminder:6:sp5_cr35:*:*:*:*:*:*
    • (no CPE)range: R6 < SP6 CR2, R12 < SP3 CR2

Patches

Vulnerability mechanics

References

8

News mentions

0

No linked articles in our index yet.