7 matches found
Sql injection
CA Network Flow Analysis NFA 21.2.1 and earlier contain a SQL injection vulnerability in the NFA web application, due to insufficient input validation, that could potentially allow an authenticated user to access sensitive data...
CVE-2021-44050
CVE-2021-44050 concerns Broadcom CA Network Flow Analysis (NFA) version 21.2.1 and earlier. The connected sources specify a SQL injection vulnerability in the NFA web application caused by insufficient input validation, with an impact of potentially exposing sensitive data to an authenticated use...
CVE-2021-44050
CA Network Flow Analysis NFA 21.2.1 and earlier contain a SQL injection vulnerability in the NFA web application, due to insufficient input validation, that could potentially allow an authenticated user to access sensitive data...
CVE-2019-13658
CA Network Flow Analysis 9.x and 10.0.x have a default credential vulnerability that can allow a remote attacker to execute arbitrary commands and compromise system security...
Design/Logic Flaw
CA Network Flow Analysis 9.x and 10.0.x have a default credential vulnerability that can allow a remote attacker to execute arbitrary commands and compromise system security...
CVE-2019-13658
CA Network Flow Analysis 9.x and 10.0.x have a default credential vulnerability that can allow a remote attacker to execute arbitrary commands and compromise system security...
CA Network Flow Analysis CVE-2019-13658 Default Credentials Security Bypass Vulnerability
Description CA Network Flow Analysis is prone to a security-bypass vulnerability. An attacker can exploit this issue to bypass the authentication mechanism and execute arbitrary command. The following versions are vulnerable: CA Network Flow Analysis 10.0.xCA Network Flow Analysis 9.x Technologie...