Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ca vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2020-11662
CA API Developer Portal 4.3.1 and previous versions handles requests insecurely, which allows remote malicious users to exploit a Cross-Origin Resource Sharing flaw and access sensitive information.
Broadcom Ca Api Developer Portal
5.8
CVSSv2
CVE-2020-11663
CA API Developer Portal 4.3.1 and previous versions handles 404 requests in an insecure manner, which allows malicious users to perform open redirect attacks.
Broadcom Ca Api Developer Portal
5.8
CVSSv2
CVE-2020-11665
CA API Developer Portal 4.3.1 and previous versions handles loginRedirect page redirects in an insecure manner, which allows malicious users to perform open redirect attacks.
Broadcom Ca Api Developer Portal
7.5
CVSSv2
CVE-2016-5803
An issue exists in CA Unified Infrastructure Management Version 8.47 and previous versions. The Unified Infrastructure Management software uses external input to construct a pathname that should be within a restricted directory, but it does not properly neutralize sequences such ...
Ca Technologies Unified Infrastructure Management
1 Article
4
CVSSv2
CVE-2020-11659
CA API Developer Portal 4.3.1 and previous versions contains an access control flaw that allows privileged users to perform a restricted user administration action.
Broadcom Ca Api Developer Portal
5.5
CVSSv2
CVE-2020-11661
CA API Developer Portal 4.3.1 and previous versions contains an access control flaw that allows privileged users to view and edit user data.
Broadcom Ca Api Developer Portal
5.8
CVSSv2
CVE-2020-11664
CA API Developer Portal 4.3.1 and previous versions handles homeRedirect page redirects in an insecure manner, which allows malicious users to perform open redirect attacks.
Broadcom Ca Api Developer Portal
6.5
CVSSv2
CVE-2020-11666
CA API Developer Portal 4.3.1 and previous versions contains an access control flaw that allows malicious users to elevate privileges.
Broadcom Ca Api Developer Portal
4.3
CVSSv2
CVE-2018-6586
CA API Developer Portal 3.5 up to and including 3.5 CR6 has a stored cross-site scripting vulnerability related to profile picture processing.
Ca Api Developer Portal 3.5
4.3
CVSSv2
CVE-2018-6587
CA API Developer Portal 3.5 up to and including 3.5 CR6 has a reflected cross-site scripting vulnerability related to the widgetID variable.
Ca Api Developer Portal 3.5
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223
CVE-2024-0044
information disclosure
CVE-2024-35753
HTML injection
CVE-2024-21306
CVE-2024-35733
SQL injection
CVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
6
7
8
9
10
NEXT »