Lucene search
K

35 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2015-3362

Malware in sbrugna...

4.6CVSS6.4AI score0.00459EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2016-10596

Malware in sbrugna...

7.8CVSS7.6AI score0.00533EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2017-17343

Malware in sbrugna...

5.5CVSS5.6AI score0.00296EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2019-8857

Malware in sbrugna...

7.8CVSS7.6AI score0.00619EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2015-3363

Malware in sbrugna...

4.6CVSS6.4AI score0.00371EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2015-3364

Malware in sbrugna...

4.6CVSS6.4AI score0.00371EPSS
Exploits0References5
NVD
NVD
added 2024/12/17 6:15 a.m.16 views

CVE-2024-38499

CA Client Automation ITCM allows non-admin/non-root users to encrypt a string using CAF CLI and SDACMD CLI. This would allow the non admin user to access the critical encryption keys which further causes the exploitation of stored credentials. This fix doesn't allow a non-admin/non-root user to...

8.8CVSS0.00228EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/12/17 5:43 a.m.9 views

CVE-2024-38499 Improper Privilege Management Vulnerability in CA Client Automation 14.5

CA Client Automation ITCM allows non-admin/non-root users to encrypt a string using CAF CLI and SDACMD CLI. This would allow the non admin user to access the critical encryption keys which further causes the exploitation of stored credentials. This fix doesn't allow a non-admin/non-root user to...

7.3CVSS7.1AI score0.00228EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/12/17 5:43 a.m.24 views

CVE-2024-38499 Improper Privilege Management Vulnerability in CA Client Automation 14.5

CA Client Automation ITCM allows non-admin/non-root users to encrypt a string using CAF CLI and SDACMD CLI. This would allow the non admin user to access the critical encryption keys which further causes the exploitation of stored credentials. This fix doesn't allow a non-admin/non-root user to...

7.3CVSS0.00228EPSS
Exploits0References1
CVE
CVE
added 2024/12/17 5:43 a.m.51 views

CVE-2024-38499

CA Client Automation (ITCM) vulnerability CVE-2024-38499 involves improper privilege management that allows non-admin/non-root users to encrypt strings via CAF CLI and SD_ACMD CLI. This could expose encryption keys and enable credential compromise. The available fix prevents non-admin/non-root us...

8.8CVSS6.6AI score0.00228EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/06/18 12:0 a.m.4 views

PT-2024-9958 · Ca · Ca Client Automation

Name of the Vulnerable Software and Affected Versions: CA Client Automation ITCM affected versions not specified Description: The issue is related to insecure privilege management in the CA Client Automation software, which allows non-admin or non-root users to encrypt strings using the CAF CLI a...

8.8CVSS6.8AI score0.00228EPSS
Exploits0References12
NVD
NVD
added 2019/12/20 10:15 p.m.33 views

CVE-2019-19231

An insecure file access vulnerability exists in CA Client Automation 14.0, 14.1, 14.2, and 14.3 Agent for Windows that can allow a local attacker to gain escalated privileges...

7.8CVSS7.4AI score0.00619EPSS
Exploits0References4
OSV
OSV
added 2019/12/20 10:15 p.m.5 views

CVE-2019-19231

An insecure file access vulnerability exists in CA Client Automation 14.0, 14.1, 14.2, and 14.3 Agent for Windows that can allow a local attacker to gain escalated privileges...

7.8CVSS7.1AI score0.00619EPSS
Exploits0References4
Prion
Prion
added 2019/12/20 10:15 p.m.19 views

Design/Logic Flaw

An insecure file access vulnerability exists in CA Client Automation 14.0, 14.1, 14.2, and 14.3 Agent for Windows that can allow a local attacker to gain escalated privileges...

4.6CVSS7.6AI score0.00619EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2019/12/20 9:8 p.m.33 views

CVE-2019-19231

An insecure file access vulnerability exists in CA Client Automation 14.0, 14.1, 14.2, and 14.3 Agent for Windows that can allow a local attacker to gain escalated privileges...

7.3CVSS7.7AI score0.00619EPSS
Exploits0References4
CVE
CVE
added 2019/12/20 9:8 p.m.102 views

CVE-2019-19231

CVE-2019-19231 concerns a local privilege-escalation in Broadcom/CA Client Automation Agent for Windows (versions 14.0–14.3). The available documents confirm an insecure file access path as the root cause enabling a local attacker to gain elevated privileges. The details consistently reference th...

7.8CVSS7.6AI score0.00619EPSS
Exploits0References4Affected Software1
Symantec
Symantec
added 2019/12/18 12:0 a.m.48 views

Broadcom CA Client Automation CVE-2019-19231 Local Privilege Escalation Vulnerability

Description Broadcom CA Client Automation is prone to a local privilege-escalation vulnerability. Local attackers may exploit this issue to execute arbitrary command with elevated privileges on the affected system. Broadcom CA Client Automation versions 14.0, 14.1, 14.2, 14.3 are vulnerable...

3.9AI score0.00619EPSS
Exploits0References1Affected Software1
CNVD
CNVD
added 2017/05/19 12:0 a.m.2 views

CA Client Automation Local Information Disclosure Vulnerability

CA Client Automation is a suite of automation and remote client management tools from CA, Inc.OS Installation Management component is the operating system installation management component. A security vulnerability exists in the OS Installation Management component of CA Client Automation version...

5.5CVSS6.7AI score0.00296EPSS
Exploits0References1
NVD
NVD
added 2017/05/06 12:29 a.m.35 views

CVE-2017-8391

The OS Installation Management component in CA Client Automation r12.9, r14.0, and r14.0 SP1 places an encrypted password into a readable local file during operating system installation, which allows local users to obtain sensitive information by reading this file after operating system...

5.5CVSS5.3AI score0.00296EPSS
Exploits0References3
Prion
Prion
added 2017/05/06 12:29 a.m.16 views

Design/Logic Flaw

The OS Installation Management component in CA Client Automation r12.9, r14.0, and r14.0 SP1 places an encrypted password into a readable local file during operating system installation, which allows local users to obtain sensitive information by reading this file after operating system...

2.1CVSS5.2AI score0.00296EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder