Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ca vulnerabilities and exploits
(subscribe to this query)
2.1
CVSSv2
CVE-2017-8391
The OS Installation Management component in CA Client Automation r12.9, r14.0, and r14.0 SP1 places an encrypted password into a readable local file during operating system installation, which allows local users to obtain sensitive information by reading this file after operating...
Ca Client Automation R14.0
Ca Client Automation R12.9
5.5
CVSSv2
CVE-2016-10086
RESTful web services in CA Service Desk Manager 12.9 and CA Service Desk Management 14.1 might allow remote authenticated users to read or modify task information by leveraging incorrect permissions applied to a RESTful request.
Ca Service Desk Management 14.1
Ca Service Desk Manager 12.9
4.3
CVSSv2
CVE-2018-9027
A reflected cross-site scripting vulnerability in CA Privileged Access Manager 2.x allows remote malicious users to execute malicious script with a specially crafted link.
Ca Ca Privileged Access Manager 2.0
2.1
CVSSv2
CVE-2009-0682
vetmonnt.sys in CA Internet Security Suite r3, vetmonnt.sys prior to 9.0.0.184 in Internet Security Suite r4, and vetmonnt.sys prior to 10.0.0.217 in Internet Security Suite r5 do not properly verify IOCTL calls, which allows local users to cause a denial of service (system crash...
Ca Internet Security Suite 9.0.0.184
Ca Internet Security Suite 10.0.0.217
Ca Internet Security Suite
5
CVSSv2
CVE-2010-1222
CA XOsoft r12.5 does not properly perform authentication, which allows remote malicious users to obtain potentially sensitive information via a SOAP request.
Ca Xosoft Content Distribution R12.5
Ca Xosoft Replication R12.5
Ca Xosoft High Availability R12.5
10
CVSSv2
CVE-2009-0043
The smmsnmpd service in CA Service Metric Analysis r11.0 through r11.1 SP1 and Service Level Management 3.5 does not properly restrict access, which allows remote malicious users to execute arbitrary commands via unspecified vectors.
Ca Service Level Management 3.5
Ca Service Metric Analysis R11.1
Ca Service Metric Analysis R11.0
1 EDB exploit
5
CVSSv2
CVE-2018-13819
A hardcoded secret key, in CA Unified Infrastructure Management 8.5.1, 8.5, and 8.4.7, allows malicious users to access sensitive information.
Ca Unified Infrastructure Management 8.5
Ca Unified Infrastructure Management 8.4.7
Ca Unified Infrastructure Management 8.5.1
5
CVSSv2
CVE-2018-13820
A hardcoded passphrase, in CA Unified Infrastructure Management 8.5.1, 8.5, and 8.4.7, allows malicious users to access sensitive information.
Ca Unified Infrastructure Management 8.4.7
Ca Unified Infrastructure Management 8.5
Ca Unified Infrastructure Management 8.5.1
7.5
CVSSv2
CVE-2018-13821
A lack of authentication, in CA Unified Infrastructure Management 8.5.1, 8.5, and 8.4.7, allows remote malicious users to conduct a variety of attacks, including file reading/writing.
Ca Unified Infrastructure Management 8.5
Ca Unified Infrastructure Management 8.4.7
Ca Unified Infrastructure Management 8.5.1
2.6
CVSSv2
CVE-2010-0640
Cross-site scripting (XSS) vulnerability in CA eHealth Performance Manager 6.0.x up to and including 6.2.x, when malicious HTML detection is disabled, allows remote malicious users to inject arbitrary web script or HTML via a crafted request.
Ca Ehealth Performance Manager 6.0
Ca Ehealth Performance Manager 6.1
Ca Ehealth Performance Manager 6.2
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-26925
CVE-2023-41826
LFI
CVE-2022-22364
CVE-2024-2887
command injection
remote code execution
CVE-2024-34446
CVE-2022-48699
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »