118 matches found
CVE-2020-4673
IBM Workload Automation 9.5 stores sensitive information in HTML comments that could aid in further attacks against the system. IBM X-Force ID: 186286...
CVE-2020-4674
IBM Workload Automation 9.5 stores the server path in URLs that could aid in further attacks against the system. IBM X-Force ID: 186287...
Path traversal
IBM Workload Automation 9.5 stores the server path in URLs that could aid in further attacks against the system. IBM X-Force ID: 186287...
Information disclosure
IBM Workload Automation 9.5 stores sensitive information in HTML comments that could aid in further attacks against the system. IBM X-Force ID: 186286...
CVE-2020-4674
CVE-2020-4674 affects IBM Workload Automation 9.5.x, where the server path is exposed in URLs, potentially aiding information disclosure and subsequent attacks. The root cause is path disclosure in the application. Remediation: IBM states APAR IJ30009 to address CVE-2020-4674; the fix is included...
CVE-2020-4674
IBM Workload Automation 9.5 stores the server path in URLs that could aid in further attacks against the system. IBM X-Force ID: 186287...
CVE-2020-4673
The CVE-2020-4673 vulnerability affects IBM Workload Automation 9.5 (IBM Workload Scheduler 9.5.x). The root cause is information disclosure via sensitive data stored in HTML comments in the Dynamic Workload Console, enabling an attacker to access potentially sensitive information and aid further...
CVE-2020-4673
IBM Workload Automation 9.5 stores sensitive information in HTML comments that could aid in further attacks against the system. IBM X-Force ID: 186286...
IBM Workload Automation 信息泄露漏洞
IBM Workload Automation is an American IBM software for batch and real-time workload management. An information disclosure vulnerability exists in IBM Workload Automation version 9.5 that originates from storing sensitive information in HTML comments, which can be exploited by an attacker to obta...
IBM Workload Automation 信息泄露漏洞
IBM Workload Automation is an American IBM software for batch and real-time workload management. A security vulnerability exists in IBM Workload Automation 9.5, which can be exploited by attackers to obtain sensitive data...
CA Technologies Client Automation and Workload Automation AE Access Control Error Vulnerability
CA Automic Workload Automation is a suite of workload automation solutions from CA USA. The product includes features such as data-driven event automation, managed file transfer, version control and lifecycle management. An access control error vulnerability exists in CA Common Services DIA in CA...
CVE-2019-13656
An access vulnerability in CA Common Services DIA of CA Technologies Client Automation 14 and Workload Automation AE 11.3.5, 11.3.6 allows a remote attacker to execute arbitrary code...
CVE-2019-13656
An access vulnerability in CA Common Services DIA of CA Technologies Client Automation 14 and Workload Automation AE 11.3.5, 11.3.6 allows a remote attacker to execute arbitrary code...
Code injection
An access vulnerability in CA Common Services DIA of CA Technologies Client Automation 14 and Workload Automation AE 11.3.5, 11.3.6 allows a remote attacker to execute arbitrary code...
CVE-2019-13656
CVE-2019-13656 affects CA Technologies Client Automation components: CA Common Services DIA in CA Technologies Client Automation 14 and Workload Automation AE 11.3.5/11.3.6. Multiple sources (NVD/Red Hat/CNVD) describe an access control error that enables a remote attacker to execute arbitrary co...
Command injection
An issue was discovered in Dillon Kane Tidal Workload Automation Agent 3.2.0.5 formerly known as Cisco Workload Automation or CWA. The Enterprise Scheduler for AIX allows local users to gain privileges via Command Injection in crafted Tidal Job Buffers TJB parameters. NOTE: this vulnerability...
CVE-2019-6689
An issue was discovered in Dillon Kane Tidal Workload Automation Agent 3.2.0.5 formerly known as Cisco Workload Automation or CWA. The Enterprise Scheduler for AIX allows local users to gain privileges via Command Injection in crafted Tidal Job Buffers TJB parameters. NOTE: this vulnerability...
CVE-2019-6689
CVE-2019-6689 affects Dillon Kane Tidal Workload Automation Agent 3.2.0.5 (Enterprise Scheduler for AIX). Local users can escalate privileges via Command Injection in crafted Tidal Job Buffers (TJB) parameters. The note cites that the CVE-2014-3272 fix did not cover AIX. Public remediation or exp...
CVE-2019-6504
Insufficient output sanitization in the Automic Web Interface AWI, in CA Automic Workload Automation 12.0 to 12.2, allow attackers to potentially conduct persistent cross site scripting XSS attacks via a crafted object...
CVE-2019-6504
Insufficient output sanitization in the Automic Web Interface AWI, in CA Automic Workload Automation 12.0 to 12.2, allow attackers to potentially conduct persistent cross site scripting XSS attacks via a crafted object...