CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:P/I:P/A:P
AI Score
Confidence
Low
EPSS
Percentile
5.1%
CA Common Services, as used in CA Client Automation r12.5 SP01, r12.8, and r12.9; CA Network and Systems Management r11.0, r11.1, and r11.2; CA NSM Job Management Option r11.0, r11.1, and r11.2; CA Universal Job Management Agent; CA Virtual Assurance for Infrastructure Managers (aka SystemEDGE) 12.6, 12.7, 12.8, and 12.9; and CA Workload Automation AE r11, r11.3, r11.3.5, and r11.3.6 on UNIX, does not properly perform bounds checking, which allows local users to gain privileges via unspecified vectors.
Vendor | Product | Version | CPE |
---|---|---|---|
ca | client_automation | r12.5 | cpe:2.3:a:ca:client_automation:r12.5:sp01:*:*:*:*:*:* |
ca | client_automation | r12.8 | cpe:2.3:a:ca:client_automation:r12.8:*:*:*:*:*:*:* |
ca | client_automation | r12.9 | cpe:2.3:a:ca:client_automation:r12.9:*:*:*:*:*:*:* |
ca | network_and_systems_management | r11.2 | cpe:2.3:a:ca:network_and_systems_management:r11.2:*:*:*:*:*:*:* |
ca | nsm_job_management_option | r11.0 | cpe:2.3:a:ca:nsm_job_management_option:r11.0:*:*:*:*:*:*:* |
ca | nsm_job_management_option | r11.1 | cpe:2.3:a:ca:nsm_job_management_option:r11.1:*:*:*:*:*:*:* |
ca | nsm_job_management_option | r11.2 | cpe:2.3:a:ca:nsm_job_management_option:r11.2:*:*:*:*:*:*:* |
ca | universal_job_management_agent | - | cpe:2.3:a:ca:universal_job_management_agent:-:*:*:*:*:*:*:* |
ca | virtual_assurance_for_infrastructure_managers | 12.6 | cpe:2.3:a:ca:virtual_assurance_for_infrastructure_managers:12.6:*:*:*:*:*:*:* |
ca | virtual_assurance_for_infrastructure_managers | 12.7 | cpe:2.3:a:ca:virtual_assurance_for_infrastructure_managers:12.7:*:*:*:*:*:*:* |