Vulmon Recent Vulnerabilities Product List Research Posts Trends Blog About Contact

broadcom release automation vulnerabilities and exploits

(subscribe to this query)
9.8
CVSSv3

CVE-2019-19230

An unsafe deserialization vulnerability exists in CA Release Automation (Nolio) 6.6 with the DataManagement component that can allow a remote malicious user to execute arbitrary code.
Broadcom Nolio 6.6
9.8
CVSSv3

CVE-2018-15691

Insecure deserialization of a specially crafted serialized object, in CA Release Automation 6.5 and previous versions, allows malicious users to potentially execute arbitrary code.
Broadcom Release Automation
7.1
CVSSv3

CVE-2015-8698

CA Release Automation (formerly LISA Release Automation) 5.0.2 prior to 5.0.2-227, 5.5.1 prior to 5.5.1-1616, 5.5.2 prior to 5.5.2-434, and 6.1.0 prior to 6.1.0-1026 allows remote malicious users to read arbitrary files or cause a denial of service via a request containing an XML...
Broadcom Release Automation
6.1
CVSSv3

CVE-2015-8699

Multiple cross-site scripting (XSS) vulnerabilities in CA Release Automation (formerly LISA Release Automation) 5.0.2 prior to 5.0.2-227, 5.5.1 prior to 5.5.1-1616, 5.5.2 prior to 5.5.2-434, and 6.1.0 prior to 6.1.0-1026 allow remote malicious users to inject arbitrary web script...
Broadcom Release Automation
NA

CVE-2014-8247

Cross-site scripting (XSS) vulnerability in CA Release Automation (formerly iTKO LISA Release Automation) prior to 4.7.1 b448 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Broadcom Release Automation
NA

CVE-2014-8246

Cross-site request forgery (CSRF) vulnerability in CA Release Automation (formerly iTKO LISA Release Automation) prior to 4.7.1 b448 allows remote malicious users to hijack the authentication of unspecified victims via unknown vectors.
Broadcom Release Automation
NA

CVE-2014-8248

SQL injection vulnerability in CA Release Automation (formerly iTKO LISA Release Automation) prior to 4.7.1 b448 allows remote authenticated users to execute arbitrary SQL commands via a crafted query.
Broadcom Release Automation
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
TCPCVE-2024-4577CVE-2024-2695CVE-2024-31870injectionCVE-2024-3813arbitrary codeCVE-2024-27801CVE-2024-30120
Vulmon Logo Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Product List Vendor List Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook