3 matches found
CVE-2015-2828
CA Spectrum 9.2.x and 9.3.x before 9.3 H02 does not properly validate serialized Java objects, which allows remote authenticated users to obtain administrative privileges via crafted object data...
CVE-2015-2828
CA Spectrum 9.2.x and 9.3 before 9.3 H02 are vulnerable due to insufficient validation of serialized Java objects. This allows a remote authenticated attacker to escalate to administrative privileges via crafted object data. Remediation: update to CA Spectrum 9.3 H02 or a newer release (as noted ...
KLA10537 Multiple vulnerabilities in CA Spectrum
Multiple serious vulnerabilities have been found in CA Spectrum. Malicious users can exploit these vulnerabilities to gain privileges or inject arbitrary code. Below is a complete list of vulnerabilities 1. Improper data serialization can be exploited remotely via a specially designed Java object...