VYPR

Identity Governance

by Ca

CVEs (2)

  • CVE-2017-9394MedNov 14, 2017
    risk 0.35cvss 5.4epss 0.01

    A stored cross-site scripting vulnerability in CA Identity Governance 12.6 allows remote authenticated attackers to display HTML or execute script in the context of another user.

  • CVE-2018-14597Oct 17, 2018
    risk 0.00cvss epss 0.01

    CA Technologies Identity Governance 12.6, 14.0, 14.1, and 14.2 and CA Identity Suite Virtual Appliance 14.0, 14.1, and 14.2 provide telling error messages that may allow remote attackers to enumerate account names.