CVE-2018-8954

2018-03-2900:00:00

www.cve.org

9.6 High

AI Score

Confidence

High

0.015 Low

EPSS

Percentile

86.9%

JSON

CA Workload Control Center before r11.4 SP6 allows remote attackers to execute arbitrary code via a crafted HTTP request.

CNA Affected

[
  {
    "product": "Workload Control Center",
    "vendor": "CA Technologies",
    "versions": [
      {
        "status": "affected",
        "version": "r11.4 SP5 and earlier"
      }
    ]
  }
]

References

www.securityfocus.com/bid/103742

www.securitytracker.com/id/1040605

support.ca.com/us/product-content/recommended-reading/security-notices/ca20180329-01--security-notice-for-ca-workload-automation-ae.html