Lucene search
K

118 matches found

NVD
NVD
added 2021/01/12 3:15 p.m.18 views

CVE-2020-4673

IBM Workload Automation 9.5 stores sensitive information in HTML comments that could aid in further attacks against the system. IBM X-Force ID: 186286...

4.3CVSS4.2AI score0.00806EPSS
Exploits0References2
OSV
OSV
added 2021/01/12 3:15 p.m.4 views

CVE-2020-4674

IBM Workload Automation 9.5 stores the server path in URLs that could aid in further attacks against the system. IBM X-Force ID: 186287...

4.3CVSS5.8AI score0.00806EPSS
Exploits0References2
Prion
Prion
added 2021/01/12 3:15 p.m.13 views

Path traversal

IBM Workload Automation 9.5 stores the server path in URLs that could aid in further attacks against the system. IBM X-Force ID: 186287...

4CVSS4.4AI score0.00806EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2021/01/12 3:15 p.m.16 views

Information disclosure

IBM Workload Automation 9.5 stores sensitive information in HTML comments that could aid in further attacks against the system. IBM X-Force ID: 186286...

4CVSS4.1AI score0.00806EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2021/01/12 2:45 p.m.39 views

CVE-2020-4674

CVE-2020-4674 affects IBM Workload Automation 9.5.x, where the server path is exposed in URLs, potentially aiding information disclosure and subsequent attacks. The root cause is path disclosure in the application. Remediation: IBM states APAR IJ30009 to address CVE-2020-4674; the fix is included...

4.3CVSS4.4AI score0.00806EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2021/01/12 2:45 p.m.11 views

CVE-2020-4674

IBM Workload Automation 9.5 stores the server path in URLs that could aid in further attacks against the system. IBM X-Force ID: 186287...

4.3CVSS4.4AI score0.00806EPSS
Exploits0References2
CVE
CVE
added 2021/01/12 2:45 p.m.40 views

CVE-2020-4673

The CVE-2020-4673 vulnerability affects IBM Workload Automation 9.5 (IBM Workload Scheduler 9.5.x). The root cause is information disclosure via sensitive data stored in HTML comments in the Dynamic Workload Console, enabling an attacker to access potentially sensitive information and aid further...

4.3CVSS4.2AI score0.00806EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2021/01/12 2:45 p.m.18 views

CVE-2020-4673

IBM Workload Automation 9.5 stores sensitive information in HTML comments that could aid in further attacks against the system. IBM X-Force ID: 186286...

4.3CVSS4.2AI score0.00806EPSS
Exploits0References2
CNNVD
CNNVD
added 2021/01/12 12:0 a.m.7 views

IBM Workload Automation 信息泄露漏洞

IBM Workload Automation is an American IBM software for batch and real-time workload management. An information disclosure vulnerability exists in IBM Workload Automation version 9.5 that originates from storing sensitive information in HTML comments, which can be exploited by an attacker to obta...

4.3CVSS5.8AI score0.00806EPSS
Exploits0References4
CNNVD
CNNVD
added 2021/01/12 12:0 a.m.6 views

IBM Workload Automation 信息泄露漏洞

IBM Workload Automation is an American IBM software for batch and real-time workload management. A security vulnerability exists in IBM Workload Automation 9.5, which can be exploited by attackers to obtain sensitive data...

4.3CVSS5.8AI score0.00806EPSS
Exploits0References4
CNVD
CNVD
added 2019/09/10 12:0 a.m.2 views

CA Technologies Client Automation and Workload Automation AE Access Control Error Vulnerability

CA Automic Workload Automation is a suite of workload automation solutions from CA USA. The product includes features such as data-driven event automation, managed file transfer, version control and lifecycle management. An access control error vulnerability exists in CA Common Services DIA in CA...

9.8CVSS7.5AI score0.05819EPSS
Exploits0References1
NVD
NVD
added 2019/09/06 3:15 p.m.23 views

CVE-2019-13656

An access vulnerability in CA Common Services DIA of CA Technologies Client Automation 14 and Workload Automation AE 11.3.5, 11.3.6 allows a remote attacker to execute arbitrary code...

9.8CVSS9.7AI score0.05819EPSS
Exploits0References4
OSV
OSV
added 2019/09/06 3:15 p.m.4 views

CVE-2019-13656

An access vulnerability in CA Common Services DIA of CA Technologies Client Automation 14 and Workload Automation AE 11.3.5, 11.3.6 allows a remote attacker to execute arbitrary code...

9.8CVSS7.6AI score0.05819EPSS
Exploits0References4
Prion
Prion
added 2019/09/06 3:15 p.m.16 views

Code injection

An access vulnerability in CA Common Services DIA of CA Technologies Client Automation 14 and Workload Automation AE 11.3.5, 11.3.6 allows a remote attacker to execute arbitrary code...

7.5CVSS9.5AI score0.05819EPSS
Exploits0References4Affected Software2
CVE
CVE
added 2019/09/06 2:44 p.m.50 views

CVE-2019-13656

CVE-2019-13656 affects CA Technologies Client Automation components: CA Common Services DIA in CA Technologies Client Automation 14 and Workload Automation AE 11.3.5/11.3.6. Multiple sources (NVD/Red Hat/CNVD) describe an access control error that enables a remote attacker to execute arbitrary co...

9.8CVSS9.5AI score0.05819EPSS
Exploits0References4Affected Software2
Prion
Prion
added 2019/04/26 7:29 p.m.18 views

Command injection

An issue was discovered in Dillon Kane Tidal Workload Automation Agent 3.2.0.5 formerly known as Cisco Workload Automation or CWA. The Enterprise Scheduler for AIX allows local users to gain privileges via Command Injection in crafted Tidal Job Buffers TJB parameters. NOTE: this vulnerability...

7.2CVSS7.9AI score0.00753EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2019/04/26 6:37 p.m.17 views

CVE-2019-6689

An issue was discovered in Dillon Kane Tidal Workload Automation Agent 3.2.0.5 formerly known as Cisco Workload Automation or CWA. The Enterprise Scheduler for AIX allows local users to gain privileges via Command Injection in crafted Tidal Job Buffers TJB parameters. NOTE: this vulnerability...

7.9AI score0.00753EPSS
Exploits0References1
CVE
CVE
added 2019/04/26 6:37 p.m.40 views

CVE-2019-6689

CVE-2019-6689 affects Dillon Kane Tidal Workload Automation Agent 3.2.0.5 (Enterprise Scheduler for AIX). Local users can escalate privileges via Command Injection in crafted Tidal Job Buffers (TJB) parameters. The note cites that the CVE-2014-3272 fix did not cover AIX. Public remediation or exp...

7.8CVSS7.8AI score0.00753EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2019/02/06 12:29 a.m.19 views

CVE-2019-6504

Insufficient output sanitization in the Automic Web Interface AWI, in CA Automic Workload Automation 12.0 to 12.2, allow attackers to potentially conduct persistent cross site scripting XSS attacks via a crafted object...

6.1CVSS6AI score0.02008EPSS
Exploits1References7
OSV
OSV
added 2019/02/06 12:29 a.m.4 views

CVE-2019-6504

Insufficient output sanitization in the Automic Web Interface AWI, in CA Automic Workload Automation 12.0 to 12.2, allow attackers to potentially conduct persistent cross site scripting XSS attacks via a crafted object...

6.1CVSS5.8AI score0.02008EPSS
Exploits1References7
Rows per page
Query Builder