Published: 20/12/2019 Updated: 22/10/2020

CVSS v2 Base Score: 4.6 | Impact Score: 6.4 | Exploitability Score: 3.9

CVSS v3 Base Score: 7.8 | Impact Score: 5.9 | Exploitability Score: 1.8

VMScore: 409

Vector: AV:L/AC:L/Au:N/C:P/I:P/A:P

An insecure file access vulnerability exists in CA Client Automation 14.0, 14.1, 14.2, and 14.3 Agent for Windows that can allow a local malicious user to gain escalated privileges.

Vulnerable Product	Search on Vulmon	Subscribe to Product
broadcom ca client automation 14.0
broadcom ca client automation 14.1
broadcom ca client automation 14.2
broadcom ca client automation 14.3

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 CA20191218-01: Security Notice for CA Client Automation Agent for Windows Issued: December 18, 2019 Last Updated: December 18, 2019 CA Technologies, A Broadcom Company, is alerting customers to a potential risk with CA Client Automation agent on Windows A vulnerability exists that can allow a loca ...

https://techdocs.broadcom.com/us/product-content/recommended-reading/security-notices/CA20191218-01-security-notice-for-ca-client-automation-agent-for-windows.html

CVE-2019-19231 techdocsbroadcomcom/us/product-content/recommended-reading/security-notices/CA20191218-01-security-notice-for-ca-client-automation-agent-for-windowshtml

NVD-CWE-Other https://techdocs.broadcom.com/us/product-content/recommended-reading/security-notices/CA20191218-01-security-notice-for-ca-client-automation-agent-for-windows.html https://seclists.org/bugtraq/2019/Dec/41 http://packetstormsecurity.com/files/155758/CA-Client-Automation-14.x-Privilege-Escalation.html http://seclists.org/fulldisclosure/2020/Jan/5 https://nvd.nist.gov https://github.com/hessandrew/CVE-2019-19231 http://seclists.org/fulldisclosure/2020/Jan/5

CVE-2019-19231

Vulnerability Summary

Vulnerability Trend

Mailing Lists

Github Repositories

References

Vulmon Search

About

Products

Connect