CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2014-0925

Open redirect vulnerability in IBM Sterling Control Center 5.4.0 before 5.4.0.1 iFix 3 and 5.4.1 before 5.4.1.0 iFix 2 allows remote authenticated users to redirect users to arbitrary web sites and conduct phishing attacks via a crafted URL.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 35.6%

CVSS Severity

CVSS v2 Score 3.5

References

http://www-01.ibm.com/support/docview.wss?uid=swg21673004
https://exchange.xforce.ibmcloud.com/vulnerabilities/92078
http://www-01.ibm.com/support/docview.wss?uid=swg21673004
https://exchange.xforce.ibmcloud.com/vulnerabilities/92078

Products affected by CVE-2014-0925

Ibm » Sterling Control Center » Version: 5.4.0

cpe:2.3:a:ibm:sterling_control_center:5.4.0
Ibm » Sterling Control Center » Version: 5.4.0.1

cpe:2.3:a:ibm:sterling_control_center:5.4.0.1
Ibm » Sterling Control Center » Version: 5.4.1.0

cpe:2.3:a:ibm:sterling_control_center:5.4.1.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2014-0925

Products

Pricing

Contact Us