CVE Tools

ca technologies

Security Productscommercial

28

Cumulative CVEs

6

Monthly snapshots

#32

Peak rank

Top products

ca performance management1 ca network flow analysis1

Latest CVEs

The 15 most recently published vulnerabilities affecting ca technologies.

CVE-2019-13656An access vulnerability in CA Common Services DIA of CA Technologies Client Automation 14 and Workload Automation AE 11.3.5, 11.3.6 allows a remote attacker to execute arbitrary code.9.8Sep 6, 2019
CVE-2018-19635CA Service Desk Manager 14.1 and 17 contain a vulnerability that can allow a malicious actor to escalate privileges in the user interface.9.8Jan 22, 2019
CVE-2018-19634CA Service Desk Manager 14.1 and 17 contain a vulnerability that can allow a malicious actor to access survey information.7.5Jan 22, 2019
CVE-2018-14597CA Technologies Identity Governance 12.6, 14.0, 14.1, and 14.2 and CA Identity Suite Virtual Appliance 14.0, 14.1, and 14.2 provide telling error messages that may allow remote attackers to enumera...5.3Oct 17, 2018
CVE-2018-15691Insecure deserialization of a specially crafted serialized object, in CA Release Automation 6.5 and earlier, allows attackers to potentially execute arbitrary code.9.8Aug 30, 2018
CVE-2018-13826An XML external entity vulnerability in the XOG functionality, in CA PPM 14.3 and below, 14.4, 15.1, 15.2 CP5 and below, and 15.3 CP2 and below, allows remote attackers to conduct server side reque...9.1Aug 30, 2018
CVE-2018-13825Insufficient input validation in the gridExcelExport functionality, in CA PPM 14.3 and below, 14.4, 15.1, 15.2 CP5 and below, and 15.3 CP2 and below, allows remote attackers to execute reflected cr...6.1Aug 30, 2018
CVE-2018-13824Insufficient input sanitization of two parameters in CA PPM 14.3 and below, 14.4, 15.1, 15.2 CP5 and below, and 15.3 CP2 and below, allows remote attackers to execute SQL injection attacks.9.8Aug 30, 2018
CVE-2018-13823An XML external entity vulnerability in the XOG functionality, in CA PPM 14.3 and below, 14.4, 15.1, 15.2 CP5 and below, and 15.3 CP2 and below, allows remote attackers to access sensitive informat...7.5Aug 30, 2018
CVE-2018-13822Unprotected storage of credentials in CA PPM 14.3 and below, 14.4, 15.1, 15.2 CP5 and below, and 15.3 CP2 and below, allows attackers to access sensitive information.7.5Aug 30, 2018
CVE-2018-13821A lack of authentication, in CA Unified Infrastructure Management 8.5.1, 8.5, and 8.4.7, allows remote attackers to conduct a variety of attacks, including file reading/writing.9.8Aug 30, 2018
CVE-2018-13820A hardcoded passphrase, in CA Unified Infrastructure Management 8.5.1, 8.5, and 8.4.7, allows attackers to access sensitive information.7.5Aug 30, 2018
CVE-2018-13819A hardcoded secret key, in CA Unified Infrastructure Management 8.5.1, 8.5, and 8.4.7, allows attackers to access sensitive information.7.5Aug 30, 2018
CVE-2018-6590CA API Developer Portal 4.x, prior to v4.2.5.3 and v4.2.7.1, has an unspecified reflected cross-site scripting vulnerability.6.1Aug 3, 2018
CVE-2018-9029An improper input validation vulnerability in CA Privileged Access Manager 2.x allows remote attackers to conduct SQL injection attacks.9.8Jun 18, 2018