CA Unified Infrastructure Management Multiple Security Vulnerabilities

Bugtraq ID:	105199
Class:	Design Error
CVE:	CVE-2018-13819 CVE-2018-13820 CVE-2018-13821
Remote:	Yes
Local:	No
Published:	Aug 29 2018 12:00AM
Updated:	Aug 29 2018 12:00AM
Credit:	�?ystein Middelthun
Vulnerable:	Computer Associates Unified Infrastructure Management 8.5.1 Ca Unified Infrastructure Management 8.4.7 Ca Unified Infrastructure Management 8.5
Not Vulnerable:

CA Unified Infrastructure Management Multiple Security Vulnerabilities

CA Unified Infrastructure Management is prone to the following security vulnerabilities:

1. Multiple information-disclosure vulnerabilities
2. An authentication-bypass vulnerability

Attackers may exploit these issues to gain unauthorized access to restricted content by bypassing intended security restrictions or to obtain sensitive information that may aid in launching further attacks.

CA Unified Infrastructure Management Multiple Security Vulnerabilities

Currently, we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].

CA Unified Infrastructure Management Multiple Security Vulnerabilities

References:

• Computer Associates Homepage (Computer Associates)
  
• CA20180829-02: Security Notice for CA Unified Infrastructure Management (CA Technologies)