Vulnerabilities > CVE-2019-11989 - Unspecified vulnerability in HP Icewall SSO Agent and MFA Proxy

CVSS 7.1 - HIGH

Attack vector

NETWORK

Attack complexity

MEDIUM

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

COMPLETE

network

microsoft

redhat

NVD

Published: 2019-07-19

Updated: 2020-08-24

Summary

A security vulnerability in HPE IceWall SSO Agent Option and IceWall MFA (Agent module ) could be exploited remotely to cause a denial of service. The versions and platforms of Agent Option modules that are impacted are as follows: 10.0 for Apache 2.2 on RHEL 5 and 6, 10.0 for Apache 2.4 on RHEL 7, 10.0 for Apache 2.4 on HP-UX 11i v3, 10.0 for IIS on Windows, 11.0 for Apache 2.4 on RHEL 7, MFA Proxy 4.0 (Agent module only) for Apache 2.4 on RHEL 7.

Vulnerable Configurations

Part	Description	Count
Application	Hp HP Icewall SSO Agent 10.0 HP Icewall SSO Agent 11.0 HP MFA Proxy 4.0	3
OS	Hp HP HP UX -	1
OS	Microsoft Microsoft Windows -	1
OS	Redhat Redhat Enterprise Linux 5.0 Redhat Enterprise Linux 6.0 Redhat Enterprise Linux 7.0	3

References

https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbmu03941en_us