CVE-2019-6504

🗓️ 06 Feb 2019 00:00:00Reported by caType

Insufficient output sanitization in CA Automic Workload Automatio

Reporter	Title	Published	Views	Family All 7
Circl	CVE-2019-6504	25 Jan 201917:22	–	circl
Cvelist	CVE-2019-6504	6 Feb 201900:00	–	cvelist
EUVD	EUVD-2019-16063	7 Oct 202500:30	–	euvd
NVD	CVE-2019-6504	6 Feb 201900:29	–	nvd
OSV	CVE-2019-6504	6 Feb 201900:29	–	osv
Packet Storm	CA AWI 12.0 / 12.1 / 12.2 Cross Site Scripting	24 Jan 201900:00	–	packetstorm
Prion	Cross site scripting	6 Feb 201900:29	–	prion

NVD

Node

broadcom automic_workload_automationRange12.0–12.2

[
  {
    "product": "CA Automic Workload Automation",
    "vendor": "CA Technologies - A Broadcom Company",
    "versions": [
      {
        "status": "affected",
        "version": "CA Automic Workload Automation 12.0 prior to Automic.Web.Interface 12.0.6 HF2 CA Automic Workload Automation 12.1 prior to Automic.Web.Interface 12.1.3 HF3 CA Automic Workload Automation 12.2 prior to Automic.Web.Interface 12.2.1 HF1"
      }
    ]
  }
]

Source	Link
packetstormsecurity	www.packetstormsecurity.com/files/151325/CA-Automic-Workload-Automation-12.x-Cross-Site-Scripting.html
seclists	www.seclists.org/fulldisclosure/2019/Jan/61
communities	www.communities.ca.com/community/product-vulnerability-response/blog/2019/01/24/ca20190124-01-security-notice-for-ca-automic-workload-automation
support	www.support.ca.com/us/product-content/recommended-reading/security-notices/CA20190124-01-security-notice-for-ca-automic-workload-automation.html
sec-consult	www.sec-consult.com/en/blog/advisories/cross-site-scripting-in-ca-automic-workload-automation-web-interface-formerly-automic-automation-engine/
securityfocus	www.securityfocus.com/bid/106755
marc	www.marc.info/

21 Nov 2024 04:46Current

5.9Medium risk

Vulners AI Score5.9

CVSS 24.3

CVSS 36.1

EPSS0.00881

CWE-79