Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ca vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2011-1036
The XML Security Database Parser class in the XMLSecDB ActiveX control in the HIPSEngine component in the Management Server prior to 8.1.0.88, and the client prior to 1.6.450, in CA Host-Based Intrusion Prevention System (HIPS) 8.1, as used in CA Internet Security Suite (ISS) 201...
Ca Host-based Intrusion Prevention System 8.1
Ca Internet Security Suite 2010
Ca Internet Security Suite 2011
8.8
CVSSv3
CVE-2016-6151
CA eHealth 6.2.x allows remote authenticated users to cause a denial of service or possibly execute arbitrary commands via unspecified vectors.
Ca Ehealth 6.2
Ca Ehealth 6.2.1
Ca Ehealth 6.2.2
NA
CVE-2010-1221
CA XOsoft r12.0 and r12.5 does not properly perform authentication, which allows remote malicious users to enumerate usernames via a SOAP request.
Ca Xosoft High Availability R12.5
Ca Xosoft Replication R12.0
Ca Xosoft Content Distribution R12.5
Ca Xosoft High Availability R12.0
Ca Xosoft Replication R12.5
Ca Xosoft Content Distribution R12.0
NA
CVE-2010-1223
Multiple buffer overflows in CA XOsoft r12.0 and r12.5 allow remote malicious users to execute arbitrary code via (1) a malformed request to the ws_man/xosoapapi.asmx SOAP endpoint or (2) a long string to the entry_point.aspx service.
Ca Xosoft Content Distribution R12.0
Ca Xosoft Content Distribution R12.5
Ca Xosoft High Availability R12.0
Ca Xosoft High Availability R12.5
Ca Xosoft Replication R12.0
Ca Xosoft Replication R12.5
NA
CVE-2010-3984
Buffer overflow in mng_core_com.dll in CA XOsoft Replication r12.0 SP1 and r12.5 SP2 rollup, CA XOsoft High Availability r12.0 SP1 and r12.5 SP2 rollup, CA XOsoft Content Distribution r12.0 SP1 and r12.5 SP2 rollup, and CA ARCserve Replication and High Availability (RHA) r15.0 SP...
Ca Xosoft Replication R12.0
Ca Xosoft Replication R12.5
Ca Xosoft Content Distribution R12.0
Ca Xosoft Content Distribution R12.5
Ca Arcserve Replication And High Availability R15.0
Ca Xosoft High Availability R12.0
Ca Xosoft High Availability R12.5
9.8
CVSSv3
CVE-2018-8954
CA Workload Control Center before r11.4 SP6 allows remote malicious users to execute arbitrary code via a crafted HTTP request.
Ca Workload Control Center Sp5
Ca Workload Control Center Sp3
Ca Workload Control Center Sp2
Ca Workload Control Center Sp1
Ca Workload Control Center
Ca Workload Control Center Sp4
9.8
CVSSv3
CVE-2017-9393
CA Identity Manager r12.6 to r12.6 SP8, 14.0, and 14.1 allows remote malicious users to potentially identify passwords of locked accounts through an exhaustive search.
Ca Identity Manager 14.0
Ca Identity Manager 12.6
Ca Identity Manager Virtual Appliance 14.0
Ca Identity Manager Virtual Appliance 14.1
Ca Identity Manager 14.1
NA
CVE-2009-2026
Stack-based buffer overflow in a token searching function in the dtscore library in Data Transport Services in CA Software Delivery r11.2 C1, C2, C3, and SP4; Unicenter Software Delivery 4.0 C3; CA Advantage Data Transport 3.0 C1; and CA IT Client Manager r12 allows remote malici...
Ca Advantage Data Transport 3.0
Ca Unicenter Software Delivery 4.0
Ca Software Delivery R11
Ca It Client Manager R12
NA
CVE-2005-1272
Stack-based buffer overflow in the Backup Agent for Microsoft SQL Server in BrightStor ARCserve Backup Agent for SQL Server 11.0 allows remote malicious users to execute arbitrary code via a long string sent to port (1) 6070 or (2) 6050.
Ca Brightstor Arcserve Backup 9.0.1
Ca Brightstor Arcserve Backup 9.0 1
Ca Brightstor Arcserve Backup Agent 9.0.1
Ca Brightstor Enterprise Backup Agent 10.5
Ca Brightstor Arcserve Backup 11.1
Ca Brightstor Arcserve Backup Agent 11
Ca Brightstor Enterprise Backup Agent 10.0
Ca Brightstor Arcserve Backup 11.0
Ca Brightstor Arcserve Backup Agent 11.1
Ca Brightstor Arcserve Backup Agent 11.0
Broadcom Brightstor Enterprise Backup 10.0
Broadcom Brightstor Enterprise Backup 10.5
2 EDB exploits
NA
CVE-2008-4119
Multiple cross-site scripting (XSS) vulnerabilities in CA Service Desk 11.2 and CMDB 11.0 up to and including 11.2 allow remote malicious users to inject arbitrary web script or HTML via unspecified vectors involving "multiple web forms."
Ca Cmdb 11.1
Ca Cmdb 11.2
Broadcom Service Desk 11.2
Ca Cmdb 11.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
firmware
CVE-2023-52866
CVE-2024-4367
CVE-2024-1721
CVE-2023-34992
XML injection
CVE-2023-52817
SQL
CVE-2023-52855
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »