Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
broadcom project portfolio management vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2018-13822
Unprotected storage of credentials in CA PPM 14.3 and below, 14.4, 15.1, 15.2 CP5 and below, and 15.3 CP2 and below, allows malicious users to access sensitive information.
Broadcom Project Portfolio Management 15.1
Broadcom Project Portfolio Management 14.4
Broadcom Project Portfolio Management
Broadcom Project Portfolio Management 15.2
Broadcom Project Portfolio Management 15.3
9.8
CVSSv3
CVE-2018-13824
Insufficient input sanitization of two parameters in CA PPM 14.3 and below, 14.4, 15.1, 15.2 CP5 and below, and 15.3 CP2 and below, allows remote malicious users to execute SQL injection attacks.
Ca Project Portfolio Management 15.3
Ca Project Portfolio Management 15.2
Broadcom Project Portfolio Management 15.1
Broadcom Project Portfolio Management 14.4
Broadcom Project Portfolio Management
6.1
CVSSv3
CVE-2018-13825
Insufficient input validation in the gridExcelExport functionality, in CA PPM 14.3 and below, 14.4, 15.1, 15.2 CP5 and below, and 15.3 CP2 and below, allows remote malicious users to execute reflected cross-site scripting attacks.
Ca Project Portfolio Management 15.3
Ca Project Portfolio Management 15.2
Broadcom Project Portfolio Management 15.1
Broadcom Project Portfolio Management 14.4
Broadcom Project Portfolio Management
7.5
CVSSv3
CVE-2018-13823
An XML external entity vulnerability in the XOG functionality, in CA PPM 14.3 and below, 14.4, 15.1, 15.2 CP5 and below, and 15.3 CP2 and below, allows remote malicious users to access sensitive information.
Ca Project Portfolio Management 15.3
Ca Project Portfolio Management 15.2
Broadcom Project Portfolio Management 15.1
Broadcom Project Portfolio Management 14.4
Broadcom Project Portfolio Management
9.1
CVSSv3
CVE-2018-13826
An XML external entity vulnerability in the XOG functionality, in CA PPM 14.3 and below, 14.4, 15.1, 15.2 CP5 and below, and 15.3 CP2 and below, allows remote malicious users to conduct server side request forgery attacks.
Ca Project Portfolio Management 15.3
Ca Project Portfolio Management 15.2
Broadcom Project Portfolio Management 15.1
Broadcom Project Portfolio Management 14.4
Broadcom Project Portfolio Management
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
type confusion
IMAP
CVE-2024-36103
CVE-2024-28995
CVE-2024-37325
CVE-2024-30078
CVE-2024-30082
SQL injection
CVE-2024-30052
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started