PT-2019-13464 · Ca Technologies · Ca Workload Automation Ae+2

Fredrik Ravne

Publicado

2019-09-06

Atualizado

2020-10-06

CVE-2019-13656

CVSS v3.1

9.8

Crítica

Vetor

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions CA Technologies Client Automation version 14 CA Workload Automation AE versions 11.3.5 through 11.3.6

Description An access issue in CA Common Services DIA allows a remote attacker to execute arbitrary code.

Recommendations For CA Technologies Client Automation version 14, update to a version that includes the fix for this issue. For CA Workload Automation AE versions 11.3.5 through 11.3.6, update to a version that includes the fix for this issue.

Correção

Improper Access Control

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-284

Identificadores relacionados

CVE-2019-13656

Produtos afetados

Ca Client Automation

Ca Common Services Dia

Ca Workload Automation Ae

PT-2019-13464 · Ca Technologies · Ca Workload Automation Ae+2

CVE-2019-13656

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 6