Lucene search
K
CaService Desk Manager

4 matches found

CVE
CVE
added 2019/01/22 3:0 p.m.52 views

CVE-2018-19634

CVE-2018-19634 affects CA Service Desk Manager versions 14.1 and 17. A vulnerability could allow a malicious actor to access survey information. Public sources list impact and attribution, with NVD noting network access and no authentication required (CVSSv3.1: 7.5, HIGH; Confidentiality impact H...

7.5CVSS7.4AI score0.01334EPSS
CVE
CVE
added 2017/03/07 3:0 p.m.44 views

CVE-2016-9148

CA Service Desk Manager (versions 12.9 and 14.1) contains a cross-site scripting (XSS) vulnerability that allows an attacker to inject arbitrary script or HTML via the QBE.EQ.REF_NUM parameter. The issue is described in CVE-2016-9148 and is tracked in multiple feeds; CVSS metrics indicate a NETWO...

6.1CVSS6AI score0.01831EPSS
CVE
CVE
added 2017/01/18 10:0 p.m.42 views

CVE-2016-10086

CA Service Desk Manager 12.9 and CA Service Desk Management 14.1 contain a RESTful services vulnerability (CVE-2016-10086) where remote authenticated users could read or modify task information due to incorrect permissions on RESTful requests. The affected components are REST endpoints handling t...

8.1CVSS7.5AI score0.01557EPSS
CVE
CVE
added 2019/01/22 3:0 p.m.42 views

CVE-2018-19635

CA Service Desk Manager versions 14.1 and 17 contain a privilege-escalation vulnerability in the user interface (CVE-2018-19635). The connected sources confirm the affected product and impact but do not provide exploit vectors, affected components beyond the UI, root cause specifics, or a publish...

9.8CVSS9.4AI score0.01176EPSS