Privilege Escalation in CA eHealth Performance Manager by CA Technologies
CVE-2021-28246

7.8HIGH

Key Information:

Vendor: Broadcom
Status: Ehealth
Vendor: CVE Published:; 26 March 2021

What is CVE-2021-28246?

The CA eHealth Performance Manager is subject to a privilege escalation vulnerability that allows an attacker to execute code as the ehealth user. This occurs through the creation of a malicious library within a writable RPATH, which is dynamically linked when the 'emtgtctl2' executable runs. It is particularly important to note that this issue affects products no longer supported by the vendor, potentially increasing the risk for organizations still utilizing these outdated versions.

References

https://n4nj0.github.io/advisories/ca-ehealth-performance...

x_refsource_MISC

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Mar 26, 2021
Vulnerability Reserved
Mar 12, 2021

Broadcom

What is CVE-2021-28246?

References

CVSS V3.1

Timeline