Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ca vulnerabilities and exploits
(subscribe to this query)
8.1
CVSSv3
CVE-2016-10086
RESTful web services in CA Service Desk Manager 12.9 and CA Service Desk Management 14.1 might allow remote authenticated users to read or modify task information by leveraging incorrect permissions applied to a RESTful request.
Ca Service Desk Management 14.1
Ca Service Desk Manager 12.9
5.5
CVSSv3
CVE-2017-8391
The OS Installation Management component in CA Client Automation r12.9, r14.0, and r14.0 SP1 places an encrypted password into a readable local file during operating system installation, which allows local users to obtain sensitive information by reading this file after operating...
Ca Client Automation R14.0
Ca Client Automation R12.9
6.1
CVSSv3
CVE-2018-9027
A reflected cross-site scripting vulnerability in CA Privileged Access Manager 2.x allows remote malicious users to execute malicious script with a specially crafted link.
Ca Ca Privileged Access Manager 2.0
NA
CVE-2009-0682
vetmonnt.sys in CA Internet Security Suite r3, vetmonnt.sys prior to 9.0.0.184 in Internet Security Suite r4, and vetmonnt.sys prior to 10.0.0.217 in Internet Security Suite r5 do not properly verify IOCTL calls, which allows local users to cause a denial of service (system crash...
Ca Internet Security Suite 9.0.0.184
Ca Internet Security Suite 10.0.0.217
Ca Internet Security Suite
NA
CVE-2010-1222
CA XOsoft r12.5 does not properly perform authentication, which allows remote malicious users to obtain potentially sensitive information via a SOAP request.
Ca Xosoft Content Distribution R12.5
Ca Xosoft Replication R12.5
Ca Xosoft High Availability R12.5
NA
CVE-2009-0043
The smmsnmpd service in CA Service Metric Analysis r11.0 through r11.1 SP1 and Service Level Management 3.5 does not properly restrict access, which allows remote malicious users to execute arbitrary commands via unspecified vectors.
Ca Service Level Management 3.5
Ca Service Metric Analysis R11.1
Ca Service Metric Analysis R11.0
1 EDB exploit
9.8
CVSSv3
CVE-2018-13821
A lack of authentication, in CA Unified Infrastructure Management 8.5.1, 8.5, and 8.4.7, allows remote malicious users to conduct a variety of attacks, including file reading/writing.
Ca Unified Infrastructure Management 8.5
Ca Unified Infrastructure Management 8.4.7
Ca Unified Infrastructure Management 8.5.1
7.5
CVSSv3
CVE-2018-13819
A hardcoded secret key, in CA Unified Infrastructure Management 8.5.1, 8.5, and 8.4.7, allows malicious users to access sensitive information.
Ca Unified Infrastructure Management 8.5
Ca Unified Infrastructure Management 8.4.7
Ca Unified Infrastructure Management 8.5.1
7.5
CVSSv3
CVE-2018-13820
A hardcoded passphrase, in CA Unified Infrastructure Management 8.5.1, 8.5, and 8.4.7, allows malicious users to access sensitive information.
Ca Unified Infrastructure Management 8.4.7
Ca Unified Infrastructure Management 8.5
Ca Unified Infrastructure Management 8.5.1
5.3
CVSSv3
CVE-2018-14597
CA Technologies Identity Governance 12.6, 14.0, 14.1, and 14.2 and CA Identity Suite Virtual Appliance 14.0, 14.1, and 14.2 provide telling error messages that may allow remote malicious users to enumerate account names.
Broadcom Ca Identity Governance
Broadcom Ca Identity Governance 12.6
Broadcom Ca Identity Suite Virtual Appliance
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30051
remote
CVE-2024-27954
CVE-2023-51483
CVE-2023-47782
SSRF
CVE-2024-24715
CVE-2023-52424
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »