PT-2022-21866 · Ca · Ca Automic Automation
Dennis Mantz
+1
·
Published
2022-06-16
·
Updated
2023-08-08
·
CVE-2022-33755
CVSS v3.1
5.3
Medium
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
CA Automic Automation versions 12.2 through 12.3
Description
The issue is related to insecure input handling in the Automic Agent, which could allow a remote attacker to potentially enumerate users.
Recommendations
For CA Automic Automation versions 12.2 through 12.3, consider restricting access to the Automic Agent to minimize the risk of exploitation until a patch is available.
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Ca Automic Automation