VYPR
Unrated severityNVD Advisory· Published May 30, 2014· Updated Jun 17, 2026

CVE-2014-0925

CVE-2014-0925

Description

Open redirect vulnerability in IBM Sterling Control Center 5.4.0 before 5.4.0.1 iFix 3 and 5.4.1 before 5.4.1.0 iFix 2 allows remote authenticated users to redirect users to arbitrary web sites and conduct phishing attacks via a crafted URL.

Affected products

4
  • cpe:2.3:a:ibm:sterling_control_center:5.4.0:*:*:*:*:*:*:*+ 3 more
    • cpe:2.3:a:ibm:sterling_control_center:5.4.0:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:sterling_control_center:5.4.0.1:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:sterling_control_center:5.4.1.0:*:*:*:*:*:*:*
    • (no CPE)range: <= 5.4.0.1 iFix 2 (for 5.4.1 branch) and <= 5.4.1.0 iFix 1 (for 5.4.1 branch)

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.