Описание
CA Performance Management 3.5.x, 3.6.x before 3.6.9, and 3.7.x before 3.7.4 have a default credential vulnerability that can allow a remote attacker to execute arbitrary commands and compromise system security.
Ссылки
- Third Party AdvisoryVDB Entry
- Third Party AdvisoryVDB Entry
- Mailing ListThird Party Advisory
- Issue TrackingMailing ListThird Party Advisory
- Vendor Advisory
- Third Party AdvisoryVDB Entry
- Third Party AdvisoryVDB Entry
- Mailing ListThird Party Advisory
- Issue TrackingMailing ListThird Party Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия от 3.6.0 (включая) до 3.6.9 (исключая)Версия от 3.7.0 (включая) до 3.7.4 (исключая)
Одно из
cpe:2.3:a:broadcom:ca_performance_management:*:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:ca_performance_management:*:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:ca_performance_management:3.5.0:*:*:*:*:*:*:*
Конфигурация 2Версия до 19.1 (включая)
cpe:2.3:a:broadcom:network_operations:*:*:*:*:*:*:*:*
EPSS
Процентиль: 66%
0.00505
Низкий
9.8 Critical
CVSS3
8.8 High
CVSS3
6.5 Medium
CVSS2
Дефекты
CWE-798
CWE-798
Связанные уязвимости
CVSS3: 8.8
github
больше 3 лет назад
CA Performance Management 3.5.x, 3.6.x before 3.6.9, and 3.7.x before 3.7.4 have a default credential vulnerability that can allow a remote attacker to execute arbitrary commands and compromise system security.
EPSS
Процентиль: 66%
0.00505
Низкий
9.8 Critical
CVSS3
8.8 High
CVSS3
6.5 Medium
CVSS2
Дефекты
CWE-798
CWE-798