PT-2019-13464 · Ca Technologies · Ca Workload Automation Ae+2

Fredrik Ravne

Published

2019-09-06

Updated

2020-10-06

CVE-2019-13656

CVSS v3.1

9.8

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions CA Technologies Client Automation version 14 CA Workload Automation AE versions 11.3.5 through 11.3.6

Description An access issue in CA Common Services DIA allows a remote attacker to execute arbitrary code.

Recommendations For CA Technologies Client Automation version 14, update to a version that includes the fix for this issue. For CA Workload Automation AE versions 11.3.5 through 11.3.6, update to a version that includes the fix for this issue.

Fix

Improper Access Control

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-284

Related Identifiers

CVE-2019-13656

Affected Products

Ca Client Automation

Ca Common Services Dia

Ca Workload Automation Ae

PT-2019-13464 · Ca Technologies · Ca Workload Automation Ae+2

CVE-2019-13656

Weakness Enumeration

Related Identifiers

Affected Products

References · 6