Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ca vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2018-15691
Insecure deserialization of a specially crafted serialized object, in CA Release Automation 6.5 and previous versions, allows malicious users to potentially execute arbitrary code.
Broadcom Release Automation
1 EDB exploit
9.8
CVSSv3
CVE-2018-9021
An authentication bypass vulnerability in CA Privileged Access Manager 2.8.2 and previous versions allows remote malicious users to execute arbitrary commands with specially crafted requests.
Broadcom Privileged Access Manager
1 EDB exploit
9.8
CVSSv3
CVE-2018-9022
An authentication bypass vulnerability in CA Privileged Access Manager 2.8.2 and previous versions allows remote malicious users to execute arbitrary code or commands by poisoning a configuration file.
Broadcom Privileged Access Manager
1 EDB exploit
9.8
CVSSv3
CVE-2015-4664
An improper input validation vulnerability in CA Privileged Access Manager 2.4.4.4 and previous versions allows remote malicious users to execute arbitrary commands.
Broadcom Privileged Access Manager
Xceedium Xsuite 2.4.3.0
Xceedium Xsuite 2.3.0
1 EDB exploit
9.8
CVSSv3
CVE-2018-9029
An improper input validation vulnerability in CA Privileged Access Manager 2.x allows remote malicious users to conduct SQL injection attacks.
Broadcom Privileged Access Manager
9.8
CVSSv3
CVE-2018-8954
CA Workload Control Center before r11.4 SP6 allows remote malicious users to execute arbitrary code via a crafted HTTP request.
Ca Workload Control Center Sp5
Ca Workload Control Center Sp3
Ca Workload Control Center Sp2
Ca Workload Control Center Sp1
Ca Workload Control Center
Ca Workload Control Center Sp4
9.8
CVSSv3
CVE-2017-9393
CA Identity Manager r12.6 to r12.6 SP8, 14.0, and 14.1 allows remote malicious users to potentially identify passwords of locked accounts through an exhaustive search.
Ca Identity Manager 14.0
Ca Identity Manager 12.6
Ca Identity Manager Virtual Appliance 14.0
Ca Identity Manager Virtual Appliance 14.1
Ca Identity Manager 14.1
9.8
CVSSv3
CVE-2015-5284
ipa-kra-install in FreeIPA prior to 4.2.2 puts the CA agent certificate and private key in /etc/httpd/alias/kra-agent.pem, which is world readable.
Freeipa Freeipa
9.8
CVSSv3
CVE-2015-9050
In all Qualcomm products with Android releases from CAF using the Linux kernel, a vulnerability exists where an array out of bounds access can occur during a CA call.
Google Android
9.1
CVSSv3
CVE-2022-32151
The httplib and urllib Python libraries that Splunk shipped with Splunk Enterprise did not validate certificates using the certificate authority (CA) certificate stores by default in Splunk Enterprise versions prior to 9.0 and Splunk Cloud Platform versions prior to 8.2.2203. Pyt...
Splunk Splunk
Splunk Splunk Cloud Platform
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30043
camera
CVE-2023-40404
CVE-2024-2793
client side
CVE-2024-4469
CVE-2024-3565
CVE-2024-29825
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »