Serialization Vulnerability in CA Spectrum Software by CA Technologies
CVE-2015-2828

Currently unrated

Key Information:

Vendor: Broadcom
Status: Spectrum
Vendor: CVE Published:; 8 April 2015

What is CVE-2015-2828?

CA Spectrum versions 9.2.x and 9.3.x prior to 9.3 H02 are vulnerable due to insufficient validation of serialized Java objects. This vulnerability could be exploited by remote authenticated attackers, enabling them to craft specially designed object data that may grant them unauthorized administrative access. It is essential for users of affected versions to apply the recommended security updates to mitigate potential risks associated with this vulnerability.

References

http://www.securityfocus.com/bid/73957

vdb-entryx_refsource_BID

http://www.securityfocus.com/archive/1/535205/100/0/threaded

mailing-listx_refsource_BUGTRAQ

http://www.ca.com/us/support/ca-support-online/product-co...

x_refsource_CONFIRM

Timeline

Vulnerability published
Apr 8, 2015
Vulnerability Reserved
Apr 1, 2015

Broadcom

What is CVE-2015-2828?

References

Timeline