CA Cloud Service Management (CSM) before Summer 2014 does not properly verify authentication tokens from an Identity Provider, which allows user-assisted remote attackers to bypass intended access restrictions via unspecified vectors.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.022
EPSS Ranking 79.9%