CVE-2018-8953

2018-03-2900:00:00

www.cve.org

9 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

47.3%

JSON

CA Workload Automation AE before r11.3.6 SP7 allows remote attackers to a perform SQL injection via a crafted HTTP request.

CNA Affected

[
  {
    "product": "Workload Automation AE",
    "vendor": "CA Technologies",
    "versions": [
      {
        "status": "affected",
        "version": "r11.3.5, r11.3.6 SP6 and earlier"
      }
    ]
  }
]

References

www.securityfocus.com/bid/103742

www.securitytracker.com/id/1040605

support.ca.com/us/product-content/recommended-reading/security-notices/ca20180329-01--security-notice-for-ca-workload-automation-ae.html