Unspecified vulnerability in CA CleverPath Portal before maintenance version 4.71.001_179_060830, as used in multiple products including BrightStor Portal r11.1, CleverPath Aion BPM r10 through r10.2, eTrust Security Command Center r1 and r8, and Unicenter, does not properly handle when multiple Portal servers are started at the same time and share the same data store, which might cause a Portal user to inherit the session and credentials of a user who is on another Portal server.
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
cleverpath aion bpm r10.2 |
||
cleverpath portal r4.51 |
||
unicenter database management portal r11 |
||
unicenter enterprise job manager r1_sp3 |
||
arcserve brightstor 11.1 |
||
etrust security command center r1 |
||
etrust security command center r8 |
||
unicenter workload control center r1_sp4 |
||
broadcom cleverpath portal |
||
cleverpath aion bpm r10 |
||
cleverpath aion bpm r10.1 |
||
unicenter asset and portfolio management r11 |
||
unicenter database command center r11.1 |
||
cleverpath portal r4.7 |
||
cleverpath portal r4.71 |
||
unicenter management portal r11.0 |
||
unicenter management portal r2.0 |
||
unicenter management portal r3.1 |
Vulmon