Customer reported that IP Forwarding on a PAM server is flagged as a vulnerability - CVE-1999-0511
search cancel

Customer reported that IP Forwarding on a PAM server is flagged as a vulnerability - CVE-1999-0511

book

Article ID: 263779

calendar_today

Updated On:

Products

CA Privileged Access Manager (PAM)

Issue/Introduction

Customer reported that a vulnerability scan is flagging the IP forwarding that they  enabled on their PAM cluster. Is this CVE-1999-0511 relevant to PAM internal design ?

Environment

Release : 4.x.x

Cause

Request For Information (RFI)

Resolution

PAM internal VIP that can be configured to route traffic to nodes for performance and high availability reasons. Please note PAM VIP uses REDIRECT as oppose to IP FORWARDING. So, CVE-1999-0511 does not apply to PAM VIP..

Additional Information

None.

Powered by Wolken Software